fnd2851. mobile first | cloud first sixty-one percent of workers mix personal and work tasks on...
TRANSCRIPT
Increase productivity and security with enterprise mobility
FND2851
Mobile First | Cloud First
Sixty-one percent of workers mix personal and work tasks on their devices*
>Seventy-five percent of network intrusions exploited weak or stolen credentials ***
>Eighty percent of employees admit to using non-approved software-as-a-service (SaaS) applications in their jobs**
61% >80% >75%
* Forrester Research: “BT Futures Report: Info workers will erase boundary between enterprise & consumer technologies,” Feb. 21, 2013** http://www.computing.co.uk/ctg/news/2321750/more-than-80-per-cent-of-employees-use-non-approved-saas-apps-report*** Verizon 2013 data breach investigation report
The mobile landscape
IT
Employees CustomersBusiness partners
Devices AppsUsers Data
Place Holder – Godiva Video
It’s integrated - identity is the control plane
On premises
Microsoft Azure Active Directory
• One common identity
• Single sign-on
• Self-service capabilities
Azure
SaaS
Office 365
• Manage and secure productivity
• Office mobile apps
• Data-level protection
It protects Office better - mobile productivity
It’s comprehensive – cross-platform
• iOS, Android, Windows
• 1000s of SaaS apps
• LOB apps, RemoteApp
It just works - flexible architecture matters
• Always up-to-date
• Works with what you have
• Simple to set up and connect
Empowering enterprise mobility
Protection against threats
Additional security for today’s security threats
Access to all your apps
SaaS apps, mobile apps, on-premises, and Windows apps
Collaboration on the go
Managed email and productivity
Customer story: Catholic District School Board of Eastern OntarioChallenge• District operates 50 schools attended by
13,000 students in eastern Ontario• Sought to support both student and staff
BYOD• On-premises MDM solution only supported
board-owned devices, and was discontinued
Solution• Acquired 2,500 Microsoft Intune seats and
hired a full-time employee to develop new BYOD policies
• Enrolled 450 board-owned iOS devices in Intune
• Expect to enroll board-owned student devices, then launch and enroll BYOD pilot program
Approach• Simplify maintenance with cloud-based,
multiplatform device management service
Managed email and productivity
Identity
Application
Device
Data
Windows 10 Windows Provable PC
Health (PPCH)
SharePointOnline
ExchangeOnline
User
Conditional access
Policy verification
Microsoft Intune
SharePointOnline
ExchangeOnline
User
Microsoft Intune
Policy compliance verification
Device management
Device compliance
Measured boot integrity status (Windows PPCH)
Advanced device compliance (antivirus, firewall, patch state, etc.)
Mobile application management
Maximize mobile productivity and protect corporate resources with Office mobile apps – including multi-identity support
Extend these capabilities to your existing line-of-business apps using the Intune App Wrapping Tool
Enable secure viewing of content using the Managed Browser, PDF Viewer, AV Player, and Image Viewer apps
Managed apps
Personal appsPersonal apps
Managed apps
ITUser
Corporate data
Personal data
Multi-identity policy
Mobile application management
Personal apps
Managed apps
Copy Paste Save
Maximize productivity while preventing leakage of company data by restricting actions such as copy, cut, paste, and save as between Intune-managed apps and unmanaged apps
Save to personal storage
Paste to personal app
User
Email attachment
Protect ANY file
Share with ANY person
View on ANY device
Track and manage from the cloud
Encrypt files and data
Managed productivityDemo
Customer story: iBreedITChallenge• Cloud-based solution to help plan, manage,
and analyze plant breeding programs • Breeding programs last 7-10 years, span up to
thousands of trials, collect massive amounts of data
Solution• Azure and SQL Databases ensure adherence
to security protocols • App integrates with lab systems to cross-
check data • Azure RemoteApp enables flexibility and
scalability to use services when they need them
Approach• Secure, reliable, scalable data with Azure-
based solution
Single sign-on to SaaS apps Access LoB applications
Microsoft AzureActive Directory
App Proxy
Managing access to applications
Access your Windows apps
Microsoft AzureRemoteApp
Intelligent cloud
Machine learning
Security reports
Privileged identity management
App security
Conditional access
Multi-factor authentication (MFA)
Cloud app discovery
ALERT
1 4 5 6 7 6
Detect threats
User behavioral analysis
Simple attack timeline
Identity-driven security
Security reporting that tracks inconsistent access patterns, analytics, and alerts.
Reporting API
Built-in security features.
Monitor and protect access to enterprise apps
ATA
Devices and
servers
Behavioral Analytics
Forensics for known attacks and issues
Advanced Threat Analytics
Profile normal entity
behavior (normal vs. abnormal)
Search for known
security attacks &
issues
Detect suspicious user
activities, known attacks, and
issues
SIEMActive DirectoryActive Directory
Microsoft Advanced Threat Analytics
Identity-driven securityDemo
Enterprise Mobility Suite
Microsoft Azure Active Directory Premium
Identity and access management
Easily manage identities across on-premises and cloud. Single sign-on and self-service for any application
Microsoft Intune
Mobile device and app management
Manage and protect corporate apps and data on almost any device with MDM and MAM
Microsoft Azure Rights Management Premium
Information protection
Encryption, identity, and authorization to secure corporate files and email across on phones, tablets,
and PCs
Behavior-based threat analytics
Advanced Threat Analytics
Identify suspicious activities and advanced threats in near real time with simple, actionable reporting
Multiple layers of protection
Identify and authorize user
Apply device policies
Apply application policies
Apply content policies
User IT
Active Directory Premium
Rights Management
Enterprise Mobility Suite
Next steps
To explore• Try Enterprise Mobility now• http://www.microsoft.com/ems• TechNet @
http://technet.microsoft.com/• MSDN @ http://www.msdn.com/
To doRate the session
Q&A
© 2015 Microsoft Corporation. All rights reserved.
www.microsoft.com/ems