Microsoft has given us some amazing capabilities with the Microsoft Enterprise Mobility + Security (EM+S) suite to help protect both our information and our investments in Office 365. This collection of features gives you just about everything you need in the Microsoft Cloud for security, compliance and Information Protection. With such a vast array of services, tools and features, its often challenging to understand everything this product provides or how its layered on top of existing Office 365 security controls. In this session we’ll review the capabilities available to you in Microsoft EM+S, and you'll discover which ones may best fit with your security and compliance needs. Come and join us, as we also dive deep into some of the most useful Microsoft EM+ S tools.
Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...
Introduction to Microsoft Enterprise Mobility + Security
1. Introduction to Microsoft
Enterprise Mobility + Security
Antonio Maio
Protiviti Senior Enterprise Architect
Microsoft Office Apps & Services MVP
Antonio.Maio@Protiviti.com
@AntonioMaio2
www.trustsharepoint.com or www.antoniO365.com
2. AGENDA
03 Introduction to Microsoft Enterprise Mobility + Security (EM+S)
04 Benefits
05 Products & Services
06 Licensing
08 Resources: Table of Enterprise Mobility + Security
3. • Intelligent mobility management and security platform
• Robust tools to help protect & secure your organization
• Bundle of Microsoft Cloud security services and tools
• “Microsoft Enterprise Mobility Suite” or EMS or EM+S
• Layered on top of Office 365 Enterprise Licenses (E1, E3 or E5)
INTRODUCTION TO
MICROSOFT ENTERPRISE MOBILITY + SECURITY
4. INTRODUCTION TO
MICROSOFT ENTERPRISE MOBILITY + SECURITY
Information
protection
Identity and access
management
Benefits
Identity allows secure
connections between
people, devices, apps,
and data. Increase your
security and productivity
with a single, holistic
identity solution that
gives you flexibility and
control.
Protect your sensitive
data everywhere, even
in motion and when
shared. Gain visibility
and control over how
any file is being used
with a comprehensive
and integrated
information protection
solution.
Threat
protection
Detect and investigate
advanced threats,
compromised identities,
and malicious actions
across your on-
premises and cloud
environments.
Unified endpoint
management
Help users be
productive wherever
they are while keeping
corporate information
secure. Flexible
management and
powerful security
solutions let you deliver
protected mobile
experiences on any
device.
Cloud access security
broker
Gain visibility into your
cloud apps and
services, build insights
with sophisticated
analytics, and control
how your data travels so
you can respond to and
combat cyberthreats.
5. INTRODUCTION TO
MICROSOFT ENTERPRISE MOBILITY + SECURITY
Microsoft Intune
Azure Active Directory
(Premium)
Products & Services
Azure Active Directory
(Azure AD) is a multi-
tenant, cloud-based
identity and access
management service.
• Manage mobile devices
& PCs the workforce
uses to access
company data
• Manage mobile apps
• Protect company
information by helping
to control the way the
workforce accesses
and shares
• Ensure devices and
apps are compliant with
company security
requirements
Microsoft Information
Protection (AIP)
Previously called Azure
Information Protection (AIP).
Control and help secure
email, documents, and
sensitive data that you
share externally:
• Easy user based
classification
• Embedded labels &
permissions/rights
• Automated
classification
Microsoft Cloud App
Security
• Cloud Discovery:
Discover all cloud use
including Shadow IT
• Data Protection: Monitor
and control your data in
the cloud by gaining
visibility, enforcing DLP
policies, alerting, and
investigation.
• Threat Protection:
Detect anomalous use
and security incidents.
Use behavioral analytics
& advanced investigation
tools to mitigate risk & set
policies and alerts.
Microsoft Advanced
Threat Protection & Analytics
On-premises platform that
helps protect your
enterprise from multiple
types of advanced
targeted cyber attacks
and insider threats.
6. INTRODUCTION TO
MICROSOFT ENTERPRISE MOBILITY + SECURITY
Licensing
Azure Active Directory
Premium P1
Secure single sign-on to cloud
and on premise apps.
MFA, conditional access,
group management,
advanced security reporting.
Microsoft Intune
Mobile device and app mgmt.
to protect corporate apps and
data on any device.
• Mobile Application Management
(MAM)
• Mobile Device Management
(MDM)
Microsoft Information
Protection P1 (AIP P1)
User based classification
labels and encryption for files
+ cloud based file tracking.
Microsoft Advanced
Threat Analytics
Protection from advanced
targeted attacks leveraging
user and entity behavioral
analytics.
EMS E3
Azure Active Directory
Premium P2
Identity and access mgmt.
with advanced protection for
users and privileged identities.
(includes all capabilities of P1)
Microsoft Information
Protection P2 (AIP P2)
Intelligent classification and
encryption for files shared
inside and outside the org.
(includes all capabilities of P1)
Microsoft Cloud App
Security
Enterprise grade visibility,
control & cloud app protection.
EMS E5
(includes EMS E3)
Azure Advanced Threat
Protection (ATP)
Protect hybrid environments
from multiple types of advanced
targeted cyber attacks & insider
threats
Identity & Access
Management
Managed Mobile
Productivity
Information
Protection
Identity Driven
Security
Compare Plans & Detailed Features:
https://www.microsoft.com/en-us/enterprise-mobility-security/compare-plans-and-pricing
24. Thank you!
Antonio Maio
Protiviti Senior Enterprise Architect
Microsoft Office Apps & Services MVP
Antonio.Maio@Protiviti.com
@AntonioMaio2
www.trustsharepoint.com or www.antoniO365.com