Saturday, 21/04/2018

#GlobalAzure
Johannesburg Cape Town
Corporate Hill, 3012 William Nicol Dr Mowbray Golf Park, Engen Place, Raapenberg Rd
Bryanston, Johannesburg, GP, 2031 Pinelands, Cape Town, Western Cape , 7785
Thank you to our sponsors:
Thank you to our digital sponsors:
Sponsor Offering
Cloudmonix offers a $300 off any paid plan for Azure
Cloudmonix monitoring!
https://cloudmonix.com
http://bit.ly/gab2018-cloudmonix Code: GAB2018

MyGet offers a free 1 month Starter Plan for hosting

MyGet your NuGet, npm, Maven, Bower of VSIX feeds!
https://myget.org
http://bit.ly/gab2018-myget Code: GGAB2018-MG

Servicebus360 is offering 2 months free of their Gold

ServiceBus360 Plan!
https://servicebus360.com
http://bit.ly/gab2018-sb360

Cerebrata is providing a 3 month subscription to it’s

Cerebrata Cerulean product!
https://cerebrata.com
Get your subscription key from your organizer!

Offers valid until April 30th

Raffle Prizes:
1 Winner: a 1 year personal subscription of the All Products Pack. Get all
desktop products including IntelliJ IDEA Ultimate, ReSharper Ultimate and
other IDEs

1 Winner: a 1 year subscription to Cerulean! A cross-platform Azure

management tool for storage, CosmosDB, Search, Redis Cache and Service
Bus.

1 Winner: a 1 year subscription to their online training, Skill Me Up! Online

training to continue your Azure journey.

Raffle winners will receive a voucher with a code from the local organizers.
Enterprise Mobility
+ Security
Matthew Levy
https://mattchatt.co.za/blog
#GlobalAzure
 Digital Transformation is driving change
• 41 % of employees say mobile apps change how they work
• 85% of Enterprise Organisations keep sensitive information in the
cloud

User expectations IT challenges

Collaborate and Secure access to
share with partners company resources

Easy access to Protect company data

familiar apps and resources

Work easily from Do more with

anywhere on any device limited resources
 Balance
Productivity
with
Security
The Perimeter has changed

Identity
Identity Devices
Devices Apps
Apps Data
Data

On-premises
On-premises
Cloud is changing the security perimeter

On-premises
Microsoft Enterprise Mobility + Security

Identity and access Unified Endpoint Information

protection Threat protection
management Management
Control access to data based on real-time context

Conditions Parameter Examples Actions Microsoft Azure

Location Trusted/Untrusted IP

Device state Managed/Unmanaged • Allow

• Enforce MFA
User All or user group • Enroll device
• Limited access
Risk Suspicious activity

• Block access On-premises

• Wipe device applications
Risk (Low, Medium, High)

Define policies that provide Policies adapt to real time Risks are calculated based
contextual controls at the user, conditions based on on advanced Microsoft
location, device, and app levels. monitoring of perceived risks. machine learning.
CA Demo
Control what happens after the data is accessed

Our app protection policies allow you to

control what happens to docs and data
after they’ve been accessed.

• App encryption at rest

• App access control – PIN or credentials
• Save as/copy/paste restrictions
• App-level selective wipe Secure viewing of PDFs,
• Managed web browsing images, videos
• Apply policies for Windows 10 Information
Protection for even greater control Restrict features,
sharing, downloads
MAM Demo
 Protect On-Prem via Outlook Mobile
• On-premises mailbox data is synchronized into Office 365
• EAS is the protocol used to synchronize on-premises mailbox data to
Exchange Online
4 Weeks
• Primary Benefits
• Outlook can take advantage of Exchange Online features that are not
available on-premises (e.g., Focused Inbox)
• Enables Intune App Protection and Conditional Access support
All • Device (app) wipe and management via Intune

Hybrid Relationship
Data cache

All
Outlook REST Office 365 EAS Exchange
Device API mailboxes Server

Stateless protocol
GA: 2
translator (Azure) Exchange April 2018
Online
Pass Through
Brand New
Microsoft Enterprise Mobility + Security
MICROSOFT INTUNE MICROSOFT CLOUD
APP SECURITY
Make sure your devices are
compliant and secure, while Gain deep visibility, strong
protecting data at the controls and enhanced
application level threat protection for data
stored in cloud apps

Classify
CONDITIONAL
ACCESS AZURE INFORMATION
PROTECTION
Location Classify, label, protect and
audit data for persistent
Access
granted security throughout the
Apps
to data complete data lifecycle

! Risk
Audit !
Label
Device
!

Protect
!
AZURE ACTIVE
MICROSOFT ADVANCED
DIRECTORY
THREAT ANALYTICS
Ensure only authorized
users are granted access Detect breaches before they
to personal data using cause damage by identifying
risk-based conditional abnormal behavior, known
access malicious attacks and security
issues
Contact me:

Matthew@nbconsult.co.za
Blog: https://mattchatt.co.za/blog
Twitter: @skrods
 Please evaluate the
https://tinyurl.com/y74b798l

sessions and event. One

evaluation per session. Thank You