For cloud-based enterprise solutions such as Office 365 Microsoft wants to provide new security products, which determine among other things, which third-party cloud services may be used by the employees.
Microsoft detailed plans for the security of enterprise products. In a blog , Chief Information Security Officer Bret Arsenault explains what solutions and initiatives Microsoft is planning this year for Azure, Office 365 and Power BI.
In April, Microsoft Cloud App Security will become widely available. The new cloud service is based on the security technology adopted by Adallom last September . Among other things, customer data can be additionally secured in third-party software as a service apps such as Box, Salesforce, ServiceNow and Ariba.
For Office 365 administrators, Cloud App Security provides a security alert about information about unusual or eye-catching behavior on the network. The tool also shows which cloud services users are connected to. The tool lets you control which third-party services you can use with Office 365.
In the second quarter, three months later than originally planned, Microsoft wanted to introduce the Customer Lockbox security feature for SharePoint Online and the cloud storage service OneDrive for Business.
For Exchange Online, this option has been generally available since December. The Customer Lockbox , which was announced for Office 365 in April last year , aims to ensure that customers can re-insure themselves from unauthorized access to their data.
Microsoft services run differently in the cloud than a user in the on-premise environment. Microsoft has designed its own data centers so that most processes that allow data access are automated. In the rare cases where a Microsoft technician needs to intervene to gain access to data – for example, to repair a broken mailbox – customers should be directly involved in the workflow.
With the customer’s consent, the technician receives a temporary, temporary account that grants him the privileges he needs to accomplish his task. If the customer does not grant approval, Microsoft claims to have no way to access its data in the cloud.
The Business Intelligence Solution Power BI Dashboard extends Microsoft to show trends and attack patterns, as well as filter and visualize recommendations and security alerts. This includes mobile devices.
New threat visualization options are also planned for Microsoft’s Operations Management Suite , as well as a redesigned security and audit dashboard. Additional security management and reporting capabilities will also be available for the Azure Security Center .
Microsoft plans to release a public preview of Azure Active Directory Identity Protection next week. The solution is designed to detect suspicious end-user activity and privileged identities based on data collected by Microsoft’s Intelligent Security Graph. This service, which is part of Azure Active Directory Premium , calculates the severity of a user’s exposure and builds policies to protect identities from future threats.
Azure Security Center Advanced Threat Detection is now integrated with Azure Security Center. It provides users with advanced threat detection when hosting virtual machines in Azure.