Office365 security in depth

•Download as PPTX, PDF•

0 likes•1,653 views

This document contains profiles for two professionals with experience in IT security, communications, and Microsoft technologies like Exchange Server, Office 365, Lync, and Active Directory. It also includes questions about organizational concerns with IT and cloud computing, standards for security and compliance in Office 365, and tips for securely managing Office 365.

Technology

• More than 20 years in IT, 10 of them Exchange Server related
• Microsoft Community Contributor in 2013 and 2014
• MCSA Windows Server 2008/2012, MS Office365 for SMB
• Co-Founder of the Office365 Community in Spain @CO365
• Member of the Microsoft UC in Spanish www.ucenespanol.com
• Member of ITPro.es www.itpro.es
• Experienced Office365 speaker at European level
@guruxp
a.pascual@outlook.com

• Experience over 10 years in Security and Communications area
• Lync MVP (2012-2013)
• Microsoft Certified Trainer (Since 2005)
• MCP Lync 2013
• MCITP Lync 2010
• Certified Ethical Hacking (CEH)
• Certified Forensic Investigator (CHFI)
• Co-Founder of the Office365 Community in Spain @CO365
• Founder of the Microsoft UC in Spanish www.ucenespanol.com
• Member of ITPro.es www.itpro.es
@peterdiaz33
peterdiaz33@Hotmail.com

What are the Org main concerns about IT?
Security
Performance
Availability
Costs

What are the Org main concerns about
CLOUD?
Availability
Compliance
Costs
Security

International Standards
& Controls
ISO 27001
All Customer
Data Processing Agreement
SSAE 16 (Statement on standards for Attestation Engagement)
SOC 1 (Type I & Type II) compliance
Industry Specific
Compliance & Standards
FISMA US Government
HIPAA/BAA Healthcare Customers
FERPA EDU Customers
Geography Specific
Standards
EU Safe Harbor
EU Customers
EU Model Clauses
Office 365 Compliance & Standards
Full details available at: Microsoft Office 365 Trust Center

Active Directory
WAAD
DIRSYNC
Active Directory

No extra permissions
Can only change own
options
User Role-Admin Global Admin
Full Access to subscriptionRole specific admin
permissions (password
reset, User
management, billing
Admin…)

https://www.cogmotive.com/blog/office-365-tips/vulnerability-in-
office-365-allows-unauthorised-administrator-access
User
New
Global
Admin

Server side
(is up to MSFT)
Client side
(Is up to you)

• Always use In-Private sessions depending on the info you manage
• Always use In-Private sessions when working outside the org
• Secure your PC
• Use Microsoft Update instead of Windows Update
• Say goodbye to Windows XP and hello to Windows 8.1
• Fortify your Internet Explorer, specially with addons
• Try not to use other browsers that can´t offer secure browsing
• Use whenever it´s possible mobile connection instead of a public one

Cyberspace is the new battlefield: We’re seeing attacks on civilians and organizations from nation states. Attacks are no longer just against governments or enterprise systems directly. We’re seeing attacks against private property—the mobile devices we carry around everyday, the laptop on our desks—and public infrastructure. What started a decade-and-a-half ago as a sense that there were some teenagers in the basement hacking their way has moved far beyond that. It has morphed into sophisticated international organized crime and, worse, sophisticated nation state attacks. Personnel and resources are limited: According to an annual survey of 620 IT professional across North America and Western Europe from ESG, 51% respondents claim their organization had a problem of shortage of cybersecurity skills—up from 23% in 2014.1 The security landscape is getting more complicated and the stakes are rising, but many enterprises don’t have the resources they need to meet their security needs. Virtually anything can be corrupted: The number of connected devices in 2018 is predict to top 11 billion – not including computers and phones. As we connect virtually everything, anything can be disrupted. Everything from the cloud to the edge needs to be considered and protected.2

4 Essential Components of Office 365 Security

Bitglass

CollabDays BeNeLux Sensitivity labels: what's new

Albert Hoitingh

Get Ahead of Cyber Attacks with Microsoft Enterprise Mobility + Security

David J Rosenthal

Digital transformation with freedom and peace of mind Holistic, identity-driven protection Help guard your data from attacks on multiple levels using innovative, identity-driven security techniques. Productivity without compromise Preserve the mobile and desktop experiences your workers need to stay working with familiar apps and tools. Flexible, comprehensive solutions Do more with less—protect users, devices, apps, and data with intuitive mobile management on a future-ready platform. microsoft@atidan.com

Office 365 smb guidelines for pure bookkeeping (slideshare)

DavidNicholls52

While security and legal fears have gone down, they still account for 5% of enterprises not planning a migration to Office 365, according to Gartner. This is a real shame, because as you know, O365 can drive considerable business productivity, employee engagement and can enable digital workforce greatness. Moreover, O365 has 70 million commercial active users per month and according to Gartner, controls over 80% of the email share. Well, have no fear (literally). Our experts have put together an insightful hour to explore, discuss and appease any fears you may have around compliance, security and data control in the Microsoft cloud. Hosted jointly by Microsoft and Softchoice Office 365 pros, you will learn about: - Keeping privacy and control of your data on Office 365 - Overcoming legal and compliance concerns - The advantages of cloud security versus on-premise, and much more

cyber-security-reference-architecture

Birendra Negi ☁️

CASBs - A New Hope

Bitglass

For enterprises looking to protect cloud app data, Cloud Access Security Brokers (CASBs) have quickly emerged as the go-to solution. But how have CASBs matured and encompassed critical pieces of the security puzzle, from identity management to data leakage prevention? Join Bitglass and (ISC)2 for Episode 1 of the CASB Wars webinar trilogy for a discussion about the evolution of CASBs from app discovery to complete cloud security suites and basic API-based controls to more capable multi-protocol proxies.

Webinar bitglass - complete deck-2

Bitglass

We are now three plus years into widespread adoption across industries of public SaaS apps like Office 365. Despite this momentum, security and compliance remain top challenges. This webinar, featuring Matt Hollcraft, CISO for Maxim Integrated, Dave Ruedger, Chief Security Architect for Maxim Integrated, and Rich Campagna, SVP of Products for Bitglass, will help you build a 2017 action plan to embrace public cloud without sacrificing security and compliance. While offering practical, actionable advice for major apps like Office 365, Matt, Dave and Rich will address your top concerns, such as unmanaged device access, external sharing, and mitigating controls. They also will provide real world examples of how other organizations have securely navigated the public cloud.

Microsoft 365 Compliance

David J Rosenthal

We live in a time where digital technology is profoundly impacting our lives, from the way we connect with each other to how we interpret our world. First and foremost, this digital transformation is causing a tsunami of data. In fact, IDC estimates that in 2025, the world will create and replicate 163ZB of data, representing a tenfold increase from the amount of data created in 2016. In the past, organizations primarily dealt with documents and emails. But now they’re also dealing with instant messaging, text messaging, video files, images, and DIO files. The internet of things, or IOT, will only add to this explosion in data. Managing this data overload and the variety of devices from which it is created is complicated and onerous as the market for solutions is fragmented and confusing. There are many categories of solutions, and within each, there are even more solutions to choose from. Many companies are struggling to decide how many of those solutions they need and where to start. Additionally, using multiple solutions means they won’t be integrated, so companies end up managing multiple applications from multiple disparate interfaces. The question we often get asked is, “How can Microsoft 365 help me?”

Azure Information Protection at the Cybercrime and Security Forum 2018

Albert Hoitingh

Community IT - Single Sign On

Community IT Innovators

SharePoint Saturday Cambridge: Security & compliance

Albert Hoitingh

Identity and Data protection with Enterprise Mobility Security in ottica GDPR

Jürgen Ambrosi

Introduzione agli scenari di autenticazione per i servizi informativi nei contesti lavorativi moderni. Panoramica delle soluzioni offerte dalla soluzione Enterprise Mobility and Security per la messa in sicurezza delle identità e delle informazioni nel loro completo ciclo di vita. Prevenzione, rilevamento, contenimento e risposta a minacce di tipo avanzato con riferimenti alla cyber kill chain (focus su Endpoint, Identità, servizi di produttività e cloud app).

Bitglass Webinar - A Primer on CASBs and Cloud Security

Bitglass

Introduction to Microsoft Enterprise Mobility + Security

AntonioMaio2

Microsoft has given us some amazing capabilities with the Microsoft Enterprise Mobility + Security (EM+S) suite to help protect both our information and our investments in Office 365. This collection of features gives you just about everything you need in the Microsoft Cloud for security, compliance and Information Protection. With such a vast array of services, tools and features, its often challenging to understand everything this product provides or how its layered on top of existing Office 365 security controls. In this session we’ll review the capabilities available to you in Microsoft EM+S, and you'll discover which ones may best fit with your security and compliance needs. Come and join us, as we also dive deep into some of the most useful Microsoft EM+ S tools.

aMS SouthEast Asia 2021 - Microsoft 365 Data Loss Prevention

Albert Hoitingh

Empower Enterprise Mobility- Maximize Mobile Control- Presented by Atidan

David J Rosenthal

Identity + Mobile Management + Security Keep your employees productive on their favorite apps and devices—and your company data protected with enterprise mobility solutions from Microsoft. Windows 10 is better with EMS Windows 10 is the best Windows ever and provides a foundation for protection against modern threats and continuous management while enabling your users to be more productive. To get the most out of your mobile security and productivity strategy, integrate the Microsoft Enterprise Mobility Suite (EMS) with Windows 10 for greater protection of users, devices, apps, and data. Our enterprise-grade security A key concern for you continues to be security, and rightly so. Identity is the control plane at the center of our solution helping you to be more secure. Only Microsoft offers cloud identity and access management solutions running at Internet scale and designed to help secure your IT environment. Microsoft Azure Active Directory has hundreds of millions of users, is available in 35 datacenters around the world, and has processed more than 1 trillion (yes, trillion) authentications. Our innovative new technology, Microsoft Advanced Threat Analytics is designed to help you identify advanced persistent threats in your organization before they cause damage. We’re more integrated and flexible Architecture matters. That’s why our solutions run in the cloud and work seamlessly with your on-premises investments—taking the worry out of scale, maintenance, and updates. Our cloud-first approach provides an integrated set of solutions that are designed to work together from the ground up, avoiding the need for costly and complicated integration efforts across point capabilities. It’s the fastest and most cost-effective way to meet new business challenges and accommodate new devices, new apps, and new hires. Nobody manages Office better Protecting email and other corporate data on mobile devices—without bogging down workers—is one of today’s biggest IT challenges. Other vendors solve it with apps that compromise user experience and put the brakes on productivity. Microsoft enterprise mobility solutions integrate deeply with Microsoft Office, the gold standard of productivity. We’re the only solution that brings managed mobile productivity with Microsoft Office across devices.

Being more secure using Microsoft 365 Business

Robert Crane

SOC-as-a-Service - comSpark 2019

Advanced Technology Consulting (ATC)

Despite best efforts and substantial financial investment, costly breaches continue to happen at an alarming rate. The common approach to securing assets by purchasing sophisticated, layered security technologies is not working. These technologies are necessary, but not enough. A best practice model to minimize risk combines technology with continuous monitoring by security experts in a SOC. This session presents a model for effectively monitoring hybrid, multi-cloud environments. It covers the basic architecture of a modern SOC and proposes a pragmatic approach to providing complete visibility into all potential attack surfaces.

A beginners guide to administering office 365 with power shell antonio maio

AntonioMaio2

With Office 365 PowerShell, you can manage Office 365 for your organization using commands and scripts that streamline your day to day work. Microsoft provides several easy to use admin centers to help manage Office 365. However, whether you’re an Office 365 administrator yourself or a service owner for Office 365 in your organization (working with other administrators), you’ll quickly find that you need to go beyond the capabilities that these admin centers provide. PowerShell can help you automate tasks so that they are easily repeatable, it can help you script management tasks so that they are automatically performed on a schedule and it can help you quickly output large amounts of data about your Office 365 environment. As well, some Office 365 settings are only manageable using PowerShell, with no UX provided. In this session, you’ll learn how to get started with Office 365 PowerShell and how to quickly become productive with it, making you more productive and empowered as you manage your Office 365 environment.

AzureThursday Mirabeau - Azure Information Protection

Albert Hoitingh

Office 365 Security, Privacy and Compliance - SMB Nation 2015

Robert Crane

Management of all the devices using Microsoft 365 Business

Robert Crane

Microsoft Azure Rights Management

David J Rosenthal

Microsoft Azure Rights Management provides a comprehensive policy-based enterprise solution to help protect your valuable information, no matter whom you share it with. For $2.00 per user per month, you get Information Rights Management capabilities such as Do Not Forward and Company Confidential, as well as Office 365 Message Encryption, which allows you send encrypted emails to anyone! Easily enforce policies to improve data security Both Information Rights Management and Office 365 Message Encryption are policy based and designed to work with the Exchange transport rule engine. That means Microsoft Azure Rights Management allows you to set up complex policy restrictions easily, with just a single action. Simple and convenient communication management Information Rights Management is built to work across multiple workloads such as Exchange, SharePoint, and Office documents, and it makes it easier to set restrictions and provide permissions. Office 365 Message Encryption comes with a modern user interface that makes it easy to use.

Information Governance in office 365 records management and retention

John P. Collins | Information Governance

What is Microsoft Enterprise Mobility Suite and how to deploy it

Peter De Tender

Key components of the Enterprise Mobility Suite are Azure AD Premium, Windows Intune and Azure Rights Management. Learn from Peter De Tender, Microsoft Infrastructure Architect, MCT and MVP not only what the Microsoft Enterprise Mobility Suite is, but also how one can deploy it in an enterprise organization. By attending this session, you will gain the knowledge to optimize the adoption of IT, BYOD and SaaS as the core cloud solution components. Key concepts that will be covered are identity and access management, mobile device management and data protection.

What's hot

Softchoice - Microsoft Office 365 - Discussing legal concerns and informatio...

Softchoice Corporation

cyber-security-reference-architecture

Birendra Negi ☁️

CASBs - A New Hope

Bitglass

Webinar bitglass - complete deck-2

Bitglass

Microsoft 365 Compliance

David J Rosenthal

Azure Information Protection at the Cybercrime and Security Forum 2018

Albert Hoitingh

Community IT - Single Sign On

Community IT Innovators

SharePoint Saturday Cambridge: Security & compliance

Albert Hoitingh

Identity and Data protection with Enterprise Mobility Security in ottica GDPR

Jürgen Ambrosi

Bitglass Webinar - A Primer on CASBs and Cloud Security

Bitglass

Introduction to Microsoft Enterprise Mobility + Security

AntonioMaio2

aMS SouthEast Asia 2021 - Microsoft 365 Data Loss Prevention

Albert Hoitingh

Empower Enterprise Mobility- Maximize Mobile Control- Presented by Atidan

David J Rosenthal

Being more secure using Microsoft 365 Business

Robert Crane

SOC-as-a-Service - comSpark 2019

Advanced Technology Consulting (ATC)

A beginners guide to administering office 365 with power shell antonio maio

AntonioMaio2

AzureThursday Mirabeau - Azure Information Protection

Albert Hoitingh

Office 365 Security, Privacy and Compliance - SMB Nation 2015

Robert Crane

Management of all the devices using Microsoft 365 Business

Robert Crane

Microsoft Azure Rights Management

David J Rosenthal

What's hot (20)

Softchoice - Microsoft Office 365 - Discussing legal concerns and informatio...

cyber-security-reference-architecture

CASBs - A New Hope

Webinar bitglass - complete deck-2

Microsoft 365 Compliance

Azure Information Protection at the Cybercrime and Security Forum 2018

Community IT - Single Sign On

SharePoint Saturday Cambridge: Security & compliance

Identity and Data protection with Enterprise Mobility Security in ottica GDPR

Bitglass Webinar - A Primer on CASBs and Cloud Security

Introduction to Microsoft Enterprise Mobility + Security

aMS SouthEast Asia 2021 - Microsoft 365 Data Loss Prevention

Empower Enterprise Mobility- Maximize Mobile Control- Presented by Atidan

Being more secure using Microsoft 365 Business

SOC-as-a-Service - comSpark 2019

A beginners guide to administering office 365 with power shell antonio maio

AzureThursday Mirabeau - Azure Information Protection

Office 365 Security, Privacy and Compliance - SMB Nation 2015

Management of all the devices using Microsoft 365 Business

Microsoft Azure Rights Management

Similar to Office365 security in depth

Information Governance in office 365 records management and retention

John P. Collins | Information Governance

What is Microsoft Enterprise Mobility Suite and how to deploy it

Peter De Tender

Proven Practices for Office 365 Deployment, Security and Management

Perficient, Inc.

Learn how the single sign-on and automated account provisioning for Office 365 can stop the cloud password sprawl, close security holes and free up IT time for new projects. This covers topics such as how to drive cloud app adoption, centralize, standardize and automate access, leverage active directory without the expense and risk of replicating it, and to ultimately simply your Office 365 deployment.

Introduction to Microsoft 365 Enterprise

Robert Crane

Maximizing Your Office 365 Investments With OneDrive

Netwoven Inc.

Learn how to maximize OneDrive with Office 365 and have virtually ubiquitous access to open, edit and share data from anywhere. Also, Office 365 users can now stop discriminating about which files or data deserve to occupy the cloud and which should remain local. Key Takeaways: • Why use OneDrive with Office 365 • Comparison between OneDrive and other cloud storage products • OneDrive Migration • Integration with Office 365

Identity Management Over the Horizon: What’s New and What’s Next

ENow Software

Microsoft is continually pumping changes into its cloud services. One of the biggest sets of changes revolves around Azure Active Directory (AAD), the core identity service that Microsoft hopes to someday use to replace on-premises Active Directory. AAD is a key part of Office 365, but it has many other capabilities too. In this webinar, Microsoft Exchange MVP Paul Robichaux will cover: - The various editions of AAD. - What they do and don’t do - How you can effectively use them as part of your overall identity management strategy for user authentication, federation, and access to cloud services.

Modern Workplace Conference 2022 - Paris Microsoft Information Protection Dem...

Albert Hoitingh

M365 e3 and identity and threat protection and compliance new skus

SpencerLuke2

Agile IT EMS webinar series, session 1

AgileIT

At Agile IT, we've been leading the trend in moving customers to the Microsoft Cloud. Along that roadmap is the need to secure and manage the devices that will access that data. The Microsoft Enterprise Mobility Suite (EMS) focuses on managing both the data that's accessible from the cloud as well as the devices that access it. In this webinar, we introduce you to EMS and focus on how cloud technologies work together to deliver a seamless solution for protecting your data. The accompanying recording of the webinar can be found at https://youtu.be/NOWFI4xl-dM.

SharePoint Online vs. On-Premise

Evan Hodges

It's always been a dilemma -- do you invest in servers, licenses and people to set up and maintain a fully controllable SharePoint infrastructure in-house, or is it time to explore hosting SharePoint off-premise? Legal IT professionals have been struggling with this decision for years. The on-premise option offers peace of mind from a security and controllability standpoint, but comes saddled with high costs, a demand for resources and limited scalability. SharePoint Online, on the other hand, alleviates the burden associated with SharePoint on-premise by removing the need for servers, software licenses and personnel, and can be rolled out to a large pool of people virtually overnight. However, you'll still need support for integration projects. Join us as we discuss the pros and cons of each option and give you recommendations based on our experiences, deployments and feedback. Speakers: Ted Theodoropoulos, as the founder and President of Acrowire, combines his interest in technology with his passion to improve the business productivity of entrepreneurs and corporations. He has a background in technology going back to the early 1980s and is an expert at reducing the cost of doing business by identifying process inefficiencies and implementing the right technology solution to bridge the gap. Ted has earned Six Sigma Green and Black Belt certifications, and his Green Belt work led to a United States patent for which he was recognized with the 2007 Best of Six Sigma Award. He is a Microsoft Certified Professional and a Certified Scrum Master. Contact Ted at ted@acrowire.com. Brian Gough, a Solutions Architect at Acrowire, offers a wealth of knowledge with over 20 years of experience in the IT industry. He has been working with SharePoint since version 2003, and has set up more than 50 farms and over 200 sites in nine languages. Brian has twice been recognized by Microsoft and his peers as a SharePoint MVP for his contributions to the SharePoint community and knowledge of the product. He has taught classes in SharePoint development and given numerous speeches and presentations around the country on a variety of SharePoint topics. Contact Brian at bgough@acrowire.com.

2017-10-03 Session aOS - Back from Ignite - MS Experiences

Patrick Guimonet

2017-10-04 aOS back from MSIgnite aux MS Experiences 17

aOS Community

SharePoint Saturday Ottawa - How secure is my data in office 365?

AntonioMaio2

When considering a cloud based service like Office 365, questions about security and trust often gets asked – questions like: Can I trust Office 365 with my company’s data? How secure is my data in Office 365? Organizations are often cautious when it comes to trusting cloud services with storing and providing access to corporate data. This becomes even more of a concern when we think about sensitive data, personally identifiable data or data that requires regulatory compliance controls. Being cautious and asking a cloud service provider questions about security and trust is a positive step. Answering those questions requires learning about the security strategy the provider has employed, and the specific controls they have put in place to protect your data. This session will answer those questions and provide an overview of the robust set of security capabilities available in Office 365.

2015 Microsoft Office 365: Beyond EmailUnited Technology Group (UTG)

Compliance and eDiscovery with Office 365

Corey Roth

Microsoft in the Cloud: Making Migration Easy

TechSoup

The shift to the cloud allows nonprofits to further optimize their technology, allowing them to better serve their communities. The migration to the cloud also reflects a larger, global trend to move IT infrastructure to a cloud-based model. In this 30-minute webinar, we will discuss the following: - What is the cloud? - Microsoft's product offerings from TechSoup (from basic to a fully optimized product set) - How to register through Microsoft and TechSoup - Deciding what products are right for you

Microsoft SharePoint Cloud presentation

C/D/H Technology Consultants

Information Governance and ediscovery in office 365 ediscovery deep dive

bilgore

Intro to the Office 365 Admin Center

Nikkia Carter

*UPDATED* These are slides that were present at SharePoint Saturday Vancouver. They have been updated as of 14 April 2018. Description: You got Office 365 and you need to use it. You need to let others in your organization use it because you were designated the admin but you can't spell Office 365... yet. Where do you start? In this session, you will learn about the basics of administering Office 365 through the Admin Centers and where to start. 1. Be introduced to Office 365 2. Learn how to setup and manage users 3. Learn how to add your organization's domain 4. Learn about the Office 365 Admin Center and the other 3 major admin centers: Exchange, Skype for Business, and SharePoint (old and new). 5. Best practices, tips, and tricks along the way

Webinar - Compliance with the Microsoft Cloud- 2017-04-19

TechSoup

Everyone throws around the word compliance but how do you actually achieve that? In this free, 60-minute webinar Sam Chenkin from Tech Impact discusses achievable goals for the nonprofit community to keep their data safe with the Microsoft Cloud. We explore account security like two-factor authentication, data security like encryption, and how to make sure only compliant devices can access your data.

Similar to Office365 security in depth (20)

Information Governance in office 365 records management and retention

What is Microsoft Enterprise Mobility Suite and how to deploy it

Proven Practices for Office 365 Deployment, Security and Management

Introduction to Microsoft 365 Enterprise

Maximizing Your Office 365 Investments With OneDrive

Identity Management Over the Horizon: What’s New and What’s Next

Modern Workplace Conference 2022 - Paris Microsoft Information Protection Dem...

M365 e3 and identity and threat protection and compliance new skus

Agile IT EMS webinar series, session 1

SharePoint Online vs. On-Premise

2017-10-03 Session aOS - Back from Ignite - MS Experiences

2017-10-04 aOS back from MSIgnite aux MS Experiences 17

SharePoint Saturday Ottawa - How secure is my data in office 365?

2015 Microsoft Office 365: Beyond Email

Compliance and eDiscovery with Office 365

Microsoft in the Cloud: Making Migration Easy

Microsoft SharePoint Cloud presentation

Information Governance and ediscovery in office 365 ediscovery deep dive

Intro to the Office 365 Admin Center

Webinar - Compliance with the Microsoft Cloud- 2017-04-19

Recently uploaded

Quantum Computing: Current Landscape and the Future Role of APIs

Vlad Stirbu

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf

FIDO Alliance

Welocme to ViralQR, your best QR code generator.

ViralQR

Welcome to ViralQR, your best QR code generator available on the market! At ViralQR, we design static and dynamic QR codes. Our mission is to make business operations easier and customer engagement more powerful through the use of QR technology. Be it a small-scale business or a huge enterprise, our easy-to-use platform provides multiple choices that can be tailored according to your company's branding and marketing strategies. Our Vision We are here to make the process of creating QR codes easy and smooth, thus enhancing customer interaction and making business more fluid. We very strongly believe in the ability of QR codes to change the world for businesses in their interaction with customers and are set on making that technology accessible and usable far and wide. Our Achievements Ever since its inception, we have successfully served many clients by offering QR codes in their marketing, service delivery, and collection of feedback across various industries. Our platform has been recognized for its ease of use and amazing features, which helped a business to make QR codes. Our Services At ViralQR, here is a comprehensive suite of services that caters to your very needs: Static QR Codes: Create free static QR codes. These QR codes are able to store significant information such as URLs, vCards, plain text, emails and SMS, Wi-Fi credentials, and Bitcoin addresses. Dynamic QR codes: These also have all the advanced features but are subscription-based. They can directly link to PDF files, images, micro-landing pages, social accounts, review forms, business pages, and applications. In addition, they can be branded with CTAs, frames, patterns, colors, and logos to enhance your branding. Pricing and Packages Additionally, there is a 14-day free offer to ViralQR, which is an exceptional opportunity for new users to take a feel of this platform. One can easily subscribe from there and experience the full dynamic of using QR codes. The subscription plans are not only meant for business; they are priced very flexibly so that literally every business could afford to benefit from our service. Why choose us? ViralQR will provide services for marketing, advertising, catering, retail, and the like. The QR codes can be posted on fliers, packaging, merchandise, and banners, as well as to substitute for cash and cards in a restaurant or coffee shop. With QR codes integrated into your business, improve customer engagement and streamline operations. Comprehensive Analytics Subscribers of ViralQR receive detailed analytics and tracking tools in light of having a view of the core values of QR code performance. Our analytics dashboard shows aggregate views and unique views, as well as detailed information about each impression, including time, device, browser, and estimated location by city and country. So, thank you for choosing ViralQR; we have an offer of nothing but the best in terms of QR code services to meet business diversity!

Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...

UiPathCommunity

💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™: See how to accelerate model training and optimize model performance with active learning Learn about the latest enhancements to out-of-the-box document processing – with little to no training required Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath. Speakers: 👨‍🏫 Andras Palfi, Senior Product Manager, UiPath 👩‍🏫 Lenka Dulovicova, Product Program Manager, UiPath

Securing your Kubernetes cluster_ a step-by-step guide to success !

KatiaHIMEUR1

Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster. However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks. In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

James Anderson

Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management. The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM). Speakers: Bob Boule Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle. Gopinath Rebala Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.

Accelerate your Kubernetes clusters with Varnish Caching

Thijs Feryn

PCI PIN Basics Webinar from the Controlcase Team

ControlCase

Free Complete Python - A step towards Data Science

RinaMondal9

SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdf

Peter Spielvogel

Building better applications for business users with SAP Fiori. • What is SAP Fiori and why it matters to you • How a better user experience drives measurable business benefits • How to get started with SAP Fiori today • How SAP Fiori elements accelerates application development • How SAP Build Code includes SAP Fiori tools and other generative artificial intelligence capabilities • How SAP Fiori paves the way for using AI in SAP apps

Elevating Tactical DDD Patterns Through Object Calisthenics

Dorra BARTAGUIZ

After immersing yourself in the blue book and its red counterpart, attending DDD-focused conferences, and applying tactical patterns, you're left with a crucial question: How do I ensure my design is effective? Tactical patterns within Domain-Driven Design (DDD) serve as guiding principles for creating clear and manageable domain models. However, achieving success with these patterns requires additional guidance. Interestingly, we've observed that a set of constraints initially designed for training purposes remarkably aligns with effective pattern implementation, offering a more ‘mechanical’ approach. Let's explore together how Object Calisthenics can elevate the design of your tactical DDD patterns, offering concrete help for those venturing into DDD for the first time!

State of ICS and IoT Cyber Threat Landscape Report 2024 preview

Prayukth K V

The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development. The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers: State of global ICS asset and network exposure Sectoral targets and attacks as well as the cost of ransom Global APT activity, AI usage, actor and tactic profiles, and implications Rise in volumes of AI-powered cyberattacks Major cyber events in 2024 Malware and malicious payload trends Cyberattack types and targets Vulnerability exploit attempts on CVEs Attacks on counties – USA Expansion of bot farms – how, where, and why In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East Why are attacks on smart factories rising? Cyber risk predictions Axis of attacks – Europe Systemic attacks in the Middle East Download the full report from here: https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/

Assuring Contact Center Experiences for Your Customers With ThousandEyes

ThousandEyes

How world-class product teams are winning in the AI era by CEO and Founder, P...

Product School

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

Product School

Bits & Pixels using AI for Good.........

Alison B. Lowndes

Leading Change strategies and insights for effective change management pdf 1.pdf

OnBoard

Introduction to CHERI technology - Cybersecurity

mikeeftimakis1

Assure Contact Center Experiences for Your Customers With ThousandEyes

ThousandEyes

Monitoring Java Application Security with JDK Tools and JFR Events

Ana-Maria Mihalceanu

Recently uploaded (20)

Quantum Computing: Current Landscape and the Future Role of APIs

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf

Welocme to ViralQR, your best QR code generator.

Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...

Securing your Kubernetes cluster_ a step-by-step guide to success !

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

Accelerate your Kubernetes clusters with Varnish Caching

PCI PIN Basics Webinar from the Controlcase Team

Free Complete Python - A step towards Data Science

SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdf

Elevating Tactical DDD Patterns Through Object Calisthenics

State of ICS and IoT Cyber Threat Landscape Report 2024 preview

Assuring Contact Center Experiences for Your Customers With ThousandEyes

How world-class product teams are winning in the AI era by CEO and Founder, P...

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

Bits & Pixels using AI for Good.........

Leading Change strategies and insights for effective change management pdf 1.pdf

Introduction to CHERI technology - Cybersecurity

Assure Contact Center Experiences for Your Customers With ThousandEyes

Monitoring Java Application Security with JDK Tools and JFR Events

Office365 security in depth

3. • More than 20 years in IT, 10 of them Exchange Server related • Microsoft Community Contributor in 2013 and 2014 • MCSA Windows Server 2008/2012, MS Office365 for SMB • Co-Founder of the Office365 Community in Spain @CO365 • Member of the Microsoft UC in Spanish www.ucenespanol.com • Member of ITPro.es www.itpro.es • Experienced Office365 speaker at European level @guruxp a.pascual@outlook.com

4. • Experience over 10 years in Security and Communications area • Lync MVP (2012-2013) • Microsoft Certified Trainer (Since 2005) • MCP Lync 2013 • MCITP Lync 2010 • Certified Ethical Hacking (CEH) • Certified Forensic Investigator (CHFI) • Co-Founder of the Office365 Community in Spain @CO365 • Founder of the Microsoft UC in Spanish www.ucenespanol.com • Member of ITPro.es www.itpro.es @peterdiaz33 peterdiaz33@Hotmail.com

5. What are the Org main concerns about IT? Security Performance Availability Costs

6. What are the Org main concerns about CLOUD? Availability Compliance Costs Security

7. International Standards & Controls ISO 27001 All Customer Data Processing Agreement SSAE 16 (Statement on standards for Attestation Engagement) SOC 1 (Type I & Type II) compliance Industry Specific Compliance & Standards FISMA US Government HIPAA/BAA Healthcare Customers FERPA EDU Customers Geography Specific Standards EU Safe Harbor EU Customers EU Model Clauses Office 365 Compliance & Standards Full details available at: Microsoft Office 365 Trust Center

8. Active Directory PURE CLOUD

9. Active Directory WAAD DIRSYNC Active Directory

10. Active Directory ADFS

11. No extra permissions Can only change own options User Role-Admin Global Admin Full Access to subscriptionRole specific admin permissions (password reset, User management, billing Admin…)

12. https://www.cogmotive.com/blog/office-365-tips/vulnerability-in- office-365-allows-unauthorised-administrator-access User New Global Admin

13.

14.

15. Server side (is up to MSFT) Client side (Is up to you)

16. • Always use In-Private sessions depending on the info you manage • Always use In-Private sessions when working outside the org • Secure your PC • Use Microsoft Update instead of Windows Update • Say goodbye to Windows XP and hello to Windows 8.1 • Fortify your Internet Explorer, specially with addons • Try not to use other browsers that can´t offer secure browsing • Use whenever it´s possible mobile connection instead of a public one

Office365 security in depth

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Office365 security in depth

Similar to Office365 security in depth (20)

More from Alberto Pascual

More from Alberto Pascual (11)

Recently uploaded

Recently uploaded (20)

Office365 security in depth