4. Sensitivity: Internal
Mobility is the new normal
52% of information workers
across 17 countries report
using three or more devices
for work*
52%
90% of enterprises will have
two or more mobile operating
systems
90%
>80% of employees admit to
using non-approved software-
as-a-service (SaaS)
applications in their jobs***
>80%
5. Sensitivity: Internal
Is it possible to keep up?
Employees
Business partners
Customers
Is it possible to stay secure?
Apps
Devices
Data
Users
Data leaks
Lost device
Compromised identity
Stolen credentials
6. Sensitivity: Internal
Rich PC management will continue to be an on-premises workload
Enterprise Mobility Management will be delivered as a Cloud service
IT Pros and end users want consistent and integrated experiences
Organizations will begin to shift to MDM-like management for their PCs
Hybrid Identity is the new control plane for the enterprise
Data must become self-protecting
The user is the final authority on their personal devices
IT is the final authority on corporate assets on any device
7. Sensitivity: Internal
User freedomSecure against new threats Do more with less
Customers need
Identity – driven security Productivity without
compromise
Comprehensive
solutions
Microsoft solution
ENTERPRISE MOBILITY + SECURITY
Identity-driven
security
Comprehensive
solution
Managed mobile
productivity
9. Sensitivity: Internal
1. Protect at the front door
Safeguard your resources at the front door with innovative and advanced risk-based
conditional accesses
2. Protect your data against user mistakes
Gain deep visibility into user, device, and data
activity on-premises and in the cloud.
3. Detect attacks before they cause damage
Uncover suspicious activity and pinpoint threats with deep visibility and
ongoing behavioral analytics.
10. Sensitivity: Internal
Microsoft Intune
Mobile device settings
management
Mobile application
management
Selective wipe
Microsoft Azure Active Directory Premium
security reports, and
audit reports, multi-
factor authentication
Self-service password
reset and group
management
Connection between
Active Directory and
Azure Active Directory
What is the Enterprise Mobility & Security?
Microsoft Azure Rights Management service
Information protection Connection to on-
premises assets
Bring your own key
11. Sensitivity: Internal
One User. One Identity. Everywhere.
Desktop
Virtualization
Access &
Information
Protection
Mobile Device &
Application
Management
Hybrid
Identity
Single sign-on
Self-service experiences
Common identity
Conditional access
SaaS applications
15. Sensitivity: Internal
Hybrid Identity
Unify your environment
Create a centralized identity
across on-premises and cloud
Use identity federation to
maintain centralized
authentication and securely share
and collaborate with external
users and businesses
Enable users
Provide users with self-service
experiences to keep them
productive
Enable single sign-on for users
across all the resources they need
access to
Protect your data
Enforce strong authentication when
users access resources and apply
conditional access controls to
sensitive company information
Configure single sign-on across all
company applications
Ensure compliance with governance,
attestation and reporting
Protect your dataEnable users
User
Unify your environment
User
17. Sensitivity: Internal
Microsoft Intune
Mobile device settings
management
Mobile application
management
Selective wipe
Microsoft Azure Active Directory Premium
security reports, and
audit reports, multi-
factor authentication
Self-service password
reset and group
management
Connection between
Active Directory and
Azure Active Directory
Microsoft Azure Rights Management service
Information protection Connection to on-
premises assets
Bring your own key
What is the Enterprise Mobility & Security?
18. Sensitivity: Internal
Device choice. Simplified management.
Desktop
Virtualization
Access &
information
protection
Mobile device &
application
management
Hybrid
identity
Consistent user experience
Simplified device enrollment and registration
Single console to manage devices
Application management for Office and LOB
19. Sensitivity: Internal
Office365andIntuneprotectdataonmobiledevices
withoutsacrificinguserproductivity
Secure Collaboration
• IT can set and manage policy around how data is shared with
managed and non-managed apps
• In addition to Office mobile apps for iOS and Android, Intune will
support management of LOB iOS and Android apps
Rich Office Experience
• Give users familiar, full-featured Office applications
• Maintain document formatting across platforms
• Securely store, sync, and share content via OneDrive for Business
Managing Office Mobile Apps with Intune
Personal
Corporate
21. Sensitivity: Internal
User and Device Management
Protect your data
Protect corporate information by
selectively wiping apps and data
from retired/lost devices
A common identity for accessing
resources on-premises and in the
cloud
Identify which mobile devices have
been compromised
Enable users
Access to company resources
consistently across devices
Simplified registration and enrollment of
devices
Synchronized corporate data
User
Unify your environment
On-premises and cloud-based
management of devices within a single
console.
Simplified, user-centric application
management across devices
Comprehensive settings management
across platforms, including certificates,
VPNs, and wireless network profiles
User
22. Sensitivity: Internal
Microsoft Intune
Mobile device settings
management
Mobile application
management
Selective wipe
Microsoft Azure Active Directory Premium
security reports, and
audit reports, multi-
factor authentication
Self-service password
reset and group
management
Connection between
Active Directory and
Azure Active Directory
What is the Enterprise Mobility & Security?
Microsoft Azure Rights Management service
Information protection Connection to on-
premises assets
Bring your own key
23. Sensitivity: Internal
Right info. Right person. Right device.
Desktop
Virtualization
Access &
information
protection
Mobile device &
application
management
Hybrid
identity
Dynamic Access Control
Rights management
Secure access to work files
28. Sensitivity: Internal
Employees Business partners Customers
Secure and protect against new threats
Maximum productivity experience
Comprehensive and integrated
Apps DevicesDataUsers
30. Sensitivity: Internal
Information
protection
Identity-driven
security
Managed mobile
productivity
Identity and access
management
Azure Information
Protection Premium P2
Intelligent classification and
encryption for files shared
inside and outside your
organization
1)(includes all capabilities in P
Azure Information
Protection Premium P1
Encryption for all files and
storage locations
Cloud-based file tracking
Microsoft Cloud
App Security
Enterprise-grade visibility,
control, and protection for
your cloud applications
Microsoft Advanced
Threat Analytics
Protection from advanced
targeted attacks leveraging
user and entity behavioral
analytics
Microsoft Intune
Mobile device and app
management to protect
corporate apps and data on
any device
Azure Active Directory
Premium P2
Identity and access
management with advanced
protection for users and
privileged identities
1)includes all capabilities in P(
Azure Active Directory
Premium P1
Secure single sign-on to
cloud and on-premises apps
MFA, conditional access, and
advanced security reporting
EMS
E3
EMS
E5