Overview of Microsoft Enterprise Mobility & Security(EMS)

Sensitivity: Internal
http://windowstechpro.com

The challenges we face today in
keeping users productive while
protecting company information

Mobility is the new normal
52% of information workers
across 17 countries report
using three or more devices
for work*
52%
90% of enterprises will have
two or more mobile operating
systems
90%
>80% of employees admit to
using non-approved software-
as-a-service (SaaS)
applications in their jobs***
>80%

Is it possible to keep up?
Employees
Business partners
Customers
Is it possible to stay secure?
Apps
Devices
Data
Users
Data leaks
Lost device
Compromised identity
Stolen credentials

Rich PC management will continue to be an on-premises workload
Enterprise Mobility Management will be delivered as a Cloud service
IT Pros and end users want consistent and integrated experiences
Organizations will begin to shift to MDM-like management for their PCs
Hybrid Identity is the new control plane for the enterprise
Data must become self-protecting
The user is the final authority on their personal devices
IT is the final authority on corporate assets on any device

User freedomSecure against new threats Do more with less
Customers need
Identity – driven security Productivity without
compromise
Comprehensive
solutions
Microsoft solution
ENTERPRISE MOBILITY + SECURITY
Identity-driven
security
Comprehensive
solution
Managed mobile
productivity

What's Driving Change?
Devices Apps Data

1. Protect at the front door
Safeguard your resources at the front door with innovative and advanced risk-based
conditional accesses
2. Protect your data against user mistakes
Gain deep visibility into user, device, and data
activity on-premises and in the cloud.
3. Detect attacks before they cause damage
Uncover suspicious activity and pinpoint threats with deep visibility and
ongoing behavioral analytics.

Microsoft Intune
Mobile device settings
management
Mobile application
management
Selective wipe
Microsoft Azure Active Directory Premium
security reports, and
audit reports, multi-
factor authentication
Self-service password
reset and group
management
Connection between
Active Directory and
Azure Active Directory
What is the Enterprise Mobility & Security?
Microsoft Azure Rights Management service
Information protection Connection to on-
premises assets
Bring your own key

One User. One Identity. Everywhere.
Desktop
Virtualization
Access &
Information
Protection
Mobile Device &
Application
Management
Hybrid
Identity
Single sign-on
Self-service experiences
Common identity
Conditional access
SaaS applications

Public Identity as the control point
Active Directory

Identity is the foundation for enterprise

Hybrid Identity
Unify your environment
Create a centralized identity
across on-premises and cloud
Use identity federation to
maintain centralized
authentication and securely share
and collaborate with external
users and businesses
Enable users
Provide users with self-service
experiences to keep them
productive
Enable single sign-on for users
across all the resources they need
access to
Protect your data
Enforce strong authentication when
users access resources and apply
conditional access controls to
sensitive company information
Configure single sign-on across all
company applications
Ensure compliance with governance,
attestation and reporting
Protect your dataEnable users
User
User

Microsoft Intune
Mobile device settings
management
Mobile application
management
Selective wipe
Microsoft Azure Active Directory Premium
security reports, and
audit reports, multi-
factor authentication
Self-service password
reset and group
management
Connection between
Active Directory and
Microsoft Azure Rights Management service
Information protection Connection to on-
premises assets
Bring your own key
What is the Enterprise Mobility & Security?

Device choice. Simplified management.
Desktop
Virtualization
Access &
information
protection
Mobile device &
application
management
Hybrid
identity
Consistent user experience
Simplified device enrollment and registration
Single console to manage devices
Application management for Office and LOB

Office365andIntuneprotectdataonmobiledevices
withoutsacrificinguserproductivity
Secure Collaboration
• IT can set and manage policy around how data is shared with
managed and non-managed apps
• In addition to Office mobile apps for iOS and Android, Intune will
support management of LOB iOS and Android apps
Rich Office Experience
• Give users familiar, full-featured Office applications
• Maintain document formatting across platforms
• Securely store, sync, and share content via OneDrive for Business
Managing Office Mobile Apps with Intune
Personal
Corporate

User and Device Management
Protect your data
Protect corporate information by
selectively wiping apps and data
from retired/lost devices
A common identity for accessing
resources on-premises and in the
cloud
Identify which mobile devices have
been compromised
Enable users
Access to company resources
consistently across devices
Simplified registration and enrollment of
devices
Synchronized corporate data
User
On-premises and cloud-based
management of devices within a single
console.
Simplified, user-centric application
management across devices
Comprehensive settings management
across platforms, including certificates,
VPNs, and wireless network profiles
User

Right info. Right person. Right device.
Desktop
Virtualization
Access &
information
protection
Mobile device &
application
management
Hybrid
identity
Dynamic Access Control
Rights management
Secure access to work files

STRICTLY CONFIDENTIAL
CONFIDENTIAL
INTERNAL
NOT RESTRICTED
IT admin sets policies,
templates, and rules
FINANCE
CONFIDENTIAL
Add persistent labels defining sensitivity to filesClassify data according to policies– automatically or by user

Employees Business partners Customers
Secure and protect against new threats
Maximum productivity experience
Comprehensive and integrated
Apps DevicesDataUsers

Enterprise Mobility +Security

Information
protection
Identity-driven
security
Managed mobile
productivity
Identity and access
management
Azure Information
Protection Premium P2
Intelligent classification and
encryption for files shared
inside and outside your
organization
1)(includes all capabilities in P
Azure Information
Protection Premium P1
Encryption for all files and
storage locations
Cloud-based file tracking
Microsoft Cloud
App Security
Enterprise-grade visibility,
control, and protection for
your cloud applications
Microsoft Advanced
Threat Analytics
Protection from advanced
targeted attacks leveraging
user and entity behavioral
analytics
Microsoft Intune
Mobile device and app
management to protect
corporate apps and data on
any device
Premium P2
Identity and access
management with advanced
protection for users and
privileged identities
1)includes all capabilities in P(
Premium P1
Secure single sign-on to
cloud and on-premises apps
MFA, conditional access, and
advanced security reporting
EMS
E3
EMS
E5

Softkrishnan@gmail.com
Softkrishnan@outlook.com

Overview of Microsoft Enterprise Mobility & Security(EMS)

More Related Content

What's hot

Similar to Overview of Microsoft Enterprise Mobility & Security(EMS)

Recently uploaded

Overview of Microsoft Enterprise Mobility & Security(EMS)