Kurt Shintaku's Blog

We are excited to announce the general availability of Microsoft Cloud App Security and Azure Advanced Threat Protection (ATP) for US Government GCC High customers! The release of these services completes the Enterprise Mobility + Security (EMS) E5 product suite for US GCC High customers, delivering advanced security functionality by driving critical information and threat protection capabilities for these customers. Additionally, Office 365 Cloud App Security and Cloud Discovery, services which are a subset of Microsoft Cloud App Security for Office 365 E5 and EMS E3/Azure AD P1/P2, respectively, are also now available for GCC High customers.

With the availability of the Microsoft Enterprise Mobility + Security E5 product suite, our US GCC High customers now have access to the full suite of Microsoft 365 security products, following the announcement of the general availability of Microsoft Defender ATP in August.  As US Government customers embark on their journey to the cloud, our industry-leading end-to-end solution will protect sensitive data and information wherever it travels – across users, applications, files, and platforms.  Through these solutions, we’ll empower departments and agencies to create highly secure workplaces and achieve their mission objectives.

• Microsoft Cloud App Security is a Cloud Access Security Broker (CASB) that supports various deployment modes including log collection and API connectors. It provides rich visibility, control over data travel, and sophisticated analytics to identify and combat cyberthreats across your Microsoft and third-party cloud services. Microsoft was recently named a leader in Gartner’s 2019 Cloud Access Security Broker (CASB) Magic Quadrant based on our completeness of vision and strong ability to execute in the CASB market. Microsoft currently has the largest customer base of all participating vendors and we believe that this, along with being ranked as a leader, reflects our continued commitment to building the best possible solution for our customers to help them protect their Microsoft and third-party cloud apps and platforms.
• Azure ATP is a cloud-based security solution that leverages on-premises Active Directory signals to identify, detect, and investigate advanced threats, compromised identities, and malicious insider actions directed at your organization. This service enables your organization to monitor users and behaviors and identify and investigate suspicious activities and advanced attacks.

For more information on this announcement, visit:

• Microsoft Security offerings for US Government customers continue to grow with general availability
  https://techcommunity.microsoft.com/t5/Public-Sector-Blog/Microsoft-Security-offerings-for-US-Government-customers/ba-p/998774

To learn more about specific features and functionality for Microsoft Cloud App Security and Azure ATP for GCC High customers, please review the service descriptions here.

We are excited to announce that the new conversation reconstruction capability is now generally available in the Microsoft 365 Advanced eDiscovery. (Part of Microsoft 365 E5)

This capability threads the Microsoft Teams messages into conversations, allowing you to efficiently review and export complete dialogues with context, not just individual messages.

With our new built-in conversation reconstruction capability, you can identify relevant chats by using targeted queries and include contextual messages in your collection. You will no longer need to run multiple searches to understand the context surrounding your search results.

Chats can be exported as threaded conversations or as individual messages. You can choose the format that integrates better with your downstream processes. Regardless of your export format, your export will include all the metadata unique to each message such as sender, time sent, etc. You also have the option to export all your case work on the content, including tags and redactions.

If you have the Microsoft E5 suite, you have access to all features in this announcement. Simply navigate to the Microsoft 365 Compliance Center to get started.

For more information about conversation reconstruction for Teams, read more at:

• SECURITY, PRIVACY & COMPLIANCE: Manage eDiscovery for Teams – Announcing conversation reconstruction and more
  https://techcommunity.microsoft.com/t5/Security-Privacy-and-Compliance/Manage-eDiscovery-for-Teams-Announcing-conversation/ba-p/961170

For more information, visit:

• eDiscovery in Office 365
• Advanced eDiscovery solution in Microsoft 365

We are excited to announce the preview of “Microsoft Dynamics 365 Fraud Prevention”.

Interested businesses do not need to own Microsoft Dynamics today to take advantage of this new Fraud Prevention technology: This is a stand-alone service now made available to help to control fraud losses & reduce wrongful rejects while maintaining a frictionless customer experience.

Microsoft’s fraud solution was designed in-house at Microsoft to combat almost $1 billion in fraud losses.  Using Dynamics Fraud Protection for the last two years, Microsoft saw:

• Decreased wrongful rejects creating 1.38% revenue lift
• Increased bank acceptance rates driving a 7.69% revenue lift
• Reduced operational expenses by more than $76M, as a combination of less fraud loss and fewer manual reviews

For more information, visit the Preview site:

• PREVIEW: Dynamics 365 Fraud Protection
  https://dynamics.microsoft.com/en-us/ai/fraud-protection/

We just published the following short “how to” videos for Microsoft Defender Advanced Threat Protection.

• Onboarding: Get a quick overview of how easy it is to onboard your endpoints:
• Role-based access control: See how simple it is to specify granular access control with role-based access control (RBAC):
• Conditional access: Contain a threat by not letting risky devices access your corporate resources, and configure Microsoft Conditional Access:
• Automated investigation and remediation: Enhance your SOC by turning on automated investigation and remediation:
• APIs: Develop Microsoft Defender ATP connected solutions and workflows with a rich set of APIs.
• Advanced hunting: Use advanced hunting to create your own powerful queries and turn them easily into custom detections:
• Threat Analytics: Assess the impact of threats to your environment and identify actions that can contain them with Threat Analytics.
• Deep analysis: Use the built-in sandbox to detonate suspicious files with a single click and get a detailed & readable report back.

Watch the videos here:

• TRAINING: Short & sweet educational videos for Microsoft Defender ATP
  https://techcommunity.microsoft.com/t5/Microsoft-Defender-ATP/Short-amp-sweet-educational-videos-for-Microsoft-Defender-ATP/ba-p/1021978

Without the proper understanding of NIST compliance requirements, it is easy to misinterpret the need for ATP & EMS licensing.

The following post describes the tools necessary for NIST compliance and why.  If you are a government contractor, this is a must read:

In a 2018 report provided by the National Defense Industrial Association (NDIA), researchers found companies “severely underestimate(d) the costs of becoming compliant by as much as a factor of 10”. The burden of compliance is significant yet important, and businesses are considering ways to secure their information systems without breaking the bank. One area of cost savings at first glance: email only users. These individuals will likely only need a corporate email, which would reasonably lead IT leadership to purchase an Exchange Only license and carry on.

However, we advise contractors purchase Office 365 Advanced Threat Protection (ATP) and Enterprise Mobility + Security (EM+S) in addition to their Exchange license as a best practice for NIST 800-171 compliance. Without the proper understanding of NIST compliance requirements, it is easy to misinterpret the need for ATP & EM+S licensing. It is also reasonable to think consultants are trying to make a quick dollar by upselling.

…

Read the rest of the article at:

• Microsoft Enterprise Mobility + Security (EMS) & ATP are Necessary for NIST Compliance
  https://techcommunity.microsoft.com/t5/Public-Sector-Blog/Why-Microsoft-Enterprise-Mobility-Security-EMS-amp-ATP-are/ba-p/917615

For the second year in a row, Microsoft is ranked as America’s most ethical public company according to non-profit research group Just Capital.

This adds to Microsoft’s list of honors & recognition associated with corporate responsibility.

For more on how Microsoft attained this rank, visit:

• https://justcapital.com/companies/microsoft-corporation

For the full rankings list, visit:

• https://justcapital.com/rankings/

For more on Microsoft’s commitment to ethics & integrity, visit:

• https://www.microsoft.com/en-us/legal/compliance/integrity

UPDATE 12/9/19:
Looks like, despite the Azure twitter account publicizing this report, Microsoft’s licensing of this report has expired.  If you still want it, it’s $499 and available at https://www.forrester.com/report/Benchmark+Your+Enterprise+Cloud+Adoption/-/E-RES117042.

ORIGINAL POST:
Is your company leading or lagging in cloud adoption?

Transitioning to cloud computing has become a strategic requirement for companies to maintain their competitive edge. Read this report by Forrester Research to learn how your company’s cloud adoption priorities, concerns, and strategies compare to the broader market.

Download now to find out:

• If your company is leading or lagging in cloud adoption compared to other enterprises.
• How companies are addressing their security and compliance requirements.
• How to start planning your cloud migration.
• Trends in cloud computing platforms, including hybrid, multi-cloud, public, and private cloud environments.

Read the report from Forrester for more:

• WHITEPAPER: Benchmark Your Enterprise Cloud Adoption—a Forrester Research report
  https://azure.microsoft.com/en-us/resources/benchmark-your-enterprise-cloud-adoption/

Are you interested in Microsoft’s security strategy & the technologies that support it’s pillars?

Microsoft Security Architect, Matt Soseman, did a great 45min video that discusses the pillars of Microsoft cybersecurity.  It also showcases some amazing demos on some of Matt’s favorite Microsoft 365 security products and demonstrates the art of the possible.

Here’s a list of some of the quick demonstrations Matt shows in just 45min:

1. Compliance Manager (Regulatory Compliance)
2. Microsoft SecureScore
3. Multi-factor Authentication
4. Conditional Access – Blocking Non-Compliant PCs
5. Conditional Access – Blocking Malware
6. Office 365 Advanced Threat Protection
7. Azure Information Protection
8. Office 365 Data Loss Prevention
9. Intune Mobile Application Protection
10. Shadow IT Discovery using Cloud App Security
11. Controlling SaaS Applications
12. Windows Autopilot

See the presentation and download the deck below:

• VIDEO: Microsoft Cybersecurity Briefing w/ Matt Soseman
  https://www.youtube.com/watch?v=fedIWHliBLY&feature=youtu.be
• DOWNLOAD: PowerPoint deck & Demo Videos
  https://ptdrv.linkedin.com/ulaku0g

For 12 consecutive years, Gartner has recognized Microsoft as a Leader in analytics and business intelligence.

In this report, you’ll learn about Gartner’s assessment of the features and capabilities that differentiate the various products in this market.

Learn how a comprehensive product vision, positive sales experience, and intuitive user experience contributed to high levels of customer satisfaction and helped position Microsoft as a Magic Quadrant Leader among analytics and business intelligence platforms.

Read the report here:

• DOWNLOAD: 2019 Gartner Magic Quadrant for Analytics and Business Intelligence Platforms
  https://info.microsoft.com/ww-landing-gartner-mq-bi-analytics-2019.html?LCID=EN-US