Presentation is loading. Please wait.

Presentation is loading. Please wait.

9/4/2018 6:45 PM Secure your Office 365 environment with best practices recommended for political campaigns Ethan Chumley Campaign Technology Advisor Civic.

Published byMaria Thornton Modified over 6 years ago

Similar presentations

Presentation on theme: "9/4/2018 6:45 PM Secure your Office 365 environment with best practices recommended for political campaigns Ethan Chumley Campaign Technology Advisor Civic."— Presentation transcript:

1 9/4/2018 6:45 PM Secure your Office 365 environment with best practices recommended for political campaigns Ethan Chumley Campaign Technology Advisor Civic Technology Services Mark Simos Lead Architect Enterprise Cybersecurity Group © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

2 Torn from the headlines
9/4/2018 6:45 PM Torn from the headlines © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

3 Microsoft Campaign Technology Services
9/4/2018 6:45 PM Microsoft Campaign Technology Services © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

4 9/4/2018 6:45 PM Video © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

5 Campaign Technology Challenges
9/4/2018 6:45 PM Campaign Technology Challenges privacy scalability security byod © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

6 But also works with hybrid
9/4/2018 6:45 PM Technical solution Modern and secure collaboration Secure Secure collaboration & protected files Identity management Secure access to all cloud services B2B account management Device access BYOD and managed devices Mobile application management Secure analytics environment Cloud-based solution But also works with hybrid Uses E5 plans © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

7 Download all the details
9/4/2018 6:45 PM Download all the details Microsoft Security Guidance for Political Campaigns Test lab guides aka.ms/SecureCampaign © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

8 Licensing Security focus drives recommendation for E5 plans
9/4/2018 6:45 PM Licensing Security focus drives recommendation for E5 plans Office 365 E5 Enterprise Mobility + Security (EMS) E5 Azure Active Directory P2 for B2B accounts Advanced Threat Protection for drives the recommendation for E5 for all users with a mailbox. Advanced Data Governance capabilities are used to automate protection for data loss prevention. Risk-based conditional access and Cloud App Security drive the recommendation for EMS E5. Included with EMS E5. Risk-based conditional access can be used with B2B accounts. Every Azure AD paid license includes rights to 5 B2B collaboration users (5:1 model). Compare all Enterprise Mobility + Security Plans Compare all Office 365 for Business Plans © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

9

10 Design Process Identity planning SharePoint site & file protection
Tenant setup Identity & device access management Mail protection

11 9/4/2018 6:45 PM 1. Security planning starts with identity Identity is the new security perimeter © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

12 Plan for users, accounts, and Azure AD groups
9/4/2018 6:45 PM Plan for users, accounts, and Azure AD groups 1. Categorize your users 2. Decide what type of accounts to use 3. Plan for Azure AD groups Group-based licensing Dynamic groups Protecting access by group assignment with MFA and conditional access Provision SharePoint sites Manage permissions with RMS templates for classified files See topic 4: Identity and capability planning (aka.ms/SecureCampaign) © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

13 Map capabilities by account types
9/4/2018 6:45 PM Map capabilities by account types Key decision: Which users need to be in your tenant? Do B2B capabilities provide enough access and protection for partners? Which users don’t require any account management? © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

14 Example environment Pare down to the services you need
9/4/2018 6:45 PM Example environment Pare down to the services you need Adjust account types and license plans for the desired coverage © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

15 2 & 3: Tenant setup for secure environments
9/4/2018 6:45 PM 2 & 3: Tenant setup for secure environments © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

16 Tenant-wide setup for secure environments
9/4/2018 6:45 PM Tenant-wide setup for secure environments Tune threat management policies in Office 365 Security & Compliance Center Configure Exchange and SharePoint tenant-wide settings Azure AD settings Anti-Malware Engine Mail flow Transport rules Named locations Trusted IP address ranges ATP Safe Attachments Enable modern-auth Exchange and Skype for Business Block non-modern auth apps (coming soon) ATP Safe links Anti-Spam Mail filtering SharePoint External sharing policies See topic 6: Tenant setup and configuration (aka.ms/SecureCampaign) © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

17 Startup Cloud App Security
9/4/2018 6:45 PM Startup Cloud App Security Also view the dashboards and reports in the Security and Compliance Center © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

18 4. Identity and device access and management
9/4/2018 6:45 PM 4. Identity and device access and management © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

19 Key decisions B2B accounts Managing devices Windows 10
9/4/2018 6:45 PM Key decisions B2B accounts For B2B users that have access to sensitive data, consider licensing with EMS E5 and using Mobile Application Management (MAM) capabilities. Managing devices Choose whether to enroll devices into Intune for management. Windows 10 Includes compelling security capabilities that make this a recommendation for organizations with a high threat profile. See topic 7: Device protection (aka.ms/SecureCampaign) © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

20 9/4/2018 6:45 PM Example starting-point plan
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

21 Access rules and policies
9/4/2018 6:45 PM Access rules and policies See topic 8: Conditional access rules (aka.ms/SecureCampaign) © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

22 5. SharePoint site and file protection
9/4/2018 6:45 PM 5. SharePoint site and file protection © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

23 SharePoint team site & file protection
9/4/2018 6:45 PM SharePoint team site & file protection Baseline protection Sensitive protection Highly confidential Internal Public Private Sensitive Highly Confidential Public site and group. Private site and group. Sharing allowed outside the group. Private site and group. Sharing limited to members. Private isolated site. Sharing limited to members. Other users cannot request access. DLP rule Warn users when sending files outside the organization DLP rule Block users from sending files outside the organization Create Office 365 labels and automatically label files in document libraries Configure DLP rules to protect sensitive and highly confidential files Use AIP to permission and encrypt files See topic 10: SharePoint Online (aka.ms/SecureCampaign) © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

24 Download the guidance & build your own test lab environment
9/4/2018 6:45 PM Download the guidance & build your own test lab environment Microsoft Security Guidance for Political Campaigns Test lab guides aka.ms/SecureCampaign © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

25 9/4/2018 6:45 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Download ppt "9/4/2018 6:45 PM Secure your Office 365 environment with best practices recommended for political campaigns Ethan Chumley Campaign Technology Advisor Civic."

Similar presentations

What’s New in Exchange Online. Disclaimer This presentation contains preliminary information that may be changed substantially prior to final commercial.

What’s New in Exchange Online. Disclaimer This presentation contains preliminary information that may be changed substantially prior to final commercial.
123456789101112…. PrePlanPrepareMigratePost Pre- Deployment PlanPrepareMigrate Post- Deployment First Mailbox.

…. PrePlanPrepareMigratePost Pre- Deployment PlanPrepareMigrate Post- Deployment First Mailbox.
James Lewis and Simon Waight Office 365 security: everywhere you need it to be PRD33 1.

James Lewis and Simon Waight Office 365 security: everywhere you need it to be PRD33 1.
Pat Fetty – Principal PM Manager Securing your mobile assets with Microsoft Intune WIN33 1.

Pat Fetty – Principal PM Manager Securing your mobile assets with Microsoft Intune WIN33 1.
Microsoft Virtual Academy Chris Oakman | Managing Partner Infrastructure Team | Eastridge Technology Curtis Sawin | Technical Solutions Professional |

Microsoft Virtual Academy Chris Oakman | Managing Partner Infrastructure Team | Eastridge Technology Curtis Sawin | Technical Solutions Professional |
Microsoft Virtual Academy

Microsoft Virtual Academy
Secure your complete data lifecycle using Azure Information Protection

Secure your complete data lifecycle using Azure Information Protection
The time to address enterprise mobility is now

The time to address enterprise mobility is now
Deployment Planning Services

Deployment Planning Services
Azure Information Protection

Azure Information Protection
Deployment Planning Services

Deployment Planning Services
Microsoft Ignite 2016 4/27/2018 9:00 AM THR2016

Microsoft Ignite /27/2018 9:00 AM THR2016
LOCAL CLOUDINESS Dino Buljubašić Rijad Smajlović

LOCAL CLOUDINESS Dino Buljubašić Rijad Smajlović
9/12/2018 6:21 PM BRK2203 Protect and control your sensitive emails with new Office 365 Message Encryption capabilities Praveen Vijayaraghavan Principal.

9/12/2018 6:21 PM BRK2203 Protect and control your sensitive s with new Office 365 Message Encryption capabilities Praveen Vijayaraghavan Principal.
Conduct a successful pilot deployment of Microsoft Intune

Conduct a successful pilot deployment of Microsoft Intune
Microsoft Virtual Academy

Microsoft Virtual Academy
Deployment Planning Services

Deployment Planning Services
Accelerate GDPR compliance with Microsoft 365

Accelerate GDPR compliance with Microsoft 365
Journey to Microsoft Secure Cloud

Journey to Microsoft Secure Cloud
Azure Information Protection Strategy and Roadmap

Azure Information Protection Strategy and Roadmap

Similar presentations

Ads by Google