Microsoft Ignite Unveils New Security Controls


Microsoft Ignite Unveils New Security Controls

A few weeks ago, I blogged about Microsoft’s dedicated focus on security and the notable Customer Lockbox feature that was announced among many others. Microsoft has continued with this security momentum at the Microsoft Ignite Conference that occurred in Chicago last week. As expected, major announcements were made and public previews were given such as Office 2016, SharePoint Server 2016, Skype for Business and more. You can learn more about those enterprise announcements here.

Here, I am going to dive into the most relevant security features that were highlighted at the conference as this topic remains on the forefront for many firms:

Advanced Threat Analytics (ATA)

ATA was born from Microsoft’s recent acquisition of Israeli start up, Aorato, an enterprise security innovator of machine learning technology. ATA uses a behavioral analysis to detect suspicious behavior, catch known security issues and even pinpoint the geographic area in which the threat occurred. ATA is a continuous on-prem tracking feature that follows four steps: analyze, learn, detect and alert, creating an attack timeline so unusual activity can easily be caught.

Windows Update for Business

This new management option for Windows 10 is an alternative to one-a-month patch Tuesday. The feature gives administrators more control over when security updates occur, improving upon control and transparency that has often created pain points. With Windows Update for Business, admins can decide which users (PCs) and locations receive updates and when. Reduced management costs, greater control and faster accessibility all result with this new security feature.

Azure Stack

For those who are hesitant or unable to move to the cloud completely for security reasons, Azure Stack offers the Azure user experience and PaaS capabilities into your data center for a new hybrid offering. Azure Stack will give you access to Azure tools, processes and infrastructure as well as “support both cloud native applications and traditional enterprise-grade applications.” A live recording of this panel presentation can be found here.

End-to-end Data Loss Prevention

Data Loss Prevention (DLP) offers a host of security features that help to identify, monitor and protect sensitive data and has been expanded throughout the Microsoft ecosystem. Enhanced collaboration between users and improved security control now takes DLP sophistication to a new level. For example, new warning messages will appear when emailing sensitive data to hinder data leakage and inform the user of a potential breach. When policies are broken during file shares (e.g. client data), notifications will also be sent to the user informing them of the conflict and putting any documents at risk on lock down to only select individuals for rectification. A live recording of this presentation can be found here.


Interested in other recent security announcements? Click here.

This entry was posted in Blog and tagged , , , , . Bookmark the permalink.

Leave a Reply