Enterprise Mobility + Security

Enterprise Mobility + Security (EMS) is a cloud-based offering from Microsoft which combines valuable standalone solutions in a highly discounted suite, licensed on a per user base. EMS integrates Identity and Access Management, Mobile Application (MAM) and Mobile Device Management (MDM) solutions with security solutions for information protection and threat management. In a modern workspace where mobility and Bring-your-own-device (BYOD) scenarios gain increasing significance, Enterprise Mobility + Security can help IT administrators meet the challenges that exist between the best possible user experience and productivity and a high level of security, data protection and risk management.

Components of Enterprise Mobility + Security

Component Summary Details
Azure Active Directory Premium Identity and Access Management Solution
Microsoft Intune Mobile Application and Mobile Device Management Solution
Azure Information Protection Data and Information Protection Solution
Microsoft Advanced Threat Analytics Cybersecurity and Risk Management Solution
Cloud App Security Risk Assessment and Analytics of Cloud Applications
Azure Advanced Threat Protection Identify, Detect and Investigate Advanced Threats

Azure Active Directory Premium

An increasing number of employees wants to bring their personal devices to work and readily adopts available SaaS applications. This has become a significant challenge for IT departments who need to maintain control over the applications used by employees across corporate datacenters and public cloud platforms. To meet these challenges,  Azure Active Directory Premium offers:

  • Self-service password reset to reduce helpdesk calls
  • Multi-factor authentication options for greater security
  • Group-based provisioning and single sign-on for thousands of SaaS apps
  • Machine learning-driven security reports for visibility and threat management
  • Robust sync capabilities across cloud and on-premises directories

Azure Active Directory Premium
 

Azure Information Protection

The way that corporate resources are accessed is changing constantly. Users need consistent access to corporate resources from their devices in order to be productive. The need for more secure collaboration with colleagues inside and outside of organizations is also increasing. To meet these challenges  Azure Rights Management offers:

  • Classification and labeling: Classify data based on sensitivity and add labels—manually or automatically.
  • Encryption and rights management: Encrypt your sensitive data and define usage rights when needed.
  • Intuitive, one-click process: Apply protection easily without interrupting your employees normal course of work.
  • Detailed tracking and reporting: See what’s happening with your shared data to gain more control over it.
  • Deployment and management flexibility: Help protect your data whether it’s stored in the cloud or in on-premises infrastructures. You have the flexibility to choose how your encryption keys are managed, including Bring Your Own Key (BYOK) options.

Azure Information Protection Premium P1

  • Encryption for files and emails across cloud and on-premise storage locations
  • Cloud based file tracking

Azure Information Protection Premium P2 *

  • Intelligent classification and encryption for files and emails shared inside and outside your organization
  • (includes all capabilities of P1)

* only available in EMS E5

Azure Information Protection

Advanced Threat Analytics

The topic of cybersecurity has moved from IT and the datacenter to the highest levels of the boardroom. Attacks and threats have grown substantially more sophisticated in frequency and severity. Everything from customer privacy to brand identity, executive’s reputations and beyond can be at stake. Without a strong defense system in place, the identities and bank accounts of individuals can be hacked, businesses stand to lose customers, and companies can lose control of trade secrets, intellectual property or their competitive edge. To meet these challenges, Advanced Threat Analytics offers:

  • Behavioral analytics for advanced threat detection
  • Detection for known malicious attacks and security issues
  • Simple, actionable feed for the suspicious activity alerts and the recommendations
  • Integration with your existing Security Information and Event Management (SIEM) systems

Advanced Threats Analytics

Microsoft Cloud App Security *

Bring the security of your on-premises systems to your cloud applications—both approved and unapproved—for deeper visibility, comprehensive controls, and enhanced protection.

Discovery

It all starts with discovery. Cloud App Security identifies all cloud applications in your network—from all devices—and provides risk scoring and ongoing risk assessment and analytics. No agents required: information is collected from your firewalls and proxies to give you complete visibility and context for cloud usage and shadow IT.

Data Control

Approving an application to be used is not enough. With special focus on sanctioned apps, you can set granular controls and policies for data sharing and DLP. You shape your cloud environment using out-of-the box and custom policies.

Threat Protection

Cloud App Security provides threat protection for your cloud applications that’s enhanced with vast Microsoft threat intelligence and research. Identify high-risk usage, security incidents, and detect abnormal user behavior to prevent threats.

* only available in EM+S E5 or Identity & Threat Protection Add-On

Azure Advanced Threat Protection *

 Azure Advanced Threat Protection (ATP) is a cloud-based security solution that identifies, detects, and helps you investigate advanced threats, compromised identities, and malicious insider actions directed at your organization. Azure ATP enables SecOp analysts and security professionals struggling to detect advanced attacks in hybrid environments to:

  • Monitor users, entity behavior, and activities with learning-based analytics
  • Protect user identities and credentials stored in Active Directory
  • Identify and investigate suspicious user activities and advanced attacks throughout the kill chain
  • Provide clear incident information on a simple timeline for fast triage

Get a clear, efficient, and convenient feed that surfaces the right issues on a simple attack timeline. Gain powerful perspective on what’s happening throughout your enterprise and get detailed information for next steps. Pivot to Windows Defender Advanced Threat Protection to remediate malicious attacks.
Azure Advanced Threat Protection monitors user, device, and resource behaviors and detects anomalies right away. Using built-in adaptive intelligence, you gain fast insight into advanced threats both on-premises and in the cloud.
With Azure Advanced Threat Protection, the power and scale of the cloud help you safeguard against threats that are increasing in frequency, severity, and sophistication.

* only available in EM+S E5 or Identity & Threat Protection Add-On

 

Related News

Protect multiple cloud app instances using Microsoft Cloud App Security

Leipzig, 02/26/2018 – Several organizations use multi instances of the same cloud applications for different business reasons. As a security professional, you need to have visibility into each of these instances and have the option to control each one. Microsoft announced recently that Microsoft Cloud App Security can now support and control multiple instances of the cloud apps.

Read the full article

Announcing new information protection capabilities across devices, apps, on-premises and the cloud

Leipzig, 02/22/2018 – With an exponential increase in the number of data breaches and regulations such as EU-GDPR, there is an urgency to work towards a holistic information protection strategy. Let’s take a deeper look at the general availability and preview of some of these capabilities that help you to protect your data regardless of where it lives or travels.

Read the full article

Cloud App Security Threat Protection just got better

Leipzig, 02/08/2018 – As we all know, the more visibility you gain into your user’s activities, the better control you have. To this extent, Microsoft constantly innovate to provide better visibility, control, and protection to your cloud apps. Today Microsoft shares exciting new enhancements in threat protection capabilities that their investigation and remediation for cloud apps to the next level.

Read the full article

COMPAREX Blog

The modern way of preparing Windows 10 devices for use: Whereas traditional ICT environments often use a Windows Image Deployment installation, which takes a great deal of time for testing and updating, Windows AutoPilot has recently become available and offers a new possibility for the full and automatic management of Windows 10 devices. Read the full article ...

COMPAREX – Gold Enterprise Mobility Management Partner of Microsoft

News & Promotions

 Request Information