Transforming workplace collaboration is a business imperative 86 % of leaders cite lack of collaboration or ineffective communication top reason for workplace failures 65 % of leaders agree that moving from hierarchical to team based working is critical for their success in 2019, but only 7% say they are ready 45 % of leaders have or are implementing web-based collaboration solutions at scale in their companies
Microsoft Teams is the hub for teamwork in Microsoft 365 Chats Meetings Calls Files Apps and workflows
Teams Transform workplace collaboration Streamline business processes Connect everyone on a single platform Provide enterprise grade security & compliance
Teams – Security & Compliance Identity & access Discover and Data Information Manage management respond governance protection risks Secure identities, Protect your sensitive data – Identify, collect and Manage content lifecycle Enforce communication control access wherever it travels. produce content compliance policies, detect malicious content
Identity & access management Secure identities, control access
Cloud Identity • Synchronized Identity • Federated •
81% of breaches leverage stolen or weak passwords Windows Hard Microsoft Hello Tokens OTP Authenticator Push FIDO2 SMS, Notification Security key Voice MFA prevents 99.9% of identity attacks
IT admins can make the use of Microsoft Teams more secure by enforcing restrictions on both managed and non-managed devices using Intune MAM and CA policies. Device / Platform Mobile Client Desktop Client Web Client iOS (7.1+) Windows PC IE, Edge • • • (8.1+) Android (4.0+) • Mac OS X • Conditional access policies based on ▪ ✓ Simplified enro rolment ent pro rocess to to incre reas ase user r adopti tion Protect ct data a at the Teams ms App level l without ut having ing to manag age device ices ✓ Exchange and SharePoint Conditional Access ▪ ✓ Employ loyees can use their ir favour urite ite device ice to access Teams ams secur urely ly Policies apply to Teams Prevent nt data a loss between Teams ams and other personal al apps ✓
Signals Verify every access Teams attempt User and Device location Allow access Require MFA Application Real-time risk Block access
Conditional Access Prevent Teams access from non- work locations
Way for external Teams users from an entire domain to find, call, chat, and set up meetings with you in Teams. Examples: • For example, Rob@contoso.com and Ann@northwindtraders.com are working on a project together along with some others in the contoso.com and northwindtraders.com domains. • Users in your organization use Teams to contact people in outside of your organization. • Any Teams user in any org can find and contact you, using your email address.
Information protection Protect your sensitive data – wherever it travel
Types of Protection Protection through storage of files in OneDrive for Business and ▪ SharePoint Online Protection and classification thru O365 DLP engine & ▪ investigating 3P integration Security Teams UX allows for policy blocks, false positives, overrides and ▪ edits. Performance DLP Mode Sharing of data - Passive - Internal Flexibility - Intercept - External Protection Scoping - Messaging - Per User - Files - Per Team Primary DLP Scenarios in Teams File sharing with external users (guests, federation) ▪ Chats & channel messages with external users (guests, federation) ▪ Sensitive content shared within inappropriate teams ▪
Policy tips Admin Alerts Block sharing Incident Reports User overrides Integration with Activity API Notification emails Custom Sensitive Types
Data Loss Prevention in Teams
Discover and respond Identify, collect and produce content
Discovering data efficiently is important for both legal and IT professionals $3B Was spent on eDiscovery software in 2018 57% Of corporate counsel plan to increase their total eDiscovery spend next year 71% Of corporate counsel are leveraging technology and/or best practices to improve legal operations
In-place Advanced eDiscovery eDiscovery Capability Case Management ✓ ✓ Access Control ✓ ✓ Content Searches ✓ ✓ Hold(s) ✓ ✓ Advanced eDiscovery Reduce eDiscovery costs Case management In-place eDiscovery Export ✓ ✓ All of in-Place + Access Control Content Searches Duplicate detection Duplication Detection - ✓ Hold(s) Relevance Searches with Machine Learning Export Relevance Searches with - ✓ Unstructured Data Machine Learning analysis Unstructured Data Analysis - ✓
If a Microsoft Teams-enabled user • has an on-premises mailbox and their user account/identity has been synched to the cloud, Microsoft creates a cloud-based mailbox (or phantom mailbox) to store 1xN Teams chat data. After the Teams chat data is stored in • the cloud-based mailbox, it's indexed for content search. Learn more Features Available Content Search, Preview & Export Now Channel Messages – Covered by EXO • Group mailbox Support for Retention Policies Coming soon Guest Users 1xN Chat – Covered by • Support for Legal Hold Coming soon Cloud Storage
Data Governance Manage content lifecycle
Data governance & retention in Teams Comply Help your Reduce your risk proactively with organization to in the event of industry share knowledge litigation or a regulations and effectively and be security internal policies more agile
Retention Policies allow IT admins to manage the lifecycle of • content within Office 365, including all data from Teams. Retention Policies if set, will wipe out the Teams Data from all • possible locations in the Microsoft cloud infrastructure. If persistent chat is a requirement without retention, then default retention policy can be overridden to extend it for N years (or indefinitely). Teams related Retention Retention period Retention action polices Chats (1x1, 1xN) Configurable by tenant (days) Delete & Allow recovery ▪ in Security and Compliance Permanently delete ▪ Flexible – different policies for ▪ Center, example: 30 days Archive ▪ different types of Items Standard Preservation & ▪ Channel messages Configurable by tenant (days) Deletion Policy templates in Security and Compliance Center, example: 365 days Integrates with Legal Hold and ▪ e-Discovery Integrated Management ▪ Files (SharePoint Online and Configurable by Tenant for Site Delete & Allow recovery ▪ OneDrive for Business) Templates, Site Collections and Permanently delete ▪ Document Deletion Manage through Records ▪ Management
Retention policies for Teams Establish Team or chat retention and deletion policies
Retention or Deletion policies Establish Team or chat retention and deletion policies
Archiving in Office 365 enables preservation of all content • immutably and enables retention , eDiscovery and other compliance capabilities. Archiving for Microsoft Teams leverages existing Office 365 • archiving management tools that are used for email and SharePoint files. A team can be archived when it’s not longer active, it will be read- • only and it can be reactived in the future. Microsoft Teams chats and channel messages are archived using • Immutable data Exchange online storage ▪ Integrated management 1: 1 chats and group chats → individual mailboxes ▪ • Safeguard your data Channel messages → group mailboxes ▪ • Highly reliable, available and Messages are automatically moved to the archive mailbox ▪ • performant after two years* Unlimited Storage* ▪ Office 365 Compliance Admins will have a fast learning curve with • Teams Archival Process since it leverages the Security and Compliance Center in Office 365 admin portal.
GA GA When a reasonable expectation of litigation exists, organizations • are required to preserve electronically stored information (ESI) relevant to the case. This expectation often exists before the specifics of the case are known and organizations may need to preserve broadly all information related to certain individuals, keywords or topics . Litigation Hold is normally used when an entire mailbox has to be • put on hold. In-place hold is used when holds are to be created and placed • based on fine tuned search criteria across mailboxes. Permanently Preserved Data ▪ All of the Teams Information Protection dataset can be put on • within Office 365 solution litigation hold. This includes 1:1 chats, Group chats, Channel Flexibility: Multiple Time Based ▪ messages, Files, OneNote and Wiki. Holds Users can continue to use Teams seamlessly when their data is put • Integrated management with ▪ on hold. eDiscovery What happens to edits and deletes when a user is on hold • Narrow Down on Legal Data – ▪ All Teams Chats, Channel Messages (both current and • Intelligent Query based holds archived) are subjected to hold Transparent to End User ▪ All Edits to Messages are allowed but will be tracked • separately than the original message All Deleted Teams data will still be persisted. •
Recommend
More recommend