Windows Defender Advanced Threat Protection (Windows Defender ATP) is a new cloud security service that enables enterprise customers to detect, investigate, and respond to advanced threats on their networks.
It really enables you as an administrator to detect attacks on your most vulnerable systems: workstations. Attacks are detected almost instant en the service portal will give you recommended remediation, enables to you quarantine or block files, or even isolate machines from your enterprise network!
In this post I will guide you through the set-up and give you an example of an attack and response scenario. Continue reading “Securing the modern enterprise with Windows Defender Advanced Threat Protection”
I’m currently working on a global Active Directory consolidation and Exchange e-mail migration at a client and as with every project is nice/required to report about how the migrations are progressing. At first I was using a PowerShell script that exported all the details that I needed to a comma separated file. The content of the CSV was copied into Excel where I used some Pivot tables to get the actual numbers that I could use in my report.
As you can imagine this took a while to get everything ready (somewhere between one and two hours), so I was eager to find something new where my report was looking better and especially where the whole process was automated. The answer? Power BI! Continue reading “Reporting mailbox migration progress in Power BI”
Azure Information Protection is a cloud-based solution that helps an organization to classify, label, and protect its documents and emails. This can be done automatically by administrators who define rules and conditions, manually by users, or a combination where users are given recommendations.
A long time ago when Azure Rights Management service was introduced, I was already really excited about the concept. Since data is basically always available for employees, IT is breaking their heads about the security risks that were introduced and there was no really good solution to protect the data. Continue reading “Classify and protect your data with Azure Information Protection”
One of the great features of Intune is Mobile Application Management (MAM). The important benefit of using MAM policies are protecting your company data at the app level. Since mobile app management does not require device management, you can protect company data on both managed and unmanaged devices. The management is centered on the user identity, which removes the requirement for device management.
Another benefit is the fact end user productivity is not impacted, and the policies are not applied when using the app in a personal context. The policies are applied only in a work context, thus giving you the ability to protect company data without touching personal data. This gives you as an administrator the ability to only wipe company data when people leave the company. Continue reading “Isolate your data with Mobile Application Management”