Benefits of Microsoft Enterprise Mobility + Security (EMS)

Download as docx, pdf, or txt
Download as docx, pdf, or txt
You are on page 1of 3

Microsoft Enterprise Mobility + Security

(All-in-one identity, mobile management, and security)


Microsoft Enterprise Mobility + Security (EMS) is the enterprise mobility solution designed to
help manage and protect users, devices, apps, and data in a mobile-first, cloud-first world.
Microsoft’s Enterprise Mobility + Security solution provides a holistic framework to protect
your corporate assets whether they’re on-premises, on your mobile devices, or in the cloud
Benefits of Microsoft Enterprise Mobility + Security (EMS)

 Safeguard your resources at the front door: EMS calculates risk severity for every user
and sign-in attempt, so risk-based conditional access rules can be applied to protect
against suspicious logins.
 Protect your data against users mistakes: Gain deeper visibility into user, device, and
data activity on-premises and in the cloud to create more effective, granular level
policies. Classify and label files at creation, track their usage, and change permissions
when necessary.
 Detect attacks before they cause damage: Identify attackers in your organization using
innovative behavioral analytics and anomaly detection technologies – all driven by vast
amounts of Microsoft threat intelligence and security research data.
 Mobile apps without compromising your Office experience: EMS is the only solution
built with and for Microsoft Office. This means that email and other Office files can be
secured without compromising the Office experience - the gold standard of productivity.
 Enable easy access to resources: Sign in once for secure access to all corporate
resources, on-premises and in the cloud, from any device. This includes pre-integrated
support for Office365 and thousands more popular SaaS apps.
 Enable users to protect and control data: Employees can encrypt virtually any type of
file, set granular permissions, and track usage. The encryption stays with the file where
it goes, enabling more secure file sharing, internally and externally.

Features of Microsoft Enterprise Mobility + Security (EMS)

1. Azure Active Directory Premium: delivers multi-factor authentication; access control


based on device health, user location; and, holistic security reports, audits, and alerts.
2. Microsoft Advanced Threat Analytics: helps extend the visibility, auditing, and control
you have on-premises to your cloud applications.
3. Azure Information Protection: provides persistent data protection of files shared
internally and externally, including the option to track, classify and label data.
4. Microsoft Cloud App Security: provides deep visibility and control of data inside cloud
applications.
5. Microsoft Intune: makes it easier to secure and manage iOS, Android, and Windows PCs
all from one console. Deep integration with Office 365 helps keep company data secure
in the Office mobile apps
Microsoft Intune
Overview
Microsoft Intune is a cloud-based service in the enterprise mobility management (EMM) space
that helps enable your workforce to be productive while keeping your corporate data
protected.
Similar to other Azure services, Microsoft Intune is available in the Azure portal. With Intune,
you can:
 Manage the mobile devices and PCs your workforce uses to access company data.
 Manage the mobile apps your workforce uses.
 Protect your company information by helping to control the way your workforce
accesses and shares it.
 Ensure devices and apps are compliant with company security requirements.
Common business problems that Intune helps solve

 Protect your Office 365 mail and data so that it can be safely accessed by mobile devices
 Issue corporate-owned phones to your workforce
 Offer a bring-your-own-device (BYOD) or personal device program to all employees
 Enable your employees to securely access Office 365 from an unmanaged public kiosk
 Issue limited-use shared tablets to your task workers
Intune device management explained

Intune device management works by using the protocols or APIs that are available in the mobile
operating systems. It includes tasks like:
 Enrolling devices into management so your IT department has an inventory of devices
that are accessing corporate services.
 Configuring devices to ensure they meet company security and health standards.
 Reporting on and measuring device compliance to corporate standards.
You can require a mobile device to be compliant with corporate standards that you define in
Intune before the device can access a corporate service like Exchange. Likewise, you can lock
down the corporate service to a specific set of mobile apps.
For example, you can lock down Exchange Online to only be accessed by Outlook or Outlook
Mobile.

Intune app management explained

When we talk about app management, we are talking about:


 Assigning mobile apps to employees
 Configuring apps with standard settings that are used when the app runs
 Controlling how corporate data is used and shared in mobile apps
 Removing corporate data from mobile apps
 Reporting on mobile app inventory
 Tracking mobile app usage
An app that is managed with EMS has access to a broader set of mobile app and data protection
features that includes:
 Single sign-on
 Multi-factor authentication
 App Conditional Access - allow access if the mobile app contains corporate data
 Isolating corporate data from personal data inside the same app
 App protection policy (PIN, encryption, save-as, clipboard, etc.)
 Corporate data wipe from a mobile app
 Rights management support

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy