Modern Thoughts on Modern Enterprise Security
Good morning Partners. I just read a great article talking about Microsoft’s overall approach to security. Even though the article mentions enterprise security, our approach is truly providing enterprise level security to everyone. You will want to check it out! In the article they focus on a few key points:
- Identity is the new security perimeter
- Data is the new currency
- Detection and Response
- “Assumed Breach” Approach
The article is located here: Modern Thoughts on Modern Enterprise Security: An Interview with Sachin Gupta, Principal Security Evangelist at Microsoft
Really liked the scenario they outlined in the article:
We face the same adversaries as our customers do, but because of the scale of the technology we build and operate, we capture a massive amount of security related signals and that’s what provides us with glue to connect and integrate security dots together. This in turn provides you with the ability to not only provide for enhanced protection but also the ability to proactively monitor, detect and respond to cyber threats. This to me is a game changer which significantly enhances our ability to disrupt the adversary economic model and playbook. Let me illustrate this with an example. We all know Phishing is still the most common attack vector used by adversaries to infect end user devices by sending weaponized attachment via email. Think about a scenario where windows defender detects the malicious payload on the end user machine and sends this intelligence to O365. O365 then automatically uses this intelligence to scan and remove emails with the same malicious attachment from the O365 mailboxes. This is truly a game change how the intel from one security capability is used by other in an automated and near real time fashion to help reduce the median time detection and response.
Enjoy!
Matt Hester
Sr. Partner Technology Strategist
Microsoft SMB&D