Why Compliance Legal and Regulatory requirements Organizational governance requests Internal and...
33
-
Upload
anna-wilson -
Category
Documents
-
view
212 -
download
0
Transcript of Why Compliance Legal and Regulatory requirements Organizational governance requests Internal and...
Name: Kamal JanardhanTitle: Group Program Manager, Exchange Information Protection
eDiscovery and Compliance Overview for Exchange and Office 365
EDC201
Compliance Landscape TodayWhy ComplianceLegal and Regulatory requirementsOrganizational governance requestsInternal and external threats
Today’s ChallengesDuplicate solutions to store and evaluate the dataAdd-ons and plug-ins for the userComplex and fragmented experience
Customer AsksLower the costGive me one experienceMake it easier to manageLeave the end user alone
Content Lifecycle
Create Collaborate Store Dispose
eDiscovery and Compliance
EncryptAudit Archive Discover DLP Preserve Delete
Empower the User
Outlook, Word, PowerPoint, SharePoint, Mobile Apps, etc.
Exchange, SharePoint, Lync, AD, File Server, third parties, etc.
Exchange/ SharePoint
Enable the Compliance Officer Easy for IT
Our Vision for Compliance
• Compliance built into workloads IT already deploys (Exchange, SharePoint)• End users workflow unchanged in the Office Client Experiences• One console for the Compliance Officer spanning all the workloads and data sources
In Place and Extensible
Exchange, SharePoint, Windows
How we plan to get there
Build compliance into the Exchange and SharePoint
Index or Ingest to extend beyond these workloads
Unify compliance experience and configuration across the suite
Exchange
SharePoint
OthersTraditional
Archive
eDiscovery and Compliance eDiscovery and Compliance
EncryptAudit ArchiveDiscover DLP PreserveDelete
BloombergImmutable
Exchange Lync
3rd Party Archives
…Immutable
SharePoint
Bring the data homeIngestion
Migrations from third party stores, more formats
Go Big, Go Fast, UnifyOne Compliance Centre,
Scale, Mobile Device Protection
RoadmapBuilt in (not bolt on) Compliance for Office
In-Place Archiving
Unified Experience
Extensible Platform
In-PlaceImmutability and in-place
search, preservation, deletion
eDiscovery and Compliance
Immutable
ExchangeLync
File shares
Immutable
SharePoint
Bloomberg
Immutable
Exchange Lync
3rd Party Archives
File SharesImmutable
SharePoint
Immutable
Exchange
Immutable
SharePoint
eDiscovery and Compliance
EncryptAudit Archive Discover DLP Preserve
eDiscovery and Compliance
EncryptAudit Archive Discover DLP Preserve
eDiscovery and Compliance
EncryptAudit Archive Discover DLP Preserve Delete
Enable Compliance OfficersNew Compliance Center
Demo – Compliance Center
Archiving (Store, Preserve, Delete)
Today: Data storageExchange In-Place Archive
Outlook OWA
Retain folder hierarchy
Primary
Immutable
Deletions
Inbox
Purges
Versions
Audits
Deleted Items
…
Archive
Immutable
Deletions
“Inbox”
Purges
Versions
Audits
…
User A
… …
Today: MRM to Delete risky or unnecessary data
Specify default policies and tags available for users to classify their folders or items
Exchange Deletion Policies SharePoint Document Deletion Policies
Define central policies
Assign policies to Site Collection Templates or individual Site Collections
Today: Preservation to keep important dataExchange Preservation SharePoint Preservation
Archive Futures Unlimited
Archives Ingestion Public Folder
Compliance Unified Preserve
and Delete
DLP and Encryption
Content analysisGet ContentRegex AnalysisFunction AnalysisAdditional EvidenceVerdict
Policy TipsOutlook and OWA
Document FingerprintingProtect intellectual property like patents, company confidential information, and other standardized form content
Today: Prevent risk with DLP
Today: Protect data with Encryption
Office 365 Message
Encryption
IRM (RMS)Prevents sensitive information from being printed, forwarded, or copied by unauthorized people inside the organization
S/MIMESign and encrypt messages to users using certificates
Encrypt messages to any SMTP address
eDiscovery
Today: Multi-Mailbox Search in EAC
• Built on FAST mailbox indices• Provides Search, Hold and Export
Today: Mail and Documents Search in SP
Preserve data for legal purposes
Support for eDiscovery across Exchange, Lync and SharePoint
Search and export data
Add mailboxes, SharePoint sites and file shares
• Scale and Performance
• Search and Comply
Future: Discovery
FFO/EOP
UCC – eDiscovery console
Policy Store
Policy WebService
Policy cmdlet
eDiscovery Results Sync Process
Policy DAL
eDiscovery cmdlets
eDiscovery DAL
Workload (Exchange)
Backend Backend
Arbitration Mailbox
(per tenant policy store)
eDiscovery Results Store
(per tenant)
eDiscovery Results Service
Policy Sync Service
Backend 1
Backend N
DAR Exchange
Search Tasks
3rd Party Data Sources
…
Federated Query Infra
Workload (Sharepoint)
Backend Backend
Policy Store(per tenant policy store)
eDiscovery Results Store
(per tenant)
eDiscovery Results Service
Policy Sync Service
Backend 1
Backend N
DAR SPSearch Tasks
Discovery Store (Aggregated result counts,
metadata, case management etc)
Demo – Search + Hold
Auditing
Today: Investigate and prove with auditing
Specify criteria such as users to search and then export audit logs
Choose from many reports such as admin actions and non owner access
Exchange Auditing SharePoint Auditing
Audit views, edits, deletes, and searches.
Configure per site collection
One Click AuditingSearch and Audit resultsExtensible Auditing
FFO/EOP
UCC – Auditing console
Policy Store
Policy WebService
Policy cmdlet
Policy DAL
Workload (SharePoint)
Backend Backend
Policy Store (per tenant policy
store)
Policy Sync Service
Content FE
Content FE
SP Content Front End Node
Audit Storage (EXO)
Audit Long Term Storage
FFO/EOP
UCC – Auditing console
Reporting cmdlets
Reporting UX
Reporting Web Service
ContentBE
SQL
Workload (Exchange)
Backend Backend
Arbitration Mailbox (per tenant policy
store)Local Queue,
Uploader(per BE server)
Policy Sync Service
Backend 1
Backend N
Exchange Auditing Hook
Audit Upload Web Service
Local Queue,
Uploader(per BE server)
Future: Auditing
Compliance for corporate data on Mobile Devices Archiving,
Encryption, DLP, Auditing, etc.
More than EAS Easier than MDM
Device Protection
Demo – New O365 Device Protection Page
Customers and AnalystsO365 Compliance usage 2 million users on hold (200K
added monthly since Dec 2013) Million+ archives 45 million using MRM Delete
“..Microsoft’s rapid rise to the archiving shortlist since the introduction of Exchange Server 2010 is remarkable”
Archiving added to this year’s Gartner Magic Quadrant
Small /Medium Orgs looking for cost-effective
complianceHighly regulated/litigated
customers deploying O365 for Office
Frequently Asked Questions• Who is using Microsoft Compliance?• Questions of Faith• Is Exchange Archiving really immutable?• Will Exchange Archives scale to TB of data? Will Discovery scale? • Can Microsoft guarantee Compliance?• What about third party vendors? Will they still work?• If I go to O365, will my data be secure? From attacks, from subpoenas?
• Questions of Feature• But what about offline access to the archive?• What about a read-only archive?• Can I get guaranteed deletion of content?• Can I get Review and Predictive Coding?
Investments Summary Archiving – Unlimited Archives, Ingestion eDiscovery – Scale, Search and Comply Compliance Auditing Mobile Device Protection Unified Compliance Public Folder, Modern Groups Compliance
Compliance Sessions eDiscovery and Organizational Search in Exchange, Monday, March 31 , Time: 1:15 PM - 2:30 PM
Data Loss Prevention in Exchange, Outlook and OWA, Monday, March 31 , Time: 2:45 PM - 4:00 PM
Preserve, Delete, and Archive in Exchange, Tuesday, March 31 , Time: 10:45 AM - 12:00 PM
How Microsoft legal department does eDiscovery, Tuesday, April 1, Time: 3:00 PM - 4:15 PM
Experts Unplugged: eDiscovery & Archiving (Auditing and Device Protection), Tuesday, April 1 , Time: 1:30 PM - 2:45 PM
Managing Risk: How Auditing can help you be in the know Tuesday, April 1, Time: 4:45 PM - 6:00 PM
Retention policies in the Real World: notes from the field Wednesday, April 2, Time: 8:30 AM - 9:45 AM
1. Go to the Pre-Release Programs Booth
2. Tell us about your Office 365 environment/or on premises plans
3. Get selected to be in a program
4. Try new features first and give us feedback!
Start now at:http://prereleaseprograms-public.sharepoint.com/
Pre-Release Programs TeamBe first in line!
© 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
