Help achieve GDPR compliance with EM+S
Wednesday, August 30, 2017
The noise around GDPR (General Data Protection Regulation) is growing and it will continue to do so beyond May 25th 2018 – when the EU regulation comes into effect. We’re keen to get the ball rolling when it comes to GDPR, so here’s how you can help your customers achieve compliance with Microsoft EM+S.
A well-rounded customer security package
Enterprise Mobility + Security (EM+S) is a bundle of security services by Microsoft. It enables data protection, restricts or grants access to users based on their settings, and defends against unknown parties and cyber threats looking to gain unauthorised access. But there’s more to EM+S than meets the eye. A triple threat against hackers, it’s also a key component to GDPR compliance.
With lots of data stored in the cloud and sharing enabled throughout companies for boosted productivity, there needs to be a lock-and-key access for your customers’ business without hindering the user experience. That’s where Azure Active Directory (AD) comes into play. It’s their first line of defence against hackers and it all starts at the front door.
Configure with Conditional Access
Using Conditional Access means you can configure your customer’s settings so that you’ll evaluate the risk of the user before letting them into the corporate network. The health of their device, the apps that they’ve used, and their sign in location can all be configured to either allow or deny access to them.
Discover who gets access with Identity Protection
Once you’ve decided the actions you’ll take to grant or restrict a user’s access, you can then utilise Identity Protection. Using an algorithm to calculate the user’s risk score, Identity Protection notifies you of any suspicious behaviour and triggers a handful of actions based on this. It may require the user to sign in via multi-factor authentication (MFA), force a password reset, or lock-down privileged user settings with limited access to the corporate network, denying them access to sensitive files.
Define permissions with Privileged Identity Management
There are users that will require more access than others in your customer’s business. With Privileged Identity Management in Azure AD, you can pin down exactly which permissions to give to certain users and can also take them away if there’s any suspicious activity too. If you want to see who has accessed what and when, you can also view reports and audit logs to track user activity. For example, if there’s been a wayward password reset or an upgraded app, you’ll be able to find the user it’s associated to and action it accordingly.
But how does that make my customer GDPR compliant?
Restricting access and granting it only to those privileged and defending against hackers by using MFA and forced password reset enables you to protect your customers at the front door. With Azure AD’s reporting feature, it allows you to identify a crumb trail for your end users – an audit log – of what actions have taken place and why. Protect your customers from the inside with EM+S and Azure AD today.