One of the main causes of internal security incidents is the poor visibility and management of access rights information.
Windows 10 contains several key client security improvements. These improvements focus on three key areas — resistance to attacks, protection of information, and identity protection and access control.
How does it do this ?
Resistance to Attacks
First, Microsoft has made Windows 10 much more resistant to modern attacks that hackers like to exploit. Windows 10 includes new threat resistant features like Device Guard for configurable code integrity, virtualization-based security (VBS), and improvements to Windows Defender, to highlight just a few. By enabling all these new features together, organizations can immediately protect themselves the malware responsible for approximately 95 percent of modern attacks.
Also, Windows 10 helps you protect your data more easily. For example, Windows 10 can protect email, documents, and applications in encryption containers.
Windows 10 uses virtualization technology to isolate core operating system services in a segregated, virtualized environment, similar to a VM. This additional level of protection, called virtualization-based security, ensures that no one can manipulate those critical services, even if the kernel mode of the host operating system is compromised.
In addition, Windows 10 takes advantage of processors equipped with second-level address translation (SLAT) technology and virtualization extensions, such as Intel Virtualization Technology (VT) x and AMD V, to create a secure execution environment for sensitive Windows functions and data.
Protection of Information
And wouldn’t it be nice if your data could be protected everywhere, at-rest, in transit, across devices, on different storage locations ? And above all can’t this be done simply?
The clue is to protect data at the file level. DLP systems are intended to protect sensitive corporate data through encryption and managed use while the data is in use, in motion, or at rest. Unfortunately traditional DLP software is complicated to use and complicated for administrators to configure and deploy. Windows 10 now includes a built-in EDP feature that offers basic DLP capabilities that is simple to use and deploy.
Identity Protection and Access Control
The Windows 10 operating system has become a universal access control broker providing a simple and effective way to protect data.
Windows 10 includes a feature called Microsoft Passport, a new 2FA mechanism built directly into the operating system. The two factors of authentication include a combination of something you know (for example, a PIN), something you have (for example, your PC, your phone), or something about the user (for example, biometrics). With Microsoft Passport enabled, when you log on to a computer, Microsoft Passport is responsible for brokering user authentication around the network, providing an easy-to-use Single Sign On (SSO) experience.
Combining Windows 10 security features with Microsoft cloud-based services like Azure Rights Management provides a simple, cost-effective and quick way to deploy and manage enterprise data protection without purchasing, installing and managing more on-premise infrastructure. Small, medium and large organizations can benefit from intelligent policy based data protection that classifies, labels and protects data all at once.
Ready to migrate and want to learn how ? Sign up for our September Technical Workshop entitled:
Migrate to Windows 10 from September 27-29, 2016.
Ready to migrate and need help ? Contact us for a free consultation.
Interested in learning more about Office 365 and the "New World of Work"? Come to our free Experience Seminar on September 23, 2016.
