Office 365 advanced threat protection
-
Upload
soho-dragon -
Category
Technology
-
view
132 -
download
1
Transcript of Office 365 advanced threat protection
Peter Fidler
Peter and Warren Eng forged a partnership in 1988 that would
eventually become WCA Technologies. For over 29 years, we’ve
provided IT support for law firms, financial services firms, non-
profits and small to medium-sized businesses.
The goals are always the same: How can we apply technology to
improve productivity, lower costs, and cyber theft
disruption. Peter’s virtual CIO expertise ranges from the cloud to
email systems to database applications to network security and
infrastructure. He is regularly invited to speak on emerging
technology, cybersecurity, and business productivity. Peter is
quoted regarding about the impact of technology, including by
the Washington Times, because of his methodical, practical
approach to solving problems. Peter graduated from Bentley
University with a Bachelor of Science in Business and later earned
his MBA from Fordham University.
IT Consulting
IT Support
Managed Cloud Services
Network Assessments
Project Management
Strategic Planning
System Integration
WCA Technologies is a full-service Information Technology
services company located in New York City. Our IT Consultants
offer IT Support, IT Consulting, and Managed IT services.
Our talented team of IT Consultants assists companies in a variety of industries, as a trusted technology partner that solves challenges, without offering products and services that you don’t need. For more than 29 years, WCA Technologies has worked collaboratively with businesses throughout the Metro New York area to provide customized IT support solutions. In fact, most of our original customers are still with us today — even though we’ve been in business for almost three decades!
Agenda
1 2 3
Overview of
Office 365
Security
Advanced
Threat
Protection
Advanced
Security
Management
Exchange Online
Protection
Preventing signature-
based malware
Advanced Threat
Protection
Preventing exposure to
“unknown” threats
Advanced Security
Management
Understanding
user behavior to
customize policies
Threat
Intelligence
Developing proactive
cybersecurity strategy
What makes cybersecurity a complex problem?
100101011010100011
MalwareSpam Smart attackers Intelligent attacks
Volume of attacks Sophistication of attacks
Office 365 Advanced Threat ProtectionProtect against sophisticated threats
Protection against unknown
malware/viruses
• Behavioral analysis with
machine learning
• Admin alerts
Time-of-click protection
• Real-time protection
against malicious URLs
• Growing URL coverage
Rich reporting and tracing
• Built-in URL trace
• Built-in Message Trace
• Reports for advanced threats
Multiple features, maximum security
Safe Links Provides time-of-click
malicious URL detection
Safe Attachments Protect against
Malicious attachments
URL Detonation Scan files that are linked in
email via URLs to websites
Protects against zero-day exploits in email attachments.
Provides visibility into compromised users for administrators.
Leverages sandboxing technology.
IP + envelope filter
Signature-based AV
Blocking known exploits
EOP user without Office 365 ATP
EOP user with Office 365 ATP
Anti-spam filter
Admin sets policy
Safe attachments: Policy and notification
Admin gets notification
if message is blocked
Eliminates latency within Safe Attachments.
Recipients are notified that the original
attachment is getting scanned.
Recipients can get notifications if the
attachment is harmful after getting scanned.
Protects against phishing and sites with malicious content.
Provides visibility into compromised users for administrators.
Rewrites all URLs to proxy through an EOP server.
Safe links
IP + envelope filter
Signature-based AV
Blocking known exploits
EOP user without Office 365 ATP
EOP user with Office 365 ATP
Anti-spam filter
http://www.
Web serversperform latest URL reputation check
User clicking URL is taken to EOP web servers for the latest check at the “time-of-click”
Rewriting URLs to redirect to a web server
URL detonation
Zero-day protection from
malicious linksPerform real-time behavioral
malware analysis in a sandbox
environment against malicious files
at destination URLs.
A new set of capabilities powered by Microsoft Cloud App Security—to give you greater visibility and control over your Office 365 environment:
Advanced Security Management includes:
Threat Detection
Helps you identify high-
risk and abnormal usage,
and security incidents.
Enhanced Control
Shapes your Office 365
environment leveraging
granular controls and
security policies.
Discovery & Insights
Get enhanced visibility
into your Office 365 usage
and shadow IT without
installing an end point
agent.
Developing proactive
cybersecurity strategy