Enterprise Mobility + Security
We implemented a peace of mind security solution for Grey Matter
With a workforce that was becoming more mobile – customer deployments, off-site training, client visits or simply working from home – Grey Matter needed enhanced mobile-focused security measures to better protect its corporate data and its users’ identities.
As its trusted service provider, Grey Matter came to us to scope out and set up a project to implement and deploy Microsoft Enterprise Mobility + Security, which added an extra layer of security to our existing Office 365 deployment and its peripherals.
What was implemented?
- Multi-factor Authentication (MFA) for all users (Microsoft Intune)
- Conditional Access Policies (Microsoft Intune)
- Mobile Device Management (Microsoft Intune)
- Mobile Application Management (Microsoft Intune)
- Safe Attachment Policy (M365 Security + Compliance)
- Safe Links (M365 Security + Compliance)
- DomainKeys Identified Mail (DKIM)
- Data Loss Prevention (DLP) Policy
Grey Matter’s existing Office 365 deployment leveraged Azure Active Directory (AAD) for user identity management, and so we suggested pairing this with Microsoft Intune. Together, AAD and Intune can restrict data privileges and monitor network access using conditional access policies, adding another layer of security for users signing into the Office 365 service. While also providing additional control for our IT admins.
With BYOD devices, the company portal app was installed to allow secure access to corporate apps and data on personal phones and laptops where needed. MFA is required when logging in from a personal device, and users are not able to take screenshots of corporate data. Likewise, users can’t copy and paste data from corporate apps to non-corporate apps. IT admins were also enabled to wipe all corporate data from users’ personal devices remotely in the event of loss or theft.
M365 Security + Compliance has had a positive impact on the security of emails and preventing user error. Safe Attachment and Safe Links more rigorously scan emails for malicious links and attachments, identifying them before they reach the user. DKIM signatures added to custom domains in Office 365 enabled recipients to know when email messages actually came from legitimate users within Grey Matter’s organisation.
Our team not only deployed and configured all of these security features, we also delivered training to Grey Matter on how these changes would look for users.
Grey Matter now has greater control over its users’ accounts which is of high importance due to the greater levels of mobility in the workforce – working from home and travelling to customers when able. There is also less risk associated with user error due to M365 Security and Compliance imposing background checks before data even reaches the user.