Microsoft is taking cloud security seriously.
It’s been about 100 days since the company’s chief executive officer, Satya Nadella, stressed more must be done for enterprise security. At the time, Nadella promised Microsoft would be making further investments in such security and it is delivering.
In a lengthy blog post, Microsoft’s chief information security officer highlighted changes and explained there is a need to ensure security is at a maximum when it comes to the company’s services it is delivering.
“As attackers get more sophisticated, we need to evolve our ability to get real-time insights and predictive intelligence across our network so we can stay a step ahead of the threats. We must be able to correlate our security data with our threat intelligence data to know good from bad. And we must leverage the industry and our partners to ensure a broad, comprehensive approach,” stated Bret Arsenault.
That approach includes a secure platform, an intelligent security graph and partnerships. All of which, Arsenault outlines in his entry, Microsoft is providing.
The biggest announcement Arsenault makes, however, is likely the Microsoft Cloud App Security, based on the Adallom technology. The app security will become generally available in April 2016 bringing the same level of visibility and control that IT departments have in their on-premises network to their SaaS applications including apps like Box, SalesForce, ServiceNow, Ariba, and of course Office 365.
Office 365 features include advanced security alerts notifying Office 365 admins of anomalous or suspicious activity in the service so that they can take immediate action. IT departments will also be able to use Cloud app discovery to analyze what clouds users are connecting to and the security and safety of that connection. App permissions are also being introduced enabling the ability to approve or revoke permissions for third party services authorized to connect to Office 365.