Security and risk management
-
Empowering employee self-service with guardrails: How we’re using sensitivity labels to make Microsoft more secure
At Microsoft, empowering our employees to do their best work means trusting them with self-determination. But to do that safely, we need clear data loss prevention systems in place. We describe it as self-service with guardrails. Giving employees that level…
-
Looking back at deployment of Windows 11 at Microsoft
[Editor’s note: This content was written to highlight a particular event or moment in time. Although that moment has passed, we’re republishing it here so you can see what our thinking and experience was like at the time.] Windows 11,…
-
Lessons learned at Microsoft: Five steps you can take to reduce your ransomware risk
As a part of our journey to reduce our ransomware risk internally here at Microsoft, we’ve identified five principles that we believe every enterprise should follow to make themselves more secure from these attacks. We call these our Foundational Five…
-
Enhancing Microsoft’s security posture with Microsoft Azure Firewall Manager
Imagine an enterprise company with dozens or hundreds of firewalls, each with its own set of policies for keeping corporate networks secure. That was the situation here at Microsoft until our IT teams started using Microsoft Azure Firewall Manager. This…
-
Sharing what we learned deploying our secure federal environment
At Microsoft, we serve a diverse range of customers, from individual users and large businesses to sovereign governments with specific regulatory requirements. Our platform products such as Microsoft Azure and our Microsoft 365 productivity suite perform extremely well for these…
-
Protecting against oversharing Power BI reports with Microsoft Sentinel
Microsoft Power BI is an essential tool for monitoring performance, identifying trends, and developing stunning data visualizations that many teams across Microsoft use every day. A well-built Power BI report can play a critical role in helping communicate business information…
-
Harnessing first-party patching technology to drive innovation at Microsoft
We live in a world where network security is a foundational concern for large enterprises like ours that are trusted with sensitive customer data. This creates an environment where we all need to ensure that we have high patching compliance…
-
Verifying identity in a Zero Trust model internally at Microsoft
This story was first published in 2021. We periodically update our stories, but we can’t verify that they represent the full picture of our current situation at Microsoft. We leave them on the site so you can see what our…
-
Boosting Windows internally at Microsoft with a transformed approach to patching
You’re only as secure as your most vulnerable machine. That leaves enterprises like ours at risk when our employees don’t update to the latest software version on a timely basis. Bad actors are tirelessly pursuing the smallest of vulnerabilities, so…
-
Building an anti-ransomware program at Microsoft focused on an Optimal Ransomware Resiliency State
We periodically update our stories, but we can’t verify that they represent the full picture of our current situation at Microsoft. We leave them on the site so you can see what our thinking and experience was at the time.…
-
Why Microsoft uses a playbook to guard against ransomware
We periodically update our stories, but we can’t verify that they represent the full picture of our current situation at Microsoft. We leave them on the site so you can see what our thinking and experience was at the time.…
-
Sharing how Microsoft protects against ransomware
We periodically update our stories, but we can’t verify that they represent the full picture of our current situation at Microsoft. We leave them on the site so you can see what our thinking and experience was at the time.…