Scribd Logo
Upload

Welcome to Scribd!

  • 5 views

    One Drive

    Uploaded by

    Senthil Kumar
    The document outlines various risks associated with Microsoft OneDrive for Business including remote access to files without firewall control, sharing files across organizations via links, and feature-rich capabilities requiring data loss prevention tools. It also lists various controls to mitigate these risks, such as user and device policies to restrict access and sharing, Intune mobile application management policies, and Azure Rights Management for information rights management.

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd

    One Drive

    Uploaded by

    Senthil Kumar
    5 views2 pages
    The document outlines various risks associated with Microsoft OneDrive for Business including remote access to files without firewall control, sharing files across organizations via links, and feature-rich capabilities requiring data loss prevention tools. It also lists various controls to mitigate these risks, such as user and device policies to restrict access and sharing, Intune mobile application management policies, and Azure Rights Management for information rights management.

    Original Description:

    One

    Copyright

    © © All Rights Reserved

    Available Formats

    PPTX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    The document outlines various risks associated with Microsoft OneDrive for Business including remote access to files without firewall control, sharing files across organizations via links, and feature-rich capabilities requiring data loss prevention tools. It also lists various controls to mitigate these risks, such as user and device policies to restrict access and sharing, Intune mobile application management policies, and Azure Rights Management for information rights management.

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Download as pptx, pdf, or txt
    5 views2 pages

    One Drive

    Uploaded by

    Senthil Kumar
    The document outlines various risks associated with Microsoft OneDrive for Business including remote access to files without firewall control, sharing files across organizations via links, and feature-rich capabilities requiring data loss prevention tools. It also lists various controls to mitigate these risks, such as user and device policies to restrict access and sharing, Intune mobile application management policies, and Azure Rights Management for information rights management.

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Download as pptx, pdf, or txt
    You are on page 1of 2

    RISKS << Microsoft OneDrive for Business Risk Assessment >> CONTROLS

    REMOTE ACCESS IDAM, ACCESS & SHARING


    • Shift from Device-base to Email-base storage • User/device policy to restrict access, share & sync
    • Access & edit files from remote with email ID • Intune MAM, Remove Wipe policies
    • Download & share files without firewall control • Azure Rights Mgmt. Service/ODfB IRM

    MOBILITY MOBILE & CLOUD


    • Android, iOS Apps to operate/manage on cloud • Auto-control to verify secure Network/Internet
    • Privileged/escalated file access with crated app • Granular file/folder permissions-’none’ as default
    • Internet-based 3rd party, Azure Tenant access • Block and report untrusted devices at sight

    COLLABORATION RIGHTS & RESTRICTIONS


    • Simultaneous review and editing of documents • Password-protection, expiration dates for links
    • Sharing across teams & organizations via links • Site collection, end-user restriction for content
    • View-only or edit, expiration dates settings • Adv Info Protection, Conditional Access Policy

    FEATURE-RICH DLP, MDM & MAM


    • Multi-file formats of 300+ types need DLP tool • “Classified” data not to be shared with OWA IDs
    • Convertible to Videos, Images, X-Rays & 3D files • DLP of 3 stages of data, Blocking external sharing
    • Symbolic links for target files/objects privileges • COPE & BYOD mobile device encryption

    DOCUMENT MANAGEMENT CENTRAL VAULT & DMS


    • Classify, store, backup/recover, archive on-cloud • Effective employee offboarding process, reviews
    • Legal-hold, Retention & Disposal for deleted ID • Ransomware-protected cloud-to-cloud backup
    • SharePoint Document Library but tied to users • Regular user awareness & user behaviour SET

    DATA PROTECTION & PRIVACY EPS/EDR & ENCRYPTION


    • Decentralized, scattered, distributed repository • Mandatory strong modern MFA & central control
    • Lack of BitLocker & Personal Vault encryption • Host-check for updated EPS AV & Patched EUC
    • Code-centric instead of Data-centric security With Outlook Web Access • Sentinel integration, Native log/audit reviews

    You might also like