Exchange Archiving, eDiscovery, Compliance and DLP
Download
Report
Transcript Exchange Archiving, eDiscovery, Compliance and DLP
Welcome to the
Exchange 2013 Webcast
Archiving, eDiscovery, & Data Loss
Prevention
The new Office
Preserve
Discover
Storage Management
Preservation
Data Governance
eDiscovery
In-Place Archive with
secondary quota
Capture deleted &
edited messages
Time-Based In-Place
Hold
Automated time-based
criteria to delete or
move to archive
Search primary, archive,
& recoverable items
Available on-prem,
online, or EOA
Lync Archives into
Exchange
Search across Primary
& Archive – OLK &
OWA
Query-Based In-Place
Hold
In-Place Hold across
Exchange, SharePoint,
Lync
Set policies at item or
folder level – admin or
user
Consistent MRM OWA
UI
De-duplication & Search
statistics
eDiscovery Center for
Exchange, SharePoint,
Lync
Case Management
In-Place preview
Export search results
Outlook
OWA
An integrated In-Place Archive
enables users to save time by
managing their archive as they do
their mailbox
Retain folder hierarchy
Integrated search
Search everywhere at once
•
Quickly find new or
historical email wherever
you are with new, faster
search technology
•
Single Search in OWA and
Outlook returns results
Combined
from Primary
& Archive
conversation
view
Mailboxes
Automate the deletion and
archiving of email and
other Exchange data to
meet data retention
requirements
Single menu
for
• policies
Assign personal tags to
system folders in Outlook
and OWA
• View default mailbox policy
•
Retention policy and expiry details
Assign to an individual item, folder, or all email
Delete Policy
Archive Policy (mailbox management)
In-Place eDiscovery Model
Identify and
Preserve
Search and
Process
Review
Produce
Select mailboxes & DGs to preserve
Select users & sites to preserve
Query of what to preserve
Turn on Hold
KQL based searches – including proximity search
Instant statistics
Variants
Litigation
Hold (Legacy)
Time-Based
In-Place Hold
Management Options
In-Place Hold
(Indefinite)
eDiscovery
Center
Query-Based
In-Place Hold
Exchange
Management
Shell
Exchange
Admin Center
(1) Message
delivered
User A Mailbox
Inbox
Lifecycle
of
mailbox
items
(2) Message
moved to
Deleted Items
(3) Message deleted
…
Deleted Items
(5) Message Edited
Recoverable Items
Deletions
(4a) Message “purged”
by user (Litigation Hold /
Single Item Recovery)
(4b) Message “purged”
by user (In-Place Hold)
Versions
Purges
Audits
DiscoveryHold
Calendar Logging
(6a) Messages purged by
DIRW Policy (or
maintained for Litigation
Hold)
(6b) Mailboxes with SIR
and In-Place Hold enabled
have expired messages
moved
(6c) MFA evaluates item
against hold queries set on
mailbox
Single In-Place data store for Exchange & Lync compliance
Lync 2010
Exchange 2010
New Lync
Compliance
Archive
New Exchange
Compliance
Lync archives content into Exchange mailboxes when user is on In-Place Hold
Includes instant messaging and meeting content
In-Place Hold, eDiscovery, MRM of Lync data consolidated to Exchange tools
User A on hold
User A Mailbox
Inbox
Deleted Items
Server side archiving
All Lync modalities
captured (PC, mobile,
web, OWA)
Recoverable Items
Deletions
Purges
Versions
DiscoveryHolds
Enable or modify quickly
Cloud Archive (EOA)
Fully Hosted
PRIMARY
PRIMARY
ARCHIVE
ARCHIVE
Hybrid*
PRIMARY
ARCHIVE
PRIMARY
ARCHIVE
Rapidly evolving external threats
Potential loss of sensitive data
Keeping email safe without
impacting users
25
Exchange Online Protection works to block spam and viruses before
they enter the network
Basic level of anti-malware built into Exchange Server
Scan Exchange transport for sensitive content with Data Loss
Prevention (DLP) feature in the cloud or on-premises
Granular control on email using RMS
26
27
28
29
Conditions
Actions
Conditions
Actions
Exceptions
31
Exceptions
New options
New filters
New actions
32
DLP helps to
identify
monitor
protect
sensitive data through
deep content analysis
Empower users to manage their
compliance
Contextual policy education
Doesn’t disrupt user workflow
Can work even when disconnected
Admin-customizable text and actions
34
35
Defines the policy objectives
to help meet regulatory requirements
for identified content
Contains data type definitions
to help identify sensitive content
• Content to monitor
• User action
• Mail flow actions
contains
•
•
36
Credit cards
EU debit cards
Predefined rules targeted at
sensitive data types
Advanced content detection
Combination of regular expressions,
dictionaries, and internal functions
(e.g., validate checksum on credit
card numbers)
Extensibility for customer and ISVdefined data types
37
Conditions
Actions
Exceptions
38
39
Microsoft Windows Azure™ Active Directory
Rights Management
Default Templates
Company Confidential
Company Confidential Read Only
Do not forward (Works across tenants)
Preview configuration:
Configure Exchange Online Preview to use Windows
Azure AD Rights Management
40
Audit data
Classification
Rule details
42
Comprehensive view of DLP
policy performance
Downloadable Excel workbook
Drill into specific departures from
policy to gain business insights
43
Education experience in Outlook Preview
Available in Exchange Server and Office 365
Out-of-the-box DLP policy templates
Predefined sensitive content types
Support for third party–defined DLP policy
templates
DLP administration in Exchange Admin Center
Rich reporting
44
Protect communications
Enforce policy
Simplify management