SharePoint 2013 & SharePoint Online
Security, Compliance & eDiscovery
Today’s Presentation:
• Introduction & About Gig Werks
• Gig Werks Experience with SharePoint
• Office 365 Security Features
• SharePoint Permissions & Authentication
• SharePoint Secure Document & Content Management
• Compliance, eDiscovery, Retention Policies
• 3
rdParty Applications for Advanced Solutions & Functionality
• Q&A
• Please type any questions during the webcast into GoToWebinar and we will answer at the end
• Survey
• When leaving the webcast you will be prompted with a survey, please fill out for access to the
About Gig Werks
•
Company began and has been a Microsoft Gold Partner since 2002•
Deep relationship with Microsoft•
Virtual Technology Specialists for the Microsoft New York Enterprise Group•
Microsoft SharePoint Partner Award Winner 2010, 2011, 2012 & 2013•
Various other Microsoft Awards and Tech Forum Award Winner 2008•
Invited into the Partner Evidence Program for SharePoint 2007, 2010 & 2013•
Market Focus•
From 100 seats to 150,000+ with clients across North America•
Have focused on SharePoint since 2003•
Deep Industry Experience in: Financial Services, AEC, Healthcare/Pharma, Legal & Professional Services•
Approved Vendor of Microsoft LCA•
Expertise around Full Capabilities of SharePoint, ECM, Business Intelligence, Office 365 & Microsoft StackQuick Start /
Packaged Offerings
Premium Advisory Services Plan SharePoint Planning
SharePoint Staging & Development Workshop Power Business Intelligence
Nintex Workflows Quick Start SharePoint & Business Intelligence
SharePoint & Branding
SharePoint & Line of Business Integration
Webcast – Monday, 11/24
Expanding the Use, Potential and Value of SharePoint through 3rd Party Applications
Webcast – Tuesday, 11/25
SharePoint Reporting for Project, Program and Portfolio Management
Webcast – Tuesday, 12/16
Satisfy Regulatory and Compliance Demands Easily with Advanced Workflows in SharePoint
Webcast – Wednesday, 12/17
Secure Document Comparison and Collaboration in SharePoint
Upcoming
Microsoft SharePoint
Gig Werks ISV Partner Ecosystem
Advanced Business Solutions and Expertise
AEC Solutions •Nintex •Intelledox •CADtoWIN •BrightWork •Accusoft •Colligo •Metalogix •HiSoftware Financial Services Solutions •Nintex •Intelledox •Collabware •HiSoftware •Metalogix •Workshare •Accusoft Legal Solutions •Nintex •Intelledox •BA Insight •Workshare •Accusoft •Collabware •HiSoftware •Metalogix •Colligo Pharmaceutical / Healthcare Solutions •Nintex •Intelledox •HiSoftware •Metalogix •Workshare Enterprise Content Management •Intelledox •Collabware •Metalogix •HiSoftware •Accusoft •BA Insight •Colligo •Workshare •CADtoWIN •Nintex Workflow •Nintex •HiSoftware •Intelledox Search •BA Insight •Accusoft •IGC •Colligo •Workshare Business Intelligence / Reporting •HiSoftware •BrightWork •Nintex •Metalogix Project Management •BrightWork Governance / Compliance •Nintex •Intelledox •Collabware •Metalogix •HiSoftware •Colligo •Workshare
Advantages of Office 365 & The Cloud
• No Infrastructure Cost or Support Needed
• Automatic Updates and Maintenance
• Always have the latest version of Microsoft Products
• Accessibility from Anywhere
• Community and Phone Support
• Guaranteed 99.9% Uptime (Financially backed SLA from Microsoft)
• Predictable Cost
• Flexible Bandwidth
Office 365 & SharePoint Online
Pricing and Options
User Maximum 25 users 25 users 300 Users Unlimited Unlimited Unlimited Unlimited
Need Plan 2 for Certain
Advantages of On-Premise
• Complete control of your environment and data
• Supports heavy customization (ex - Visual Studio Workflows)
• Keep Sensitive information in-house
• Easier integration into Line of Business systems
• Full development options for developers
Office 365 Security
Microsoft is an industry leader in cloud security and implements policies and controls on par with or better than on-premises data centers of even the most sophisticated organizations.
Built-In Security
• 24-Hour Monitored Physical Hardware • Isolated Customer Data
• Data storage and processing for each tenant is segregated through Active Directory structure • Automated Operations
• Secure Network • Encrypted Data
• Customer data in Office 365 exists in two states: • At rest on storage media and in transit from
Office 365 Security
Microsoft is an industry leader in cloud security and implements policies and controls on par with or better than on-premises data centers of even the most sophisticated organizations.
Customer Controlled Security
• Enabling Advanced Encryption • Enabling User Access
• Customer-End Federated Identity and Single Sign-On Security Provisions
• Two-Factor Authentication • Enabling Compliance
• Data Loss Prevention (DLP) • Auditing & Retention Policies • eDiscovery
Office 365 Security
Office 365 has operationalized security into a scalable process that can quickly adapt to security trends and industry-specific needs. Microsoft engages in regular risk management reviews, and it develops and
maintains a security control framework that meets the latest standards
Independent Verification and Compliance
• ISO 27001: Built based on ISO 27001 standards and was the first major business productivity public cloud service to have implemented the rigorous set of global standards covering physical, logical, process, and management controls
• FISMA: Granted FISMA moderate Authority to Operate by multiple federal agencies
• HIPAA BAA: First major business productivity public cloud service provider to offer a HIPAA BAA to all customers
• EU Model Clauses: First major business productivity public cloud service provider to sign the standard contractual clauses created by the European Union
SharePoint Authentication
• SharePoint 2013 Requires Authentication:
• Users who access on-premises SharePoint resources
• Apps that access on-premises SharePoint resources
• On-premises servers that access on-premises SharePoint resources, or vice versa
• User Authentication
• Validation of a user's identity against an authentication provider
• SharePoint 2013 Supports
• Claims-Based Authentication
• Windows Classic Mode Authentication
• App Authentication
• Validation of a remote SharePoint app's identity and the authorization of the app and an associated user of a secured SharePoint resource request
• Server-to-Server Authentication
• Validation of a server's request for resources that is based on a trust relationship established between the STS of the server that runs SharePoint 2013 and the STS of another server
What's New in Authentication for
SharePoint 2013
• Simplified Used of Claims-Based Authentication
• New Scenarios enabled for Exchange Server 2013, Lync Server 2013, and apps in the
SharePoint Store or App Catalog
• Support for server-to-server authentication and app authentication by utilizing and
extending the Open Authorization 2.0 (OAuth 2.0) web authorization protocol
• Provides temporary, redirection-based authorization
• Allows users to grant apps in the SharePoint Store and App Catalog access to specified,
protected user resources and data without requiring the app to obtain, store, or submit
the user’s credentials
• Allows app and services to act on behalf of users for limited access to SharePoint
resources
SharePoint Permissions
• Permissions grant a user the ability to perform
specific actions
• Permisssions are categorized in SharePoint as
• List Permissions • Site Permissions
• Personal Permissions
• Can secure and set permissions for sites, lists,
libraries, folders, documents or items in SharePoint
• Permission levels in SharePoint Include
• View Only, Limited Access, Read, Contribute, Edit, Design, Full Control
• Can group users for easy management of permission
levels and security
Manage content policy, information architecture and taxonomy
Reduce risk and manage compliance with centralized eDiscovery tools
Protect
Control
Create rules to promote results or show additional result blocks
Specify retention schedules for content types
Define mutli-stage retention policies by folder
Taxonomic
navigation bound to term set in metadata term store
View in-place hold stats in real time
Legal can create discovery sets for in-place
preservation
Create queries to trim down content required for
View breakdown of results and size statistics at-a-glance
Unified search query across Office platform
Reduce preservation set size with additional filters
Preview content prior to export
Tabbed results
Export content to EDRM XML standard format
Document Management Features
Not Available in SharePoint Online
Office Web Apps Server integration
For SharePoint Server 2013, there is a new Office server product, Office Web Apps Server. A single Office Web Apps Server farm can support users who access Office files through SharePoint Server 2013, Exchange Server 2013, shared folders, and websites. This lets you deploy and manage the online version of Office in an on-premises environment.
PowerPoint Automation Services
PowerPoint Automation Services helps enterprises manage their presentations. It is a shared service that provides unattended, server-side conversion of presentations into other formats.
WCM: Faceted navigation
Faceted navigation help users browser for content more easily by filtering on refiners that are tied to terms in a term set. By using faceted navigation, SharePoint Server 2013 administrators can configure different refiners for different terms in a term set without having to create additional pages.
WCM: Multiple Domains
SharePoint Server 2013 can create host-named site collections with the host header. Host-named site collections in SharePoint provide URL management and scalability of sites within a single web application. This feature is not available to SharePoint Online customers.
Word Automation Services
Word Automation Services enables unattended, server-side conversion of documents that are supported by Microsoft Word. With Word Automation Services, tasks that previously required you to run the Word desktop application can be automated in SharePoint Server 2013.
What’s New in eDiscovery in SharePoint
http://technet.microsoft.com/en-us/library/fp161513%28v=office.15%29.aspx
The eDiscovery functionality in SharePoint Server 2013 provides improved ways to help
you protect your business.
SharePoint 2013 includes the following:
• A site collection from which you can perform eDiscovery queries across multiple SharePoint
farms and Exchange servers and preserve the items that are discovered.
• In-place preservation of Exchange mailboxes and SharePoint sites — including SharePoint list
items and SharePoint pages — while still allowing users to work with site content.
• Support for searching and exporting content from file shares.
What’s New in eDiscovery in SharePoint
http://technet.microsoft.com/en-us/library/fp161513%28v=office.15%29.aspx
SharePoint eDiscovery Center
• New site in SharePoint for Managing discovery cases and holds
• Each case is a collaboration site that includes a document library which you can use to store
documents related to the management of the case. In addition, you can associate the following
things with each case:
• Sources: Exchange mailboxes, SharePoint sites, or file shares from which content can be discovered. • eDiscovery sets: Combinations of sources, filters, and whether to preserve content. eDiscovery sets
are used to identify and preserve content.
• Queries: The search criteria, such as author, date range, and free-text terms, and the scope of the search. Queries are used to identify content to export.
What’s New in eDiscovery in SharePoint
http://technet.microsoft.com/en-us/library/fp161513%28v=office.15%29.aspx
SharePoint In-Place Holds
• In-place holds in SharePoint offer improvements to the hold functionality in earlier versions of
SharePoint. Improvements include the following:
• Documents, list items, pages, and Exchange Server 2013 mailboxes can be preserved
• Preservation is done at the level of a site. Preserving a site preserves the contents of the site. • Users can continue to work with content that is preserved. The content remains in the same
location, and users can edit, delete, and add new content.
• A user who has permissions to perform eDiscovery can access the original version of preserved content.
What’s New in eDiscovery in SharePoint
http://technet.microsoft.com/en-us/library/fp161513%28v=office.15%29.aspx
SharePoint eDiscovery Export
• Can export the results of an eDiscovery search for later import into a review tool and can export
all of the content that is associated with an eDiscovery case.
• This includes Documents, Lists, Pages & Exchange Objects
Enterprise-Wide eDiscovery
• Centrally manage eDiscovery across multiple SharePoint farms, Exchange servers, and file
shares. From one eDiscovery Center, you can do the following:
• Create a case, define a query, and then search SharePoint, Exchange, and file shares
throughout the enterprise for content that matches the query
• Export all of the content that was identified
What’s New in Records Management
in SharePoint
http://technet.microsoft.com/en-us/library/fp161517%28v=office.15%29.aspx
The records management and compliance features in SharePoint Server 2013 provide improved ways to help you protect your business. The records archive and in-place record retention from earlier versions of SharePoint Server
are still supported. Site-Based Retention
• Compliance features of SharePoint 2013 have been extended to sites. You can create and manage retention policies in SharePoint 2013, and the policies will apply to SharePoint sites and any Exchange Server 2013 team mailboxes that are associated with the sites.
• Compliance officers can create policies, which define the following:
• The retention policy for the whole site and the team mailbox, if one is associated with the site • What causes a project to be closed
• When a project should expire
Enhanced Rights Management Protection
• Microsoft Rights Management connector (RMS connector) is an optional application that enhances data protection on SharePoint 2013 by employing cloud-based Microsoft Rights Management services
• Provide continuous data protection during the lifespan of the information