Enterprise Mobility and Security Blog


Today marked the first day of the inaugural Ignite event. As evidenced by this morning’s keynotes, Enterprise Mobility continues to be a major focus area for Microsoft

As our executive team discussed, the massive use of mobile devices and cloud applications in the enterprise continues to have a profound impact on how people work.  End users see their devices as extensions of themselves and house both personal and professional apps and data. As a result, we’re seeing a transformation in IT, with new opportunities for IT pros to lead a holistic mobility strategy.

With this in mind, Microsoft released the Enterprise Mobility Suite (EMS) a year ago, delivering a comprehensive solution to help enable secure mobile productivity on any device and with multiple levels of protection. With EMS, IT pros have a complete arsenal of tools, designed to protect across four key areas: identity, devices (mobile devices and PCs), apps and data.

In addition, EMS deeply integrates with on-premises offerings so customers can continue to take advantage of current infrastructure investments and IT skills – keeping corporate data safe in hybrid scenarios.  

Customers are taking notice of these benefits. For example, Godiva is adopting Microsoft’s Enterprise Mobility Suite to further innovate their company:

“At Godiva, we never stop thinking about how to deliver the ultimate chocolate experience for every single one of our customers.  With Microsoft’s Enterprise Mobility Suite, we have a great opportunity to deliver identity management, device management and data protection services to our internal team. And when our team has the information they need when and where they need it, it makes it that much easier for us to delight our customers at every touchpoint.” – Jackie Shea- Global CIO, Godiva Chocolatier Inc




A key concern for customers continues to be security, and rightly so. Cybersecurity attacks have not only increased in frequency but also sophistication, with President Obama even declaring them as a national emergency. Unfortunately, we expect this trend to continue, and companies are even more vulnerable as their mobile workforce accesses sensitive data remotely.

In the vast majority of advanced cybersecurity attacks user credentials are compromised. Over 75 percent of all network intrusions are traced back to compromised credentials (Verizon 2013 Data Breach Investigation Report). Attackers are increasingly using legitimate IT tools rather than malware and as a result, they are harder to detect. Today’s complex cybersecurity attacks require a different approach.

Which is why we’ve announced new solutions that will help customers to combat cybersecurity attacks and to ensure the safety of our customer’s IP.

We are pleased to announce the public preview of Microsoft Advanced Threat Analytics (ATA), a product based on Microsoft’s recent acquisition of Aorato, an innovator in enterprise security. Microsoft Advanced Threat Analytics is an on-premises product to help IT organizations protect their enterprise from advanced targeted attacks by automatically analyzing, learning, and identifying normal and abnormal entity (user, devices, and resources) behavior through Active Directory, the identity management technology used by most enterprises. It also detects known malicious attacks and security issues using security research work. ATA provides clear and relevant threat information on a simple convenient feed, helping IT security professionals to focus on what is important.  You can learn more by visiting the Microsoft Advanced Threat Analytics page. Read today’s blog post from our engineering team.

In addition, Microsoft is announcing:

    • Intune Conditional Access and Mobile Application Management for the Outlook app: This quarter, Intune will enable customers to restrict access to the Outlook app based upon device enrollment and compliance policies as well as restrict actions such as cut, copy, paste, and save as between the Intune-managed Outlook app and personal apps.  Stay tuned to the Intune blog for more information on this feature when it becomes generally available.
    • Azure AD Cloud App Discovery:  In the next month Azure AD will enable customers to identify cloud apps being used in a customer’s IT environment revealing shadow IT. Read more from our engineering team about Cloud App Discovery.
    • Public preview of Azure AD Privileged Identity Management: Enables customers to discover, restrict and monitor privileged accounts and their access to resources and enforce on-demand temporary administrative access when needed. Azure AD Privileged Identity Management is available in Azure AD Premium. Read more from our engineering team about Privileged Identity Management.
    • Public preview of Azure Rights Management Document Tracking: Enables customers to track activities on sensitive files that they have shared with others. With a single click, users can also revoke access to shared files. Read more from our engineering team about Document Tracking.



In this increasingly mobile-first world, Windows 10 is evolving to deliver updates on a rapid cloud cadence, offering best-in-class experiences across PCs, tablets, and mobile devices. To support this evolution, we plan to offer the leading mobile-first, cloud-first management capabilities for Windows 10 with System Center Configuration Manager and Microsoft Intune.

  • System Center Configuration Manager Technical Preview: Today, we are making available the System Center Configuration Manager Technical Preview. This preview provides an early glimpse of the functionality that we are planning to make generally available in Q4 of this calendar year to deliver full support for Windows 10 deployment, upgrade, and management.
  • System Center 2012 R2 Configuration Manager SP1 and System Center 2012 Configuration Manager SP2: Next week, we will be making available System Center 2012 R2 Configuration Manager SP1 and System Center 2012 Configuration Manager SP2 to provide full compatibility with existing features for Windows 10 deployment, upgrade and management. Read more about System Center Configuration Manager support for Windows 10.
  • Microsoft Intune: Intune has also been updated to provide support for Windows 10 management with incremental support for new Windows 10 features to be added over the coming months. Read more about Intune support for Windows 10.


The enterprise mobility market is still an emerging industry that will continue to rapidly evolve as both vendors and customers work to solve for the convergence of productivity, identity and device management.

As much as the industry has changed in a short time, so have we – we’ve come a long way in our first year in market, our Enterprise Mobility customers grew over 70% to more than 13 thousand, with a 7x increase in users.

Customers (including Godiva Chocolatier Inc) are rapidly adopting our solutions and because our solutions are built in the cloud, we’ve been able to update our services on a rapid cadence, quickly responding to customer feedback. In fact, in our first year we released over 140 new features across our cloud services with over 50 of them coming from Intune alone.

It’s been a great first year for EMS, and we are thrilled that our customers continue to see the value of our enterprise mobility offerings. This is only the beginning, as we continue to invest and focus on enterprise mobility as a company to provide the absolute best experience to enable you to keep your users productive while protecting your company’s sensitive data. You can learn more by visiting the Microsoft’s Enterprise Mobility page. Also, read the recap of today’s announcements and keynote session from Brad Anderson VP of Enterprise Mobility.