Digitalization
http://derstandard.at/2000059066521/Albtraum-fuer-Hosting-Provider-Ex-Admin-loescht-saemtliche-Daten
Standardisierung Automatisierung Self Service
Unmanaged & Mobile Clients
Sensitive Workloads
Cybersecurity Reference Architecture
Intranet
Extranet
Azure Key Vault
Azure Security Center• Security Hygiene• Threat Detection
System Management + Patching (SCCM + Intune)
Microsoft Azure
On Premises Datacenter(s)
NGFW
IPS
DLP
SSL Proxy
Nearly all customer breaches that Microsoft’s Incident Response team investigates involve credential theft 63% of confirmed data breaches involve weak, default, or stolen passwords (Verizon 2016 DBR)
Colocation
$ Windows 10
EPP - Windows Defender
EDR - Windows Defender ATPMacOS
Multi-Factor Authentication
MIM PAMAzure App Gateway
Network Security Groups
AAD PIM
Azure Antimalware
Disk & Storage Encryption
SQL Encryption & Firewall
Hello for Business
Windows Info Protection
Enterprise Servers
VPN
VPN
VMs VMs
Certification Authority (PKI)
Incident
Response
Vulnerability
Management
Enterprise Threat
Detection
AnalyticsManaged
Security Provider OMS
ATA
SIEM
Security Operations
Center (SOC)
Logs & AnalyticsActive Threat Detection
Hunting Teams
Investigation and Recovery
WEF
SIEM Integration
IoT
Identity &
Access
80% + of employees admit using non-approved SaaS apps for work (Stratecast, December 2013)
UEBA
Windows 10 Security• Secure Boot• Device Guard• Application Guard• Credential Guard • Windows Hello
Managed ClientsLegacy Windows
Security Appliances
Windows Server 2016 SecuritySecure Boot, Nano Server, Just Enough Admin, Hyper-V Containers, Device Guard, Credential Guard, Remote Credential Guard, …
Software as a Service
AAD Identity Protection
ATA
Privileged Access Workstations (PAWs)
Internet of Things
• Device Health Attestation
• Remote Credential Guard
Intune MDM/MAM
Conditional Access
Cloud App Security
Azure Information
Protection (AIP)• Classify• Label• Protect• Report
Office 365 DLP
Endpoint DLP
Structured Data & 3rd party Apps
DDoS attack prevention
Cla
ssif
icat
ion
Lab
els
ASM
Lockbox
Office 365
Information
Protection
Backup and Site Recovery
Shielded VMs
Domain Controllers
Office 365 ATP• Email Gateway• Anti-malware
Hold Your Own Key (HYOK)
ESAEAdmin Forest
https://protection.office.com/#/serviceassurance/compliance
https://protection.office.com/
https://protection.office.com/#/serviceassurance/othertrust
Web
Web
Web
Web
Web
Web
Web Web
Web
Web
Web
Web
Web
Web
GitHub
Web GitHub
GitHub
iOSWindows AndroidLinux
Clojure CoffeeScript Go Groovy Java Objective-C Perl PHP Ruby Rust Swift
Visual Studio Professional & Enterprise
Visual Studio for Mac
Visual Studio Code
Visual Studio Mobile Center
Visual Studio Team Services
Tooling support for
Windows 10 Creators
Update (RS2)
Install reliability
improvements
Team Explorer edition
Integrated Python
support
New Data Science
workload
Xamarin IDE and
profiler updates
15.0 15.1 15.2
Accessibility improvements
.NET Core 2.0 support
C# async main and default
expressions
Task status center
Docker nano container support
Improved code styles support
C++ perf improvements
15.3
Preview
Available nowAvailable now
Visual Studio 2017New features
Live Update Storage
Push Notifications
Crash Reporting IdentityTables
Visual Studio Mobile CenterMission control for mobile apps
App
Models
Base
Libraries
ASP.NET
Windows FormsWPF UWP
ASP.NET Core*
Xamarin.
iOS
Xamarin.
Android
Compilers Languages Runtime components
Common Infrastructure
.NET Framework .NET Core Xamarin
Xamarin.
Forms
Xamarin.
Mac
.NET Standard Library
Platform Agnostic Assemblies
.NET Platform Standard (Contracts)
.NET Framework Class Library CoreFx Class Library Mono Class Library
Building cross-platform libraries
The .NET Standard Library and the .NET Platform Standard
Azure Compute Options
Ultimate
Control
Rapid
Development
VMs /
VM Scale Sets
VM Extensions,
Hyper-V
Container
Service Fabric
&
Azure Container
Service
App Service
&
Azure Functions
IaaS PaaS
BatchService FabricContainer Service Web Apps
Microservices
Service Fabric
Windows and Linux Containers
Stateless and stateful microservices
Deploy on Azure, Azure Stack and on-premises
Azure Other CloudsOn Premise
Azure Service FabricAny OS, Any Cloud
Dev Box
Service Fabric on
Linux in Azure
Preview
Service Fabric for
Linux
Coming 2017
Service Fabric
Windows SDK
Available
Service Fabric on
Windows in Azure
Available
Service Fabric in
Azure Stack GA
Coming 2017
Service Fabric for
Windows Server
Available
Service Fabric on
Linux in Azure
Available Preview
Azure Functions
On-demand serverless code
Develop, debug, test, deploy in Visual Studio
CI/CD support in Visual Studio Team Services and Github
https://dot.net/architecture
What’s next?
(Acsend)
Are you looking to capitalize on new
product innovations and deliver value
to your organization?
Are you ready to join a select group
of Microsoft customers and partners
to solve your business challenges by
taking advantage of the newest
Microsoft and open source
technologies?
Are you willing to share your project
outcome publicly?
You are invited to participate in
a technical engagement where
Microsoft Technical Evangelists
will help you and your team
envision, architect, and build
solutions or apps that address
your business needs.
What?
Planning and coding activities with Microsoft Technical Evangelists
Linux on
Azure
Cognitive
Services
Conversation as
a Platform
Business Apps
with Azure
App Service
Business Mobile
App
Development
How?
On site or at a Microsoft location – you choose
An in-depth,
envisioning session
to define project
A workshop-style, 1:1 or few-
to-few technical engagement
over 1-2 days in an architecture
design session or documenting
application lifecycle through a
value stream map conversation
3-5 day hack engagement
with technical coding,
design, and “build-with”
activities involving best
practices
Follow-up consultation
as needed
Who?
Your technical team(s)
Developers Architects Data specialists
or scientists
Line-of-business
specialists
Operations, security,
and networking
team members
Willingness to assign teams to participate and work
on a project that can be shared publicly
Technical write-up on GitHub of
the engagement
Code SamplesArchitecture Diagram
Microsoft Cognitive Services is a collection of
intelligence and knowledge APIs that enable
developers to make their applications more intelligent,
engaging, and discoverable. With Microsoft Cognitive
Services, you can:
technical
Be ready to start
work with your team
and Microsoft on
your solution
Document and agree
with Microsoft on the
scope of your project
and expected outcomes
Schedule your
engagement
Sign the technical
engagement
agreement
1 432