what’s new on windows 11 security & management
TRANSCRIPT
PowerPoint Presentation© Copyright Microsoft Corporation. All
rights reserved.
What’s new on Windows 11 Security & Management Mario De Ridder Cedric Depaepe
Housekeeping Rules
Please mute yourself if there is background noise.
Use the chat window during the presentation.
During Q&A, you can use your mic or chat.
This is a trusted space.
Slides will be provided after event.
• Introducing Windows 11
• Windows 365
Maintain productivity at pre-
pandemic levels while working
help employees and teams
efficiently communicate
and collaborate.
that are so important for a
hybrid workstyle.
of Windows 10. It is fresh,
but also consistent for your
employees, and IT.
management needed for
deployed alongside
protect data and secure
Deliver a consistent workplace experience anywhere.
To support a hybrid workforce, organizations need the ability to seamlessly manage devices, identities, apps, and information through
the cloud.
Meet the increased need for agility and resilience without sacrificing security
Why we need a modern security solution for the hybrid workplace
Protect the business.
The expansion of access and ability to work anywhere has also introduced new threats and risks. From the chip to the cloud,
hardware and software must work together to stop threats.
Enable a Zero Trust security model.
Organizations of all sizes need comprehensive control over access to information, applications, and network resources from anywhere
without compromising the user experience.
Empower IT Administrators.
Help IT Administrators easily protect, enable and enforce access seamlessly, while allowing for customization to meet specific user
and policy requirements for access, privacy, compliance and more.
Unlock potential with the right devices.
Whatever their role or location, people need the right device to do their job well—whether working in an office, at home, or serving
customers in frontline environments.
Increased protection with
built-in security, hardware-
based isolation, and
*Requires new PC with Pluton processor, expected availability Spring 2022
Identity
Protection
Operating
System
Protection
Hardware
• Security by design with Microsoft Azure Attestation native
• Designed to address the advanced threats in the world of hybrid work
• TPM 2.0 is the foundation to secure Windows Hello & BitLocker
• Hardware-based isolation
• Eliminate passwords
• Pluton takes things to the next level in the future
Built-in security
Zero trust
200M+
well as AMD USB secure
camera.
Enterprise-grade
hybrid or on-premises
to sync keys from AAD to AD
were removed.
Passwordless with
Microsoft Authenticator
Choose from additional form factors to meet business needs
USB/NFC Key USB Biometric Key NFC & BLE
Windows 11 What’s new on Management?
Consistent in control
Manager.
Company PCs for remote workers Autopilot, the hybrid work deployment process
Ship an employee a
corporate policy and simply
provisioned by the users
when they receive it.
More Mobile Device Management than ever
Group Policy settings parity in Mobile Device Management
Cloud and cloud attached
in blocking migrations to
go through the import
process of your Group
reflect the newly available
Consistent management and servicing
Upgrade to Windows 11 using tools and processes that you already have in place today for Windows 10
Upgrade channel Management tool, analytics Upgrade support by general availability
On-premises
Microsoft Endpoint Configuration Manager (SCCM)
Endpoint Analytics
The cloud
Update Compliance, Endpoint Analytics
*Dependent on third-party partner support.
Cloud & modern managed scenarios
Policies
• Enable Direct Connectivity to the Microsoft Global
• Network & CDNs
Device management
LOB apps
Azure AD
Zero Trust
Proactively identify update
(Fall) of servicing
Lifecycle
Catalog MSU.
works in Microsoft Update via
common, Unified Update Platform
client through granular selection of
required update payloads for customers
who keep their devices up to date month
over month.
Reduced download
more efficient packaging and removal
of reverse differentials.
Reduced quality update
Treat the update just as another Windows 10 release update
Go cloud & modern managed with a single pane of glass
Built for hybrid work
What doesn’t change
• Servicing framework & process
• Windows 10 is the core of the OS
• Windows 10 EOS date
• App compat promise
• Hands-off hardware provisioning
structure
• Lifecycle is 36 months for Commercial editions
• UX and new user experience with integration
• Hardware requirements to enable the complete
experience
Device
Management
Microsoft
Windows 10 apps work on Windows 11
Windows 10 apps work on Windows 11, backed by App Assure
App Assure, a service that helps you with remediation of
application issues if needed.
App Assure requires 150 or more licenses of Microsoft 365, Office 365, Enterprise Mobility & Security, or Windows
99.7% Application
Use Test Base for Microsoft
365 (preview) to test your
business-critical apps if you
aka.ms/testbase Access is free during preview, business model will be announced later
Windows 11 better together with virtual desktop, and virtualized apps
A fully integrated Windows
apps
peer.
• Understand the hardware requirements & update your hardware refresh policy today
• Get comfortable running Windows 10 & 11
• Transform to cloud-based management
• Make it a partnership
• Set user expectations & prep your support org
Windows 365 Welcome to your Cloud PC
Welcome to your
hybrid workforce
Your content
protection via data centralization and a
reduced threat surface.
personal devices.
BYOPC programs
support specialized workloads like
most challenging circumstances.
Cloud VDI – Azure Virtual Desktop Optimized for flexibility
Windows 10 or Windows 11
personalized desktop
multi-session desktops
One-stop administration in Microsoft Endpoint
Manager (Enterprise edition) Full control over configuration and management
Direct self-service model (Business edition) Citrix and VMware support
Predictable per user pricing Flexible consumption-based pricing
Selecting the right solution(s)
available across devices
• Predictable per user, per month pricing
• Easily scalable compute and storage
• No VDI experience or skills required
Azure Virtual Desktop
• Flexibility and control
• Multi-session Windows VMs
• Remote app streaming
Azure Virtual Desktop with
Citrix and VMWare VDI
architecture with a single control pane
Summary
Enterprise subscriptions
year supported for 36
Roadmap to modernizing endpoints
Teams
Surface / Secured Core PCs
HoloLens, Surface Hub & Specialty
M365 Apps MEC
Secure Boot and BitLocker
Windows Hello for Business
Microsoft Defender for Endpoint
Windows 365
Security monitoring
remote/hybrid workforces.
frontline workers.
endpoint estate.
Security Blog aka.ms/Windows/blog010
Windows 11 Servicing Blog aka.ms/Windows/blog003
Windows Insider Blog aka.ms/Windows/blog004
Office Insider Blog aka.ms/Windows/blog005
Docs.microsoft.com
Windows 365 Enterprise aka.ms/Windows365/docs001
Windows 365 Announcement aka.ms/Windows365/web002
Windows 11 Security aka.ms/Windows/web007
Questions?
Microsoft Security
We embrace our responsibility to create a safer world that enables organizations to digitally transform.
Thank you
What’s new on Windows 11 Security & Management Mario De Ridder Cedric Depaepe
Housekeeping Rules
Please mute yourself if there is background noise.
Use the chat window during the presentation.
During Q&A, you can use your mic or chat.
This is a trusted space.
Slides will be provided after event.
• Introducing Windows 11
• Windows 365
Maintain productivity at pre-
pandemic levels while working
help employees and teams
efficiently communicate
and collaborate.
that are so important for a
hybrid workstyle.
of Windows 10. It is fresh,
but also consistent for your
employees, and IT.
management needed for
deployed alongside
protect data and secure
Deliver a consistent workplace experience anywhere.
To support a hybrid workforce, organizations need the ability to seamlessly manage devices, identities, apps, and information through
the cloud.
Meet the increased need for agility and resilience without sacrificing security
Why we need a modern security solution for the hybrid workplace
Protect the business.
The expansion of access and ability to work anywhere has also introduced new threats and risks. From the chip to the cloud,
hardware and software must work together to stop threats.
Enable a Zero Trust security model.
Organizations of all sizes need comprehensive control over access to information, applications, and network resources from anywhere
without compromising the user experience.
Empower IT Administrators.
Help IT Administrators easily protect, enable and enforce access seamlessly, while allowing for customization to meet specific user
and policy requirements for access, privacy, compliance and more.
Unlock potential with the right devices.
Whatever their role or location, people need the right device to do their job well—whether working in an office, at home, or serving
customers in frontline environments.
Increased protection with
built-in security, hardware-
based isolation, and
*Requires new PC with Pluton processor, expected availability Spring 2022
Identity
Protection
Operating
System
Protection
Hardware
• Security by design with Microsoft Azure Attestation native
• Designed to address the advanced threats in the world of hybrid work
• TPM 2.0 is the foundation to secure Windows Hello & BitLocker
• Hardware-based isolation
• Eliminate passwords
• Pluton takes things to the next level in the future
Built-in security
Zero trust
200M+
well as AMD USB secure
camera.
Enterprise-grade
hybrid or on-premises
to sync keys from AAD to AD
were removed.
Passwordless with
Microsoft Authenticator
Choose from additional form factors to meet business needs
USB/NFC Key USB Biometric Key NFC & BLE
Windows 11 What’s new on Management?
Consistent in control
Manager.
Company PCs for remote workers Autopilot, the hybrid work deployment process
Ship an employee a
corporate policy and simply
provisioned by the users
when they receive it.
More Mobile Device Management than ever
Group Policy settings parity in Mobile Device Management
Cloud and cloud attached
in blocking migrations to
go through the import
process of your Group
reflect the newly available
Consistent management and servicing
Upgrade to Windows 11 using tools and processes that you already have in place today for Windows 10
Upgrade channel Management tool, analytics Upgrade support by general availability
On-premises
Microsoft Endpoint Configuration Manager (SCCM)
Endpoint Analytics
The cloud
Update Compliance, Endpoint Analytics
*Dependent on third-party partner support.
Cloud & modern managed scenarios
Policies
• Enable Direct Connectivity to the Microsoft Global
• Network & CDNs
Device management
LOB apps
Azure AD
Zero Trust
Proactively identify update
(Fall) of servicing
Lifecycle
Catalog MSU.
works in Microsoft Update via
common, Unified Update Platform
client through granular selection of
required update payloads for customers
who keep their devices up to date month
over month.
Reduced download
more efficient packaging and removal
of reverse differentials.
Reduced quality update
Treat the update just as another Windows 10 release update
Go cloud & modern managed with a single pane of glass
Built for hybrid work
What doesn’t change
• Servicing framework & process
• Windows 10 is the core of the OS
• Windows 10 EOS date
• App compat promise
• Hands-off hardware provisioning
structure
• Lifecycle is 36 months for Commercial editions
• UX and new user experience with integration
• Hardware requirements to enable the complete
experience
Device
Management
Microsoft
Windows 10 apps work on Windows 11
Windows 10 apps work on Windows 11, backed by App Assure
App Assure, a service that helps you with remediation of
application issues if needed.
App Assure requires 150 or more licenses of Microsoft 365, Office 365, Enterprise Mobility & Security, or Windows
99.7% Application
Use Test Base for Microsoft
365 (preview) to test your
business-critical apps if you
aka.ms/testbase Access is free during preview, business model will be announced later
Windows 11 better together with virtual desktop, and virtualized apps
A fully integrated Windows
apps
peer.
• Understand the hardware requirements & update your hardware refresh policy today
• Get comfortable running Windows 10 & 11
• Transform to cloud-based management
• Make it a partnership
• Set user expectations & prep your support org
Windows 365 Welcome to your Cloud PC
Welcome to your
hybrid workforce
Your content
protection via data centralization and a
reduced threat surface.
personal devices.
BYOPC programs
support specialized workloads like
most challenging circumstances.
Cloud VDI – Azure Virtual Desktop Optimized for flexibility
Windows 10 or Windows 11
personalized desktop
multi-session desktops
One-stop administration in Microsoft Endpoint
Manager (Enterprise edition) Full control over configuration and management
Direct self-service model (Business edition) Citrix and VMware support
Predictable per user pricing Flexible consumption-based pricing
Selecting the right solution(s)
available across devices
• Predictable per user, per month pricing
• Easily scalable compute and storage
• No VDI experience or skills required
Azure Virtual Desktop
• Flexibility and control
• Multi-session Windows VMs
• Remote app streaming
Azure Virtual Desktop with
Citrix and VMWare VDI
architecture with a single control pane
Summary
Enterprise subscriptions
year supported for 36
Roadmap to modernizing endpoints
Teams
Surface / Secured Core PCs
HoloLens, Surface Hub & Specialty
M365 Apps MEC
Secure Boot and BitLocker
Windows Hello for Business
Microsoft Defender for Endpoint
Windows 365
Security monitoring
remote/hybrid workforces.
frontline workers.
endpoint estate.
Security Blog aka.ms/Windows/blog010
Windows 11 Servicing Blog aka.ms/Windows/blog003
Windows Insider Blog aka.ms/Windows/blog004
Office Insider Blog aka.ms/Windows/blog005
Docs.microsoft.com
Windows 365 Enterprise aka.ms/Windows365/docs001
Windows 365 Announcement aka.ms/Windows365/web002
Windows 11 Security aka.ms/Windows/web007
Questions?
Microsoft Security
We embrace our responsibility to create a safer world that enables organizations to digitally transform.
Thank you