Blog (Insight Voices) How to secure your connected workplace with Microsoft Surface
By Insight Blog / 26 Sep 2022
By Insight Blog / 26 Sep 2022
With a global average cost of $3.86 million after a data breach, companies are finally beginning to recognise the importance of cybersecurity. But even now, security is often seen as the responsibility of the IT department, when in fact it affects the entire organisation. From the people who work with the company’s valuable data to the board of directors who decide how budgets are spent. Security is more than installing a firewall; it can have an impact on the company’s image and overall perception. Therefore, any conversation about security should involve not only the CIO, but also the CEO and CFO.
The challenges are only increasing with our newly connected workforce and hybrid way of working. Fortunately, good security does not have to be that expensive. Ultimately, most malware enters a company’s system through endpoints. Laptops used by employees are especially vulnerable. So focusing on these devices would be an important first step toward a secure business. And did you know that some devices are inherently more secure than other alternatives on the market?
The need for device protection is clear, and no company considers security more important than Microsoft. For most manufacturers security is just a layer added on top of their devices. Microsoft, however, has built this protection into its Surface laptops. Every layer, from chip to cloud, is developed and maintained by Microsoft, giving users ultimate control, proactive protection and complete peace of mind to get their work done wherever and however they want.
This layered security approach puts several protective shells around the high-level Surface device: from the hardware and firmware to the operating system and cloud-based device management that helps to prevent, detect and respond to attacks. Two elements make Surface devices really stand out. First, Surface Root of Trust – the hardware root of trust is the foundation on which all secure operations of a computing system depend – checks signatures and measurements to ensure that each state is secure and authentic before allowing the next phase of boot to proceed.
Second, Microsoft builds its own firmware from the ground up rather than relying on third party source code. This allows them to continuously provide updates down to the firmware level to be prepared for the latest threats. Additionally, Windows 10 devices are protected from running any unverified code, while code running within the trusted computing base runs with integrity and is not subject to exploits and attacks. Windows Hello protects identities from external threats and Credential Guard ensures that identity and domain credentials are isolated and protected in a secure environment.
Having the right devices and installing solutions is one thing, but many companies have not thought about the optimal security configurations of tools such as Microsoft Teams and other Office 365 applications. To protect themselves in a rapidly changing threat landscape, organisations need to adopt a Zero Trust approach. This comes down to the principle of “never trust, always verify”. Zero Trust is the right strategy for the work from anywhere era. It also enables digital transformation with intelligent security for complex cloud environments, while mitigating and minimising risks of lateral movement.
No security strategy can succeed without training to increase employee awareness. However, a single training session is not enough. As regulations around privacy and compliance are constantly evolving, security must be an ongoing and never-ending process. Therefore, every organisation must have a trusted partner who can assess its cybersecurity posture and explain what is needed to be better prepared. Especially when deploying new devices, such as Microsoft Surface, you have a great opportunity to take a look at your security measures and configurations.
Insight helps organisations with services such as Microsoft 365 Security Assessment. Although this is a standard Microsoft service, Insight distinguishes itself as one of Microsoft’s leading global partners, with access to Microsoft Certified Professionals who have experience with setting up modern workplace applications to increase productivity, mobility and collaboration in a secure environment.
Want to know more? Here you find all information about our Microsoft 365 Security Assessment.