Roger Halbheer on Security
We just launched the new Microsoft 365 security center and Microsoft 365 compliance center. This is an exciting first step in the right direct direction.
Read the corresponding clop post: Introducing the new Microsoft 365 security center and Microsoft 365 compliance center
We recently published an interesting paper to address a concern we hear often – Compliance with regards to data residency and security. The paper covers this: This paper provides guidance about the security, data residency, data flows, and compliance aspects of Azure. It is designed to help you ensure that your data on Microsoft Azure…
I recently complained about the Swiss government and our inability in Switzerland to really drive Cybersecurity forward (Federal Council not deciding again – Switzerland falling behind on Cybersecurity). It was one of the most-read blog posts I wrote during the last few years… In one of the discussions on LinkedIn I talked about one of…
We are introducing two new Microsoft 365 security and compliance offerings: Identity & Threat Protection—This new package brings together security value across Office 365, Windows 10, and EMS in a single offering. It includes best of breed for advanced threat protection services including Microsoft Threat Protection (Azure Advanced Threat Protection (ATP), Windows Defender ATP, and…
To be clear upfront: I think that our political system is amongst the best across the Globe. It is one of the purest systems to reflect a democratic process in a direct democracy. This is shown in special initiatives like the “Hornkuh Initiative”, where on farmer from the Swiss mountains found enough support for his…
We had a very interesting event this week with PwC in our new pop-up store at the Paradeplatz in Zurich. PwC showed from their perspective what it takes to move to the cloud and how the auditor looks at the compliance challenges in the cloud. If is good to see as well how the industry…
This is a great partnership with UBS and we are looking forward (I am looking forward) to continue the work with UBS:
A problem still to be solved: As soon as companies enter the B2C market, they need a way to verify the identity of the customer. Depending on the business you are in, this is more or less complex. Therefore, I think the announcement that Mastercard and Microsoft join forces to address this challenge: Mastercard, Microsoft…
There is a lot of discussion currently going on in Switzerland about Swiss clouds. Local providers are trying to secure their market share through leveraging “Swissness” and local data storage. While this seems to be interesting in the first moment, it starts to fall apart as soon as cost gets involved or the innovation power…
The feature for Live has been there for a while but certain announcements on out side now really caught track. I use my Microsoft Account without passwords since quite a while and it is really cool. The same comes for the business with FIDO 2.0. So you should see the news: CNBC: Microsoft announces it…
I think we are all in agreement that the internet as it is today is a great achievement but there needs to be a certain level of agreement between the different players what should be done and what not. On November 12th, Microsoft and other technology providers like Google, Facebook, Intel, Ericsson, Samsung, Accenture, Fujitsu,…
Satya was visiting Switzerland this week. During his trip he obviously met with our customers and with the Microsoft Switzerland team but he took the time to have a chat at the ETH, the Federal Institute of Technology as well (which is my Alma Mater and one of the best universities globally). In my opinion…
This is an interesting view on what could happen after the EU ruling against Google. Definitely worth reading:
How Amazon and Microsoft will oust Google to become our next Android overlords
If you have not read, yet about Confidential Computing, you definitely should. This can be a real game-changer in how to deal with sensitive data in the cloud.
Mark Russinovich held a Microsoft Mechanics session at Ignite on that – 15 minutes well spent. Watch yourself:
We had a meeting today between a customer and our CISO, Bret Arsenault. As always Bret was giving a lot of insights into his world and he was talking about our cloud transformation. Obviously, there was a time, where our migration stalled, and they were trying to figure out, why. He then learned from somebody,…
Interesting how the title turned out: Microsoft welcomes scrutiny of tech industry that has roiled its competition this year, says CEO Nadella. Easy for him to say. Kind of true as Microsoft was not in the focus of all the troubles this year but on the other hand, one could say that we learned our…
Artificial Intelligence and Machine Learning hold a lot of promises in security. They will help us address the problems around false positives and detecting anomalies. There is a lot of hope and a lot of promises by the vendors in that space. Microsoft invests in this technology as well and I would say we are…
Supply chain security is a very complex and difficult topic. The industry started to focus more and more on it and different approaches start to materialize. Mainly, security becomes part of the contract negotiation and part of the responsibilities of the supplier. In some cases, certifications like ISO 27001 are requested and the certificate must…
I was just reading an article called Does Facebook even need a CSO? – initially my reaction was (as most of yours I guess): “What a stupid question, for sure we need a CSO”. However, is this true? Do we really need a CSO? Are there other models which would work as well? What is…
When it comes to encryption and data we solved different problems. Since the invention of algorithms like DES, 3DESand/or AES symmetric encryption is something we understand and can solve. With RSA and Diffie-Helman key management and key exchange can be implemented with reasonable management overhead. This led to solid and trusted implementations of encryption at…
