virtual techdaysINDIA │ 9-11 February 2011

Security Discussion: Ask the Experts

M.S.Anand │ MTC Technology Specialist │ Microsoft Corporation

Anirudh Singh Rautela │ Security & Privacy Initiative Lead and Product Manager - Security│ Microsoft Corporation

2

virtual techdaysINDIA │ 9-11 February 2011

Agenda• This is a free flow discussion – No PPT• You can ask your questions around security

using the Q&A tab in the LiveMeeting console

Handy Admin tools & resources

• Threats & Counter measures• Security Risk Management Guide• Fundamental Computer Investigation Guide for

Windows• Microsoft Security Assessment Tool 4.0• MBSA Tool & Scripts• Microsoft Security Compliance Manager• Security Awareness Toolkit• SysInternals Toolkit• Security Literature to read• Misc. Security Tools for Admins

Just Bing it to get it!

TWC

SDL

SystemsManagement

Active Directory Federation

Services (ADFS)

Identity & AccessManagement

Certificate Lifecycle

Management

Information Protection

Encrypting File System (EFS)

BitLocker™

Client and Server OS

Server Applications

Edge

Network Access Protection (NAP)

Client and

Server OS

Server

Applications

EdgeForefront Protection Managem

ent

A well Managed Secure Infrastructure

is the key!Services

Microsoft Security – Defense in Depth

Business Ready SecurityHelp securely enable business by managing risk and empowering people

As businesses look to drive growth, they need to increase collaboration, sharing and access to information but must do so while protecting their assets and infrastructure. Frequently this must be addressed in the context of shrinking budgets and increased regulatory pressure. In response to these business challenges and opportunities, Microsoft is taking a fundamentally different approach to security. We call it business ready security.

http://www.microsoft.com/brs

6

The Convergence of Desktop Security and Management

Desktop management and security have traditionally existed as two separate disciplines. Yet both play a central role in keeping users safe and productive. Management ensures proper system configuration, deploys patches against vulnerabilities, and delivers necessary security updates. Security provides critical threat detection, outbreak response, and system remediation.

Forefront Endpoint Protection 2010 enables businesses to align security and management to improve endpoint protection while greatly reducing operational costs. It builds on System Center Configuration Manager 2007 R2 and R3, allowing customers to use their existing client management infrastructure to deploy and manage endpoint protection. This shared infrastructure helps reduce ownership costs while providing improved visibility and control over endpoint management and security.

http://www.microsoft.com/forefront/endpoint-protection/en/us/product-overview.aspx

7

Safer Internet - http://news.in.msn.com/specials/inet.aspx

Help protect your PC with Microsoft Security EssentialsMicrosoft Security Essentials is a new, free consumer anti-malware solution for your computer. It helps protect against viruses, spyware, and other malicious software. It's available as a no-cost download for Windows XP SP2 and higher, Windows Vista, and Windows 7

• Comprehensive protection—Microsoft Security Essentials helps defend your computer against spyware, viruses, worms, Trojans, and other malicious software.

• Easy to get, easy to use—Because Microsoft Security Essentials is available at no cost, there's no registration process that requires billing or personal information collection. It installs after a quick download and Genuine Windows validation and then stays automatically up-to-date with the latest protection technology and signature updates.

• Quiet Protection—Microsoft Security Essentials doesn't get in your way. It runs quietly in the background and schedules a scan when your computer is most likely idle. You only see alerts when you need to take action.

http://www.microsoft.com/security_essentials/

8

The browser people can trust!You want to browse without interruptions and with the confidence that the experience is reliable, safe and private. Windows® Internet Explorer® 9 includes built-in default settings that can help keep your computer protected from the first time you launch the browser.

With SmartScreen Filter, Download reputation scanning, URL filtering , InPrivate Browsing & Filtering, XSS protection, Domain Highlighting, Tracking Protection, Java Script Sandboxing, etc., to name few, you can ensure you have a Safer Internet Experience.

Read more & Download IE9 at - http://www.beautyoftheweb.in

Safer Internet - http://news.in.msn.com/specials/inet.aspx

9

Keep an eye on your kidsThe kids are online and you’re busy—Family Safety is there to help. Use activity reports to monitor your kids' computer activity. Choose websites, games, and programs they can access. Even set time periods when they can use the computer. So go ahead, be busy. Family Safety can help keep an eye on things

Get Windows Live Family Safety 2011 at http://explore.live.com/windows-live-family-safety?os=other

Safer Internet - http://news.in.msn.com/specials/inet.aspx

10

Stay linked to Security! Microsoft Safety & Security Center http://www.microsoft.com/security/default.aspx

Security TechCenter - http://technet.microsoft.com/en-us/security/default.aspx

Trustworthy Computing Security and Privacy Blogs - http://www.microsoft.com/mscorp/twc/blogs/default.mspx

Microsoft Security Response Center - http://blogs.technet.com/b/msrc/

Microsoft Malware Protection Center - http://blogs.technet.com/b/mmpc/

Security Research & Defense - http://blogs.technet.com/b/srd/

Security Development Lifecycle - http://blogs.msdn.com/sdl/