Bill Baer /bɛːr/

There’s a new culture of work; one that is increasingly diverse, geographically distributed, and mobile. Connectivity is ubiquitous and the ability to work remotely has become an ingrained part of the work practice. People have come to expect to be able to access email and documents from anywhere on any device - and for that experience to be seamless, among these trends includes the increasing use of shared systems, such as kiosks to access and work with corporate data.

Last week we announced Office 365 Data Loss Prevention Block Access (https://techcommunity.microsoft.com/t5/Security-Privacy-and-Compliance/Policy-Tips-in-SharePoint-Online-and-OneDrive-for-Business-at/ba-p/116158) with SharePoint Online and OneDrive for Business. Office 365 Data Loss Prevention Block Access prevents the potential for overexposure of sensitive information by allowing a Tenant administrator to configure Data Loss Prevention Policies limiting how and with whom sensitive information can be shared. For example, if a document is determined to contain sensitive information, for example U.S. Financial Data, a DLP policy can prevent that information from being shared externally or with guests while providing real-time policy information to the user attempting to initiate the share.

Balancing security and usability are core to ensuring people can collaborate effectively without interrupting the necessary flow of information across organizations. With SharePoint Online we’ve been at work developing security and sharing controls that are scoped at the site collection level. This allows Tenant administrators to configure more restrictive controls at the site collection level, than those that are configured at the Tenant level providing a balance between the need to protect corporate information and the requirement to collaborate effectively across and outside of the corporate boundary.

There are no limits to what people can achieve when technology reflects the diversity of everyone who uses it. We believe in what people make possible - at Microsoft, our mission is to empower every person and every organization on the planet to achieve more. Across SharePoint and OneDrive our most important work is making our technology accessible to people of all abilities. Over the past several months we’ve been working towards this vision with improvements across how and where people collaborate ensuring our experiences both create and support opportunities for everyone.

In March 2017 we introduced device-based policies for SharePoint and OneDrive, that enable administrators to configure Tenant-level policies. Device-based policies for SharePoint and OneDrive help administrators ensure corporate data is not leaked onto unmanaged devices such as non-domain joined or non-compliant devices by limiting access to the content to the browser, preventing files from being taken offline or synchronized with OneDrive. On September 1st, 2017 we’ve continued to evolve our conditional access investments to address the ever-changing security landscape and business needs by introducing new levels of granularity with conditional access that allow administrators to scope device-based policies at the site collection level.

Governments around the world are strengthening laws and regulations to protect citizens’ data, preserve national security, and protect business interests. Last week at Microsoft Ignite we announced new Multi-Geo Capabilities in Office 365 to help ensure you remain compliant with services to include SharePoint, OneDrive, and Exchange. The new Multi-Geo Capabilities in Microsoft 365 with SharePoint and OneDrive provide global organizations a solution to maximizing the value of Office 365, including SharePoint and OneDrive, while meeting data residency and compliance requirements.

Last week at Microsoft Ignite we shared our investments, our vision, and strategy for addressing today’s most challenging business and technology trends that are ever broadening the threat landscape. From meeting complex corporate and governmental regulatory compliance, to addressing a more mobile and connected workforce, SharePoint and OneDrive and uniquely positioned to address your business needs. Stay ahead of data residency requirements with Multi-Geo capabilities in Microsoft 365 Governments around the world are strengthening laws and regulations to protect citizens’ data, preserve national security, and protect business interests.

When we launched SharePoint Server 2016, we shared the vision for SharePoint Server 2016 as a foundational release, born in the cloud, and built for continuous innovation. Today we’re pleased to announce our continued investments on this journey and commitment, the availability of Feature Pack 2. Through the September 2017 Public Update for SharePoint Server 2016 we’re delivering several new features based on customer feedback and developer needs, highlighting these investments, the SharePoint Framework.

The risks to information exposure have increased in today’s collaboration landscape because users don’t always work on desktop computers. Access controls now need to account for users connecting their mobile devices to non-secure networks or using their own unmanaged devices. These new access controls start with conditional access policies. Conditional access allows you to keep your corporate data safe while providing your users a secure environment in which they can work from any device.

Join myself, Neil Hodgkinson, Spence Harbar, Bob Fox, and other industry experts for a Microsoft Ignite pre-day training on implementing hybrid scenarios with SharePoint and Office 365. Cloud computing has become a popular way to reduce capital and operational expenditures, renew IT innovation, and gain the advantage of more rapid software delivery to meet the needs of business. However, compliance, data sovereignty, sensitivity concerns, or a significant investment in customization may limit your organization’s ability to take advantage of this.