On the SPOT Podcast – Episode 1

I recently partnered with a co-worker, Jay Leask, to begin a new podcast called On The SPOT – A podcast about working at the SPeed Of Technology

podcast-logo

It’s podcast where we talk with industry influencers about working at the speed of technology. Topics may include information management, data governance, compliance and security, collaboration and productivity, the cloud(s), and much much more!

We’re excited to release our inaugural episode – On The SPOT Podcast with Asif Rehmani, with guest Asif Rehmani, Founder and Chief Executive Officer of VisualSP.  The first of hopefully many of On the SPOT podcasts.  Please check it out and don’t hesitate to let us know what you think!

 

Intro to Office 365 Security & Compliance

Last Saturday, June 17, 2017, I presented an Intro to Office 365 Security & Compliance center at SharePoint Saturday Atlanta.  Which by the way was a really great event with a number of great speakers, MVPs, sponsors and attendees!  I am thankful that they picked me to present and that I got a chance to experience the event and meet a bunch of really nice people!

Here is the deck I presented:

It is really an overview of the Security & Compliance center with a bunch of live demos I did to show each section and a little bit about how they worked.  The demos are not included, but I am currently recording them and will post them shortly in a series of posts on Security & Compliance.

Hope you enjoy the slides!

Craig

SharePoint Saturday Chicago Suburbs

Almost four (4) years ago to the day, on May 20, 2013, me and a group of friend organized SharePoint Saturday Chicago Suburbs.

SPSEvents

Last Saturday, May 19th, we held our 4th event.  We also coupled it with an event we had been doing separately called Cloud Saturday.

CloudSat_logo-300x203

Cloud Saturday was born a spin-off of the original event because Microsoft pulled back on using the name SharePoint, was pushing hard for the Cloud, and Amazon Web Services, Saleforce, Google Cloud, and other technologies were on the rise.

This year, like years past, we had really Great Sponsors and really Great Speakers and feel fortunate to have so many people want to be apart of our event.  The attendees all seemed to have a good day.  This year we cut session times from 1 hour and 15 minutes to 1 hour, so we were able to get out of the event a couple of hours early and many people remarked how they appreciated that.

Getting involved in user groups, speaking at, and hosting events is something that has really helped me with career satisfaction, establish a great network of friends, and made me really appreciate how great the SharePoint\Cloud community really is!

I can’t wait to start planning out the event next year.  We got some great feedback and look to implement a number of things to help make the event even more successful.

Craig

Introduction To Data Loss Prevention in SharePoint 2016

Everywhere your data exists, moves or is shared, you need to protect it. With a Data Loss Prevention (DLP) policy in SharePoint Server 2016, you can identify, monitor, and automatically protect sensitive information across your site collections.  Learn the basics of DLP and how you can start better protecting your data.

What is Data Loss Prevention?

  • Data loss prevention (DLP) is a strategy for making sure that end users do not send sensitive or critical information outside the corporate network.
  • DLP Software products help a network administrator control what data end users can transfer so that users cannot accidentally or maliciously share data that could put the organization at risk.

I recently created a presentation for a Lunch & Learn at my company, AvePoint, and decided to share the slides:

The information comes primarily from Microsoft’s documentation with a couple of slides based off of information from Vlad Catrinescu’s presentation at Ignite 2016.

I am working on adding information on the differences between SharePoint 2016 and Office 365 and will update with the new slides when I complete it.

Hope it you find it informative.

Stopping Mass Downloads in Office 365

Recently Microsoft has been focusing a lot of effort on security and compliance when it comes to information management.  In an effort to make a one-stop portal, they have create the Security & Compliance portal for Office 365.

SecurityCompliance

It can be accessed multiple ways.  It can be accessed through the icon from the Waffle menu in the upper left hand corner as pictured above.  It can all so be accessed through the Admin Center:

AdminCenter.png

Or you can go straight to the URL: https://protection.office.com/ 

From there you can take care of your security needs such as: set alerts, manage permissions, set you data loss prevention policies and many other things.  You can visit https://support.office.com for complete details and I will be following up with for posts and detailing more of its features.  The focus of this post is focusing on one particularly new feature I discovered that is now available, the ability to alert when someone is doing mass downloads and suspend the user.

While a lot of governance and compliance focuses on securing information and limiting access to data, a major problem is when seemingly good or trusted people turn into bad actors and download things that the company wouldn’t want them too, think Snowden and Wikileaks.

To enact this feature, you have to have an Office 365 E5 license because it is an Advanced Security Management feature.  If you have this license, then you can go to the Security & Compliance Center –> Manage advanced alerts and click on the Go to Advanced Security Management button:

AdvancedSecuriytManagement.png

This will take you to the Policies screen:

Policies.pngClick on Create Policy –> Active policy:

CreatePolicyFrom the Policy template choose Mass download by a single user and fill out the form.  An example is if the person downloads 30 items in 5 minutes:

PolicyTemplate_top.pngYou can have the Policy send an alert email to you administrator and Suspend  user until the admin has time to evaluate the situation and decide if the user has a legitimate business reason for downloading so many files.

PolicyTemplate_bottom.png

After you hit create, you will see you Policy appear on the Policies screen:

policy.png

This is a great new feature to help stop the loss of data from you organization and just one of many useful security options that Microsoft has released.  It should be exciting to see future features and enhancements in the area of Security & Compliance.

DevOps in the ‘Burb

Those that know me, know I am always looking to learn new things and meet new people who share my passion for learning and sharing information in the tech world.  In the past I have frequented several user groups, organized a SharePoint group, organized an Azure group.  I co-chair and am organizing my 4th SharePoint Saturday Chicago Suburbs and I co-chair and in the process of organizing my 3rd Cloud Saturday.

One of the biggest trends in the IT world has been the evolution of DevOps.  There are a lot of thoughts around what DevOps is, but I kind of like Amazon’s definition:

DevOps is the combination of cultural philosophies, practices, and tools that increases an organization’s ability to deliver applications and services at high velocity: evolving and improving products at a faster pace than organizations using traditional software development and infrastructure management processes.

In an attempt to broaden my knowledge on DevOps and help to develop a DevOps community in the Chicago area, I have co-founded the “DevOps in the Burbs” user goup.  We meet the first Thursday of the month and so far the first 2 meetings have been really enjoyable with a lot of good conversations.  The group is founded on that thougth that:

Delivering high-quality, modern applications requires DevOps tools and processes. This users group is for people who want to learn and discuss the advances being made to the application life-cycle management offerings that enable development teams to be more productive. We will be talking about AWS, Azure, Docker, Chef, and all the other great platforms, tools, and approaches driving the DevOps movement.

Our next meeting is February 2nd, 2017, if you are in the Naperville area, stop by and see us.

Thanks,

Craig