Abstract image of a woman sitting on books and studying on a laptop

SharePoint Governance: Impacts of Moving to the Cloud

Download as PPTX, PDF
A
AntonioMaio2

The document discusses the transition to cloud-based collaboration platforms like Office 365 and SharePoint Online, highlighting the benefits of flexibility, cost efficiency, and enhanced user accessibility. It addresses important considerations for SharePoint governance, including security, data sovereignty, and regulatory compliance, particularly for industries with strict regulations. The need for proper planning and management strategies when moving to the cloud is emphasized, along with specific governance questions organizations should consider.

1 of 35
Download to read offline
SharePoint Governance: Impacts of Moving to the Cloud What we’ll cover today: • Cloud Strategy: Office 365 & SharePoint Online • Important Considerations for Moving to the Cloud • Investments already made in SharePoint • Impacts to Data Sovereignty and Regulatory Compliance
About Christian Buckley, Director of Product Evangelism at Axceler • Microsoft MVP for SharePoint Server • Prior to Axceler, worked for Microsoft, part of the Microsoft Managed Services team (now Office365-Dedicated) and worked as a consultant in the areas of software, supply chain, grid technology, and collaboration • Co-founded and sold a software company to Rational Software. At E2open, helped design, build, and deploy a SharePoint-like collaboration platform (Collaboration Manager), onboarding numerous high-tech manufacturing companies, including Hitachi, Matsushita, Cisco, and Seagate • Co-authored ‘Microsoft SharePoint 2010: Creating and Implementing Real-World Projects’ link (MS Press) and 3 books on software configuration management. Twitter: @buckleyplanet Blog: buckleyplanet.com Email: cbuck@axceler.com
Axceler Overview • Improving Collaboration since 2007 • Mission: To enable enterprises to simplify, optimize, and secure their collaborative platforms • Delivered award-winning administration and migration software since 1994, for SharePoint since 2007 • Over 3,000 global customers • Dramatically improve the management of SharePoint • Innovative products that improve security, scalability, reliability, “deployability” • Making IT more effective and efficient and lower the total cost of ownership • Focus on solving specific SharePoint problems (Administration & Migration) • Coach enterprises on SharePoint best practices • Give administrators the most innovative tools available • Anticipate customers’ needs • Deliver best of breed offerings • Stay in lock step with SharePoint development and market trends
About Antonio Maio, Senior Product Manager at TITUS • Microsoft MVP for SharePoint Server • Senior Product Manager bringing over 20 years of experience in both software development and product management to TITUS. • Antonio's background includes formal education and experience in cryptography, public key infrastructure and information security, and he previously held positions at Corel, Entrust, and several Microsoft partner organizations. His broad knowledge and experience with Microsoft SharePoint extends over the last 8 years and centers particularly around solving security challenges while at the same time helping customers share the right information with the right people. Twitter: @antoniomaio2 Blog: trustsharepoint.com Email: antonio.maio@titus.com
TITUS Overview • Data Security & Classification Market Leader • Over 500 Enterprise Customers • Over 2 Million Users Deployed • Customers across Government, Military and Commercial Sectors • Enhance SharePoint Security • Ensure the right people access the right information in SharePoint • Email and Document Marking • Ensure every email is classified and protectively marked before it is sent • Ensure every document is classified and protectively marked • Data Loss Prevention • Prevent inadvertent disclosure of sensitive information • User-driven DLP strategy that starts with the user
Our goal today: To help you fill in some of the pieces of your planning strategy for the cloud
According to 43% Growth of enterprise spending on cloud in 2012 $6.1 billion Total spend last year 48% Expected growth of enterprise spending on cloud in 2013 $9 billion Spend expected this year
What is driving cloud adoption? Data anytime, anywhere. It’s all about self-service. Bring your own device. Everything is social. Built for the business user, not IT.
Why the cloud is becoming important to SharePoint customers As SharePoint continues to expand its footprint, companies are demanding flexible architectures to help them better meet internal and external collaboration needs • Reducing costs • Reducing headcount • Doing more with less • Focusing less on traditional IT activities and more on activities that will help drive the business forward
Microsoft in the Cloud • Office 365 and SharePoint Online • Microsoft’s solution for Cloud based collaboration • Includes SharePoint, Yammer, Exchange, Lync, Office Suite, etc. • Businesses collaborate from virtually anywhere • World-class hosting and reliability • Avoid overhead in managing your own infrastructure
Benefits Office 365 & SharePoint Online • Low barrier & cost to entry • Pay per use service plans • Costs shift from CAPEX to OPEX • Assurance on scale and high availability • Professionally managed data center, 24x7 support • Latest and Greatest - software is always up to date
Contrast Traditional SharePoint On- Premise • Manage own infrastructure/servers • Some part of the business owns or focusses on IT • Upgrades can be time consuming and costly • Clear delineation between data ownership & management • Clear control over business information
Considerations for SharePoint Online Customizations • Microsoft has introduced the “App Model” • New to Microsoft Office 2013 and SharePoint 2013 • Works On-Premise and in Office 365 SharePoint Online
Considerations for SharePoint Online Customizations • Benefits • Enhance SharePoint & Office to solve specific business problems • Flexible deployment models • Restrict access to server resources to ensure high-availability • Replaces sandbox solutions • Microsoft App Marketplace
Risks with the cloud model
Hang On! Let’s talk about some real world scenarios
What about my existing investment in SharePoint? • Most SharePoint deployments have included customizations to meet critical business needs • User Management & Administration • Security and Compliance • Auditing, Reporting, Alerting • User Adoption, Records • Branding, etc… • Consider the business problems you’ve already invested in solving
Maturity of the Office365 platform
Managing on prem, the cloud, and hybrid: Permissions Management • Perform regular security checks across your farm, down to the document level • Proactively review, delete, and reassign user permissions as needed • Clean up users who are no longer in Active Directory but are in SharePoint • Review SharePoint groups • Have a process to backup and restore permissions • Document site permissions (roles) so that its easier to duplicate them for new employees • Monitor SharePoint licensing
Managing on prem, the cloud, and hybrid: Content & Storage • Monitor and track the growth of sites for better planning, especially with migrations • Analyze web part usage to determine which sites are using which web parts • Understand and manage SharePoint features • Ensure consistent branding and behavior: site themes, quotas, regional settings, etc.
Managing on prem, the cloud, and hybrid: Usage and Activity trends • Analyze activity down to the site, page, and document level • Identify who is accessing which documents, including details on that activity (i.e. checking in a document, editing a document, or just viewing a document’s properties) • Isolate sites that are no longer needed and delete them • Compare activity from the past to help anticipate the future • Find sites with the most or least activity
Managing on prem, the cloud, and hybrid: Reorganizing your farm • Proactively manage architecture of your site collections, sites, lists, libraries, folders and items within your farm or across farms • Have a plan for moving content and structure from test environment to production environment • Understand impacts due to architectural changes or business changes
Consider the Business Problem: Security and Compliance • Impacts to Governments, Intelligence Community, Regulated industries • SharePoint has great built in security and compliance capabilities • At scale, management of security can be challenging • Specific industries have strict regulations on users accessing certain types of information
Consider the Business Problem: Security and Compliance • 3rd SharePoint applications to automate & enhance security * AIIM report: Extending SharePoint Enterprise Security
Data Sovereignty • Where data lives matters! • Once information is sent across borders, it’s difficult, if not impossible, to control • Impacts to government and regulated industries • Governments need to ask “Where is my citizens’ data?” • What are the impacts on citizen data (PII, PHI)? • Do I have complete control over my data? • How do we solve this issue?
Regulatory Compliance • Industries need to comply with regulations – ITAR, HIPAA, ISO 27001, PCI DSS, PII, etc… • ITAR regulations - restricted access control on controlled information based on user attributes • HIPAA regulations address security and privacy of health data • ISO27001 regulations are formal ISO specification to bring information security under explicit management control
Regulatory Compliance: Consider ITAR • ITAR – International Trade in Arms Regulations • Strict obligations dealing with international trade in weaponry • Which users can access specific controlled data, the citizenship of those users, the physical location of those users, etc. • Office 365 is making good progress • FISMA awarded, Certified under EU Safe Harbor, EU Model Clauses • Data Processing Agreement (DPA) for customer data privacy • FERPA, HIPAA BAA, HITEC requirements supported • ITAR service plan available (variation of O365 Dedicated Plans) Devil is in the details… Do the certifications go far enough to meet your business needs? Will the way they’re enforced fit with your organization?
Understand the risks and develop a plan
Self Quiz As you prepare to move key workloads to the cloud, here are some governance questions to ask yourself: • What happens to your existing reporting and metrics? Do the same KPIs apply to your new cloud components, or do they need to be reevaluated? • Are there any changes to your ability to manage permissions across your on-premises and cloud components? Are the methods different?
Self Quiz • Do your existing policies remain in effect, or do you need to adjust for two models? • Can you maintain visibility into your information architecture and the Managed Metadata in SharePoint across all farms, or granularly within individual sites? • Are you able to track storage usage across all sites and site collections?
Self Quiz • What happens to your auditing and compliance monitoring capability? Can you still see what is being accessed, and by whom? • With your new social capabilities, how much visibility do you have into how users are interacting, where content is being shared, and how well collaboration is being achieved?
Self Quiz • If moving content, sites and users between platforms, how much visibility will you have around storage, content database reports, inactive users, administrative cleanup of orphaned users? • Are you able to setup management policies and procedures that span the various systems? Are you able to organize and automate complex preventive and responsive actions?
http://tinyurl.com/SPgmb http://tinyurl.com/d62j3nl http://tinyurl.com/SPga4hd
Thank you! cbuck@axceler.com antonio.maio@titus.com @buckleyplanet @antoniomaio2 www.Axceler.com www.TITUS.com presentations http://www.slideshare.net/AntonioMaio2/ blog http://www.trustsharepoint.com book http://www.titus.com/blog governance4hybrid

More Related Content

PPTX
Security, Administration & Governance for SharePoint On-Prem, Online, & Every...
Christian Buckley
 
PPTX
SharePoint Governance: Impacts of Moving to the Cloud
Christian Buckley
 
PPTX
Beyond the hype: Management and Governance for Office 365
Roberto Vazquez Delgado
 
PDF
Managing Innovation Using Content Management and Workflow
Simon Rawson
 
PPTX
Process-Centric Governance and Information Architecture
Simon Rawson
 
PPTX
The art of information architecture in Office 365
Simon Rawson
 
PPTX
SharePoint User Experience Best Practices
Perficient, Inc.
 
PPTX
Laserfiche Empower 2017 information managementaas
Christopher Wynder
 
Security, Administration & Governance for SharePoint On-Prem, Online, & Every...
Christian Buckley
 
SharePoint Governance: Impacts of Moving to the Cloud
Christian Buckley
 
Beyond the hype: Management and Governance for Office 365
Roberto Vazquez Delgado
 
Managing Innovation Using Content Management and Workflow
Simon Rawson
 
Process-Centric Governance and Information Architecture
Simon Rawson
 
The art of information architecture in Office 365
Simon Rawson
 
SharePoint User Experience Best Practices
Perficient, Inc.
 
Laserfiche Empower 2017 information managementaas
Christopher Wynder
 

What's hot(20)

PPTX
Understanding Identity Management with Office 365
Perficient, Inc.
 
PPTX
Office 365 Integration Options - SharePoint Fest 2012
Perficient, Inc.
 
PPTX
Webinar: Best Strategies to Get the Most Out of Office 365
Alexandra Sasha Tchulkova
 
PDF
Coexist or Integrate? Manage Unstructured Content from Diverse Repositories a...
Concept Searching, Inc
 
PPTX
Cross Process Governance: How to Balance Agility & Compliance
Jason Bloomberg
 
PPTX
SharePoint: Internet, Intranet, Extranet - Bringing Organizations Together
Perficient, Inc.
 
PPTX
M365 edrm information management strategy
Simon Rawson
 
PDF
Best Practices for a Successful SharePoint Migration or Upgrade to the Cloud
Perficient, Inc.
 
PDF
The future of managed meta data
James Milne
 
PPTX
Windows Azure for IT Pros
Perficient, Inc.
 
PDF
Intranet content management (webinar)
Prescient Digital Media
 
PPTX
Community IT Innovators Technology Trends Round Table 2019
Community IT Innovators
 
PDF
SharePoint 2013 User Interface and Design Improvements - Webinar from Atidan
David J Rosenthal
 
PPTX
Office 365: Is Governance Affected and Where Do We Start?
Stacy Deere
 
PPTX
Process mapping for Information Management professionals
Simon Rawson
 
PDF
Tech strategies keynote final for dc
rickschultz
 
PDF
The Future of Business Process With Nintex
David J Rosenthal
 
PDF
Office 365 Proposal Bangladesh - Biman
MJ Ferdous
 
PPTX
Bi governance v moulakakis
Vassilios Moulakakis
 
PDF
Nuts and Bolts of Building Compliance Process with Nintex and SharePoint 2013
Netwoven Inc.
 
Understanding Identity Management with Office 365
Perficient, Inc.
 
Office 365 Integration Options - SharePoint Fest 2012
Perficient, Inc.
 
Webinar: Best Strategies to Get the Most Out of Office 365
Alexandra Sasha Tchulkova
 
Coexist or Integrate? Manage Unstructured Content from Diverse Repositories a...
Concept Searching, Inc
 
Cross Process Governance: How to Balance Agility & Compliance
Jason Bloomberg
 
SharePoint: Internet, Intranet, Extranet - Bringing Organizations Together
Perficient, Inc.
 
M365 edrm information management strategy
Simon Rawson
 
Best Practices for a Successful SharePoint Migration or Upgrade to the Cloud
Perficient, Inc.
 
The future of managed meta data
James Milne
 
Windows Azure for IT Pros
Perficient, Inc.
 
Intranet content management (webinar)
Prescient Digital Media
 
Community IT Innovators Technology Trends Round Table 2019
Community IT Innovators
 
SharePoint 2013 User Interface and Design Improvements - Webinar from Atidan
David J Rosenthal
 
Office 365: Is Governance Affected and Where Do We Start?
Stacy Deere
 
Process mapping for Information Management professionals
Simon Rawson
 
Tech strategies keynote final for dc
rickschultz
 
The Future of Business Process With Nintex
David J Rosenthal
 
Office 365 Proposal Bangladesh - Biman
MJ Ferdous
 
Bi governance v moulakakis
Vassilios Moulakakis
 
Nuts and Bolts of Building Compliance Process with Nintex and SharePoint 2013
Netwoven Inc.
 

Viewers also liked(20)

PDF
Akateeminen yrittäjyys
TimoAro
 
PPTX
Brand You
Enboarder
 
DOC
Bai bao cao
hoatuyettrangkaka
 
PPTX
Monmouthshire community councils consultation event 250413
CommunityMC2. Community Interest Company
 
DOCX
Blogg
patylinda141189
 
PDF
Nurmijärvi ilmiöstä Helsinki ilmiöön!
TimoAro
 
PDF
Muuttoliike ja sisäinen turvallisuus
TimoAro
 
PPTX
Koprince sdvosb joint venturing & teaming presentation - el paso august 2012
stevenkoprince
 
PDF
Portofolio 1
Bery Angkasa
 
PDF
Baumolin tauti hyvinvointipalveluiden haasteena
TimoAro
 
PDF
6 4 cav 3rd quarter fy12 newsletter
Laura Anderson
 
PDF
L'App store per applicazioni Enterprise: La mobilità porta a porta
Microfocusitalia
 
PDF
357 2 q12_arezzo_presentation
Arezzori
 
PPTX
Первые деньги на фрилансе. 6 шагов к свободе
Руслан Раянов
 
PDF
Institutional presentation 1_q13
Arezzori
 
PPT
Introduction to Computer
Pramod Ithape
 
PPT
talk at Russian Teachers' Group Meeting in London 15th March 2014
Ignaty Dyakov
 
PPS
Thirst for water
Khalid Barry
 
PDF
Journey from Istanbul to Jerusalem | volunteering&interning
Ondřej Janků
 
PDF
2 BHK and 3 BHK Flats in Market Yard Pune - Gagan Developers (Signet)
gagandevelopers
 
Akateeminen yrittäjyys
TimoAro
 
Brand You
Enboarder
 
Bai bao cao
hoatuyettrangkaka
 
Monmouthshire community councils consultation event 250413
CommunityMC2. Community Interest Company
 
Blogg
patylinda141189
 
Nurmijärvi ilmiöstä Helsinki ilmiöön!
TimoAro
 
Muuttoliike ja sisäinen turvallisuus
TimoAro
 
Koprince sdvosb joint venturing & teaming presentation - el paso august 2012
stevenkoprince
 
Portofolio 1
Bery Angkasa
 
Baumolin tauti hyvinvointipalveluiden haasteena
TimoAro
 
6 4 cav 3rd quarter fy12 newsletter
Laura Anderson
 
L'App store per applicazioni Enterprise: La mobilità porta a porta
Microfocusitalia
 
357 2 q12_arezzo_presentation
Arezzori
 
Первые деньги на фрилансе. 6 шагов к свободе
Руслан Раянов
 
Institutional presentation 1_q13
Arezzori
 
Introduction to Computer
Pramod Ithape
 
talk at Russian Teachers' Group Meeting in London 15th March 2014
Ignaty Dyakov
 
Thirst for water
Khalid Barry
 
Journey from Istanbul to Jerusalem | volunteering&interning
Ondřej Janků
 
2 BHK and 3 BHK Flats in Market Yard Pune - Gagan Developers (Signet)
gagandevelopers
 

Similar to SharePoint Governance: Impacts of Moving to the Cloud(20)

PPTX
SharePoint 2013 Migration - Your 5 Rules for Success
Christian Buckley
 
PPTX
SharePoint Online vs. On-Premise
Evan Hodges
 
PDF
Why Metadata Matters in SharePoint Search and Information Governance Webinar
Concept Searching, Inc
 
PPTX
SharePoint for Government
C/D/H Technology Consultants
 
PPTX
Measuring SharePoint -- Webtrends Engage 2013
Christian Buckley
 
PDF
Engage 2013 - Measuring SharePoint
Webtrends
 
PDF
Enough Talk – Solving GDPR Problems Through Metadata-Driven Compliance Webinar
Concept Searching, Inc
 
PDF
What You Need to Know Before Upgrading to SharePoint 2013
Perficient, Inc.
 
PDF
Taming the West: ECM and RM in SharePoint 2010
InnoTech
 
PPTX
Webinar: The Slippery Slope of Migrating to SharePoint Online or On-Premise
WithumSmith+Brown, formerly Portal Solutions
 
PDF
Recent ecm market developments from a share point of view q3
Mike Alsup
 
PPTX
3 ways to use SharePoint to enhance collaboration and boost productivity
rgtechnologies
 
PPTX
Managing Governance Across the Social Landscape
Christian Buckley
 
PPTX
Webinar: Slippery Slope of SharePoint Migrations
WithumSmith+Brown, formerly Portal Solutions
 
PPTX
Company Profile - NPC with TIBCO Spotfire solution
Sirinporn Setworaya
 
PDF
84% of Migration Projects Fail – Getting it Right in SharePoint Webinar
Concept Searching, Inc
 
PDF
SharePoint Governance Webinar Presentation
BroadPointTechnologies
 
PPTX
[AIIM17] SharePoint Governance - Jed Cawthorne
AIIM International
 
PDF
August 2011 The Business Value of Office 365 for SharePoint users
Knowledge Management Associates, LLC
 
PPTX
Maximizing Team Productivity with Microsoft Office 365
SWC Technology Partners
 
SharePoint 2013 Migration - Your 5 Rules for Success
Christian Buckley
 
SharePoint Online vs. On-Premise
Evan Hodges
 
Why Metadata Matters in SharePoint Search and Information Governance Webinar
Concept Searching, Inc
 
SharePoint for Government
C/D/H Technology Consultants
 
Measuring SharePoint -- Webtrends Engage 2013
Christian Buckley
 
Engage 2013 - Measuring SharePoint
Webtrends
 
Enough Talk – Solving GDPR Problems Through Metadata-Driven Compliance Webinar
Concept Searching, Inc
 
What You Need to Know Before Upgrading to SharePoint 2013
Perficient, Inc.
 
Taming the West: ECM and RM in SharePoint 2010
InnoTech
 
Webinar: The Slippery Slope of Migrating to SharePoint Online or On-Premise
WithumSmith+Brown, formerly Portal Solutions
 
Recent ecm market developments from a share point of view q3
Mike Alsup
 
3 ways to use SharePoint to enhance collaboration and boost productivity
rgtechnologies
 
Managing Governance Across the Social Landscape
Christian Buckley
 
Webinar: Slippery Slope of SharePoint Migrations
WithumSmith+Brown, formerly Portal Solutions
 
Company Profile - NPC with TIBCO Spotfire solution
Sirinporn Setworaya
 
84% of Migration Projects Fail – Getting it Right in SharePoint Webinar
Concept Searching, Inc
 
SharePoint Governance Webinar Presentation
BroadPointTechnologies
 
[AIIM17] SharePoint Governance - Jed Cawthorne
AIIM International
 
August 2011 The Business Value of Office 365 for SharePoint users
Knowledge Management Associates, LLC
 
Maximizing Team Productivity with Microsoft Office 365
SWC Technology Partners
 

More from AntonioMaio2(20)

PDF
Introduction to Microsoft Enterprise Mobility + Security
AntonioMaio2
 
PDF
Learn how to protect against and recover from data breaches in Office 365
AntonioMaio2
 
PDF
A beginners guide to administering office 365 with power shell antonio maio
AntonioMaio2
 
PDF
Office 365 Security - MacGyver, Ninja or Swat team
AntonioMaio2
 
PDF
Information security in office 365 a shared responsibility - antonio maio
AntonioMaio2
 
PDF
SharePoint Saturday Ottawa - How secure is my data in office 365?
AntonioMaio2
 
PPTX
Office 365 security new innovations from microsoft ignite - antonio maio
AntonioMaio2
 
PPTX
Real world SharePoint information governance a case study - published
AntonioMaio2
 
PDF
Overcoming Security Threats and Vulnerabilities in SharePoint
AntonioMaio2
 
PPTX
What’s new in SharePoint 2016!
AntonioMaio2
 
PPTX
Data Visualization in SharePoint and Office 365
AntonioMaio2
 
PPTX
Hybrid Identity Management with SharePoint and Office 365 - Antonio Maio
AntonioMaio2
 
PDF
Developing custom claim providers to enable authorization in share point an...
AntonioMaio2
 
PPTX
Identity management challenges when moving share point to the cloud antonio...
AntonioMaio2
 
PDF
A Practical Guide Information Governance with Microsoft SharePoint 2013
AntonioMaio2
 
PPTX
Best practices for security and governance in share point 2013 published
AntonioMaio2
 
PDF
Keeping SharePoint Always On
AntonioMaio2
 
PDF
How Claims is Changing the Way We Authenticate and Authorize in SharePoint
AntonioMaio2
 
PPTX
Best practices for Security and Governance in SharePoint 2013
AntonioMaio2
 
PPTX
SPTechCon Boston 2013 - Introduction to Security in Microsoft Sharepoint 2013...
AntonioMaio2
 
Introduction to Microsoft Enterprise Mobility + Security
AntonioMaio2
 
Learn how to protect against and recover from data breaches in Office 365
AntonioMaio2
 
A beginners guide to administering office 365 with power shell antonio maio
AntonioMaio2
 
Office 365 Security - MacGyver, Ninja or Swat team
AntonioMaio2
 
Information security in office 365 a shared responsibility - antonio maio
AntonioMaio2
 
SharePoint Saturday Ottawa - How secure is my data in office 365?
AntonioMaio2
 
Office 365 security new innovations from microsoft ignite - antonio maio
AntonioMaio2
 
Real world SharePoint information governance a case study - published
AntonioMaio2
 
Overcoming Security Threats and Vulnerabilities in SharePoint
AntonioMaio2
 
What’s new in SharePoint 2016!
AntonioMaio2
 
Data Visualization in SharePoint and Office 365
AntonioMaio2
 
Hybrid Identity Management with SharePoint and Office 365 - Antonio Maio
AntonioMaio2
 
Developing custom claim providers to enable authorization in share point an...
AntonioMaio2
 
Identity management challenges when moving share point to the cloud antonio...
AntonioMaio2
 
A Practical Guide Information Governance with Microsoft SharePoint 2013
AntonioMaio2
 
Best practices for security and governance in share point 2013 published
AntonioMaio2
 
Keeping SharePoint Always On
AntonioMaio2
 
How Claims is Changing the Way We Authenticate and Authorize in SharePoint
AntonioMaio2
 
Best practices for Security and Governance in SharePoint 2013
AntonioMaio2
 
SPTechCon Boston 2013 - Introduction to Security in Microsoft Sharepoint 2013...
AntonioMaio2
 

SharePoint Governance: Impacts of Moving to the Cloud

  • 2.
    SharePoint Governance: Impacts ofMoving to the Cloud What we’ll cover today: • Cloud Strategy: Office 365 & SharePoint Online • Important Considerations for Moving to the Cloud • Investments already made in SharePoint • Impacts to Data Sovereignty and Regulatory Compliance
  • 3.
    About Christian Buckley, Director of Product Evangelism at Axceler • Microsoft MVP for SharePoint Server • Prior to Axceler, worked for Microsoft, part of the Microsoft Managed Services team (now Office365-Dedicated) and worked as a consultant in the areas of software, supply chain, grid technology, and collaboration • Co-founded and sold a software company to Rational Software. At E2open, helped design, build, and deploy a SharePoint-like collaboration platform (Collaboration Manager), onboarding numerous high-tech manufacturing companies, including Hitachi, Matsushita, Cisco, and Seagate • Co-authored ‘Microsoft SharePoint 2010: Creating and Implementing Real-World Projects’ link (MS Press) and 3 books on software configuration management. Twitter: @buckleyplanet Blog: buckleyplanet.com Email: [email protected]
  • 4.
    Axceler Overview • ImprovingCollaboration since 2007 • Mission: To enable enterprises to simplify, optimize, and secure their collaborative platforms • Delivered award-winning administration and migration software since 1994, for SharePoint since 2007 • Over 3,000 global customers • Dramatically improve the management of SharePoint • Innovative products that improve security, scalability, reliability, “deployability” • Making IT more effective and efficient and lower the total cost of ownership • Focus on solving specific SharePoint problems (Administration & Migration) • Coach enterprises on SharePoint best practices • Give administrators the most innovative tools available • Anticipate customers’ needs • Deliver best of breed offerings • Stay in lock step with SharePoint development and market trends
  • 5.
    About Antonio Maio, Senior Product Manager at TITUS • Microsoft MVP for SharePoint Server • Senior Product Manager bringing over 20 years of experience in both software development and product management to TITUS. • Antonio's background includes formal education and experience in cryptography, public key infrastructure and information security, and he previously held positions at Corel, Entrust, and several Microsoft partner organizations. His broad knowledge and experience with Microsoft SharePoint extends over the last 8 years and centers particularly around solving security challenges while at the same time helping customers share the right information with the right people. Twitter: @antoniomaio2 Blog: trustsharepoint.com Email: [email protected]
  • 6.
    TITUS Overview • DataSecurity & Classification Market Leader • Over 500 Enterprise Customers • Over 2 Million Users Deployed • Customers across Government, Military and Commercial Sectors • Enhance SharePoint Security • Ensure the right people access the right information in SharePoint • Email and Document Marking • Ensure every email is classified and protectively marked before it is sent • Ensure every document is classified and protectively marked • Data Loss Prevention • Prevent inadvertent disclosure of sensitive information • User-driven DLP strategy that starts with the user
  • 7.
    Our goal today: Tohelp you fill in some of the pieces of your planning strategy for the cloud
  • 8.
    According to 43% Growth of enterprise spending on cloud in 2012 $6.1 billion Total spend last year 48% Expected growth of enterprise spending on cloud in 2013 $9 billion Spend expected this year
  • 9.
    What is drivingcloud adoption? Data anytime, anywhere. It’s all about self-service. Bring your own device. Everything is social. Built for the business user, not IT.
  • 10.
    Why the cloudis becoming important to SharePoint customers As SharePoint continues to expand its footprint, companies are demanding flexible architectures to help them better meet internal and external collaboration needs • Reducing costs • Reducing headcount • Doing more with less • Focusing less on traditional IT activities and more on activities that will help drive the business forward
  • 11.
    Microsoft in theCloud • Office 365 and SharePoint Online • Microsoft’s solution for Cloud based collaboration • Includes SharePoint, Yammer, Exchange, Lync, Office Suite, etc. • Businesses collaborate from virtually anywhere • World-class hosting and reliability • Avoid overhead in managing your own infrastructure
  • 12.
    Benefits Office 365 &SharePoint Online • Low barrier & cost to entry • Pay per use service plans • Costs shift from CAPEX to OPEX • Assurance on scale and high availability • Professionally managed data center, 24x7 support • Latest and Greatest - software is always up to date
  • 13.
    Contrast Traditional SharePoint On- Premise •Manage own infrastructure/servers • Some part of the business owns or focusses on IT • Upgrades can be time consuming and costly • Clear delineation between data ownership & management • Clear control over business information
  • 14.
    Considerations for SharePoint Online Customizations •Microsoft has introduced the “App Model” • New to Microsoft Office 2013 and SharePoint 2013 • Works On-Premise and in Office 365 SharePoint Online
  • 15.
    Considerations for SharePoint Online Customizations •Benefits • Enhance SharePoint & Office to solve specific business problems • Flexible deployment models • Restrict access to server resources to ensure high-availability • Replaces sandbox solutions • Microsoft App Marketplace
  • 16.
    Risks with the cloud model
  • 17.
    Hang On! Let’s talkabout some real world scenarios
  • 18.
    What about myexisting investment in SharePoint? • Most SharePoint deployments have included customizations to meet critical business needs • User Management & Administration • Security and Compliance • Auditing, Reporting, Alerting • User Adoption, Records • Branding, etc… • Consider the business problems you’ve already invested in solving
  • 19.
    Maturity of theOffice365 platform
  • 20.
    Managing on prem,the cloud, and hybrid: Permissions Management • Perform regular security checks across your farm, down to the document level • Proactively review, delete, and reassign user permissions as needed • Clean up users who are no longer in Active Directory but are in SharePoint • Review SharePoint groups • Have a process to backup and restore permissions • Document site permissions (roles) so that its easier to duplicate them for new employees • Monitor SharePoint licensing
  • 21.
    Managing on prem,the cloud, and hybrid: Content & Storage • Monitor and track the growth of sites for better planning, especially with migrations • Analyze web part usage to determine which sites are using which web parts • Understand and manage SharePoint features • Ensure consistent branding and behavior: site themes, quotas, regional settings, etc.
  • 22.
    Managing on prem,the cloud, and hybrid: Usage and Activity trends • Analyze activity down to the site, page, and document level • Identify who is accessing which documents, including details on that activity (i.e. checking in a document, editing a document, or just viewing a document’s properties) • Isolate sites that are no longer needed and delete them • Compare activity from the past to help anticipate the future • Find sites with the most or least activity
  • 23.
    Managing on prem,the cloud, and hybrid: Reorganizing your farm • Proactively manage architecture of your site collections, sites, lists, libraries, folders and items within your farm or across farms • Have a plan for moving content and structure from test environment to production environment • Understand impacts due to architectural changes or business changes
  • 24.
    Consider the BusinessProblem: Security and Compliance • Impacts to Governments, Intelligence Community, Regulated industries • SharePoint has great built in security and compliance capabilities • At scale, management of security can be challenging • Specific industries have strict regulations on users accessing certain types of information
  • 25.
    Consider the BusinessProblem: Security and Compliance • 3rd SharePoint applications to automate & enhance security * AIIM report: Extending SharePoint Enterprise Security
  • 26.
    Data Sovereignty • Wheredata lives matters! • Once information is sent across borders, it’s difficult, if not impossible, to control • Impacts to government and regulated industries • Governments need to ask “Where is my citizens’ data?” • What are the impacts on citizen data (PII, PHI)? • Do I have complete control over my data? • How do we solve this issue?
  • 27.
    Regulatory Compliance • Industriesneed to comply with regulations – ITAR, HIPAA, ISO 27001, PCI DSS, PII, etc… • ITAR regulations - restricted access control on controlled information based on user attributes • HIPAA regulations address security and privacy of health data • ISO27001 regulations are formal ISO specification to bring information security under explicit management control
  • 28.
    Regulatory Compliance: Consider ITAR •ITAR – International Trade in Arms Regulations • Strict obligations dealing with international trade in weaponry • Which users can access specific controlled data, the citizenship of those users, the physical location of those users, etc. • Office 365 is making good progress • FISMA awarded, Certified under EU Safe Harbor, EU Model Clauses • Data Processing Agreement (DPA) for customer data privacy • FERPA, HIPAA BAA, HITEC requirements supported • ITAR service plan available (variation of O365 Dedicated Plans) Devil is in the details… Do the certifications go far enough to meet your business needs? Will the way they’re enforced fit with your organization?
  • 29.
    Understand the risks and develop a plan
  • 30.
    Self Quiz As youprepare to move key workloads to the cloud, here are some governance questions to ask yourself: • What happens to your existing reporting and metrics? Do the same KPIs apply to your new cloud components, or do they need to be reevaluated? • Are there any changes to your ability to manage permissions across your on-premises and cloud components? Are the methods different?
  • 31.
    Self Quiz • Doyour existing policies remain in effect, or do you need to adjust for two models? • Can you maintain visibility into your information architecture and the Managed Metadata in SharePoint across all farms, or granularly within individual sites? • Are you able to track storage usage across all sites and site collections?
  • 32.
    Self Quiz • Whathappens to your auditing and compliance monitoring capability? Can you still see what is being accessed, and by whom? • With your new social capabilities, how much visibility do you have into how users are interacting, where content is being shared, and how well collaboration is being achieved?
  • 33.
    Self Quiz • Ifmoving content, sites and users between platforms, how much visibility will you have around storage, content database reports, inactive users, administrative cleanup of orphaned users? • Are you able to setup management policies and procedures that span the various systems? Are you able to organize and automate complex preventive and responsive actions?
  • 34.
    http://tinyurl.com/SPgmb http://tinyurl.com/d62j3nl http://tinyurl.com/SPga4hd
  • 35.
    Thank you! [email protected] [email protected] @buckleyplanet @antoniomaio2 www.Axceler.com www.TITUS.com presentations http://www.slideshare.net/AntonioMaio2/ blog http://www.trustsharepoint.com book http://www.titus.com/blog governance4hybrid