Office 365 has upgraded OneDrive for Business to enable security tools for business owners and network admistrators to manage access to data stored on OneDrive for Business from mobile devices. In the event of loss or theft of mobile devices subscribed to users’ Office 365 services, data can now be protected from unauthorised access using PIN lock numbers, jailbreak detection, and even “selective wipe” utilities.
OneDrive for Business (ODB) provides 1TB of storage per business license. The service, included as standard in Office 365 business licensing, enables users to access stored content with connected devices in addition to their conventionally secured office workstations. Users who have Internet access at home, for instance, can access files on ODB that previously they might have had to copy to a memory stick at work or even to return to their office for.
Cloud services like ODB obviate the need for file duplication from office equipment, which increases the risk of sensitive data being compromised by loss or theft of memory sticks or other devices.
ODB is attractive to business users who face increasing needs for more storage backup, together with the risk and cost of maintaining data. By housing data on OneDrive for Business (ODB), business owners need less “on-premise” hardware. However, providing remote access to business files by tablets, mobile phones, home computers and other devices poses security risks to the integrity of business information which may include customers’ private information.
Mobile Device Management (MDM) for Office 365 was launched on March 1st. MDM is already used to manage access to Office 365’s Exchange email services on mobile devices.
MDM allows business owners and network administrators to manage ODB data across a diverse range of phones and tablets, including Apple’s iOS, Android, Windows, and Windows Phone devices, according to Microsoft’s Omar Shahine.
“You can set up security policies to ensure that only mobile devices managed by your company can access OneDrive for Business files,” Omar said. “You can also set and manage security policies such as device-level PIN lock and jailbreak detection to help prevent unauthorized users from accessing ODB files on a device when it is lost or stolen. Finally, you can easily remove ODB company data from an employee’s device with selective wipe capabilities.”
Device-level PIN locks are established in Office 365 admin and require the end user to input a PIN number to access Office 365 data, including email services running under an Office 365 license.
Selective Wipe is a utility available in Office 365 admin to allow for either restriction or deletion of email and/or ODB data distributed under an Office 365 license from an end user’s device.
Jailbreak Detection is a utility available in Office 365 to prevent distribution of data to mobile devices that have been modified by “jailbreak”, or unauthorised modifications to device operating systems.
For help with security policies for your users’ devices, please call us or drop us a line using our contact form.