Security & Backup

Enterprise Mobility Security

Microsoft Enterprise Mobility + Security

Microsoft Enterprise Mobility + Security presents an identity-focused security solution, which provides a comprehensive response to the security obstacles prevalent in our current mobile-centric and cloud-based era.

Microsoft Enterprise Mobility + Security: Securing Your Business in the Cloud-first, Mobile-first Era

In today’s fast-paced digital landscape, enterprises are constantly seeking out innovative ways to secure their networks, devices, and data. With the proliferation of mobile devices and cloud technologies, these organisations face unique security challenges that require equally creative solutions. Enter Microsoft Enterprise Mobility + Security (EMS), a comprehensive suite of security tools designed to safeguard your business from end to end.

Microsoft EMS is an identity-driven security solution offering a holistic approach to the challenges that businesses encounter; providing not only protection for the organisation but also actively identifying breaches to mitigate potential damage.

Let’s explore the key features of Microsoft EMS and its two available offerings: Enterprise Mobility + Security E3 and Enterprise Mobility + Security E5.

Key Features of Microsoft Enterprise Mobility + Security

Microsoft EMS provides a wide range of capabilities to ensure your organisation remains secure in the face of ever-evolving threats. Let’s delve into some of the key features:

  • Azure Active Directory Premium
    Azure Active Directory (AD) Premium grants your organisation access to a powerful cloud-based identity and access management solution. It offers single sign-on (SSO) for thousands of cloud applications and improves collaboration with self-service capabilities, so your users can easily reset passwords and manage group memberships. Additionally, it provides advanced security features such as multi-factor authentication, conditional access, and risk-based policies.
  • Microsoft Intune
    Microsoft Intune is a cloud-based management solution that helps you maintain control over mobile devices, apps, and data. This ensures that your workforce remains productive on any device while maintaining a consistent security posture. Intune provides device management, mobile application management, and data protection for a wide range of devices, including iOS, Android, and Windows.
  • Azure Information Protection
    Azure Information Protection (AIP) gives you the tools to classify, label, and protect sensitive information based on configurable policies. AIP includes encryption, identity-based access control, and secure collaboration capabilities to protect your sensitive data effectively. With AIP, you can control who can access your information, track its usage, and prevent unauthorised sharing.
  • Advanced Threat Analytics
    Microsoft Advanced Threat Analytics (ATA) is an on-premises security solution that monitors and identifies any malicious activity or anomalous behavior on your networks. It helps you detect threats like pass-the-hash attacks, lateral movement, and advanced persistent threats, allowing you to respond quickly before they cause damage.

Microsoft EMS Offerings: E3 and E5

Enterprise Mobility + Security E3

  • Azure Active Directory Premium P1
  • Microsoft Intune
  • Azure Information Protection P1
  • Azure Rights Management (part of Azure Information Protection)
  • Microsoft Advanced Threat Analytics
  • Windows Server CAL rights

Both E3 and E5 offer outstanding security solutions to address unique business requirements. Enterprises can choose the package that provides the best fit for their current security challenges, while also remaining adaptable to future

Enterprise Mobility + Security E5

  • Azure Active Directory Premium P2
  • Microsoft Intune
  • Azure Information Protection P2
  • Azure Rights Management (part of Azure Information Protection)
  • Microsoft Advanced Threat Analytics
  • Windows Server CAL rights
  • Microsoft Cloud App Security
  • Azure Advanced Threat Protection
  • Azure AD Identity Protection (as a feature of AADP P2)
  • Azure AD Privileged Identity Management (as a feature of AADP P2)

Protecting data and managing employee mobile devices

Microsoft Enterprise Mobility + Security (EM+S) keeps your valuable business information safe in the real-world:

Flexible — Works with company devices, employee devices, and external devices
Granular — Define bespoke policies to control access to information to just those who need it
Efficient — Free up your IT team to work on other business needs

Protecting your Office 365 mobile environment

Opening up BYOD policies and mobile working practices brings risks for any organisation. Protect your wider Office 365 environment from any unforseendangers.

Enforce encryption for managed local app storage
Allow copy and paste only between managed apps
Restrict document saving to only secure locations
Remove corporate data from a mobile without affecting personal data

Protection that follows your data

Classifications and protection stays with your data within and without your businesses. Documents are encrypted, with controlled access, on your OneDrive for Business, and Outlook integration means documents sent via email require the receiver to confirm their identity before opening.

Visible control

IT teams have access to detailed logging and reporting tools. Activities taken on data are visible, audtible, and access can be revoked at any time.

Take your backups to the next level

The nature of email-borne threat is changing. Ransomware, identity theft, and blackmail are on the increase and standard email spam filtering can’t identify these new dangers. SMS Advanced Threat Protection (ATP) protects your business network from these sophisticated attacks.

  • All your email
  • All your Microsoft 365 OneDrive for Business documents
  • All your Microsoft 365 SharePoint sites
  • Sandboxing of incoming emails to test attachments without risking network infection URL scanning of links in documents to check the destination is safe

  • Azure Active Directory licence included
  • Enroll corporate and personal devices to provision settings, enforce compliance, and protect your corporate data.
  • Publish, configure, and update mobile apps on enrolled and unenrolled devices, and secure or remove app-associated corporate data
  • Extend management and security capabilities across users, devices, apps, and data, while preserving a rich, productive end-user experience
  • Centralize management of PCs, laptops, and mobile devices from a single administrative console, and produce detailed hardware and software configuration reporting
  • Extend your on-premises management to the cloud from a single console with Microsoft System Center Configuration Manager and Microsoft System Center Endpoint Protection integration for enhanced PC, Mac, Unix/Linux server, and mobile device administration
  • Identity and Access Management
  • Centrally manage single sign-on across all devices, on-site / remote datacenter, and the cloud
  • Strong sign-in authentication with verification options, including phone calls, text messages, or mobile app notifications, and use security monitoring to identify inconsistencies
  • Define policies that provide contextual controls at the user, location, device, and app levels to allow, block, or challenge user access
  • Protect apps and critical data in real time using machine learning and the Microsoft Intelligent Security Graph to block access when risk is detected
  • Monitor suspicious activity with reporting, auditing, and alerts, and mitigate potential security issues using focused recommendations
  • Provide each user access to server functions from multiple devices for a single fee
  • Information Protection
  • Encrypt sensitive data and define usage rights for persistent protection regardless of where data is stored or shared
  • Configure policies to automatically classify and label data based on sensitivity and then apply persistent protection
  • Monitor activities on shared data and revoke access in case of unexpected events
  • Choose default key management options or deploy and manage your own keys to comply with regulations
  • Identity-driven Security
  • Detect abnormal behavior in on-premises systems and identify advanced targeted attacks and insider threats before they cause damage
  • Gain visibility, control, and protection for your cloud-based apps, while identifying threats, abnormal usage, and other cloud security issues

Microsoft Intune


Enterprise Mobility + Security E3

  • Premium P1

Enterprise Mobility + Security E5

  • Premium P2

Why choose SMS for your cloud services?

Here’s why you should consider SMS first when looking for a cloud applications provider.

Still have questions?

To take your first step click on the link to open a chat or fill in the following enquiry form.

Alternatively, email or call us on 01925 818448.

Are you happy for SMS to contact you in the future? We never pass on your details to third-parties.

You’ll always have up-to-date versions of the full suite of Microsoft Office applications. Includes Word, Excel, Outlook, PowerPoint, Teams, Exchange, Access*, OneNote, OneDrive + 1TB cloud storage.

On all of your devices

Install on up to five devices per user. Work from local versions on desktops and laptops, or through apps and browsers on mobiles and tablets.

A Microsoft Office 365 email hosting plan offers a wealth of features which enable collaboration and communication while ensuring the security and compliance of your data. As a Microsoft Gold Partner, SMS provides all Microsoft Office 365 services at the best prices, with the best in UK support from our experienced technical engineers.

Instant communication

Keep in touch by email with large 50 GB Exchange mailboxes or instant message and video conference with Microsoft Teams.

Shared calendars and tasks

Outlook & Microsoft Teams features help you stay up to date with your colleagues.

OneDrive online storage

Easy collaboration and document sharing with 1 TB OneDrive storage.

Our mission is to ensure fantastic customer service from choosing and setting up your solution through to helping you to use the features. At SMS, we remove the technical burdens giving you a hassle-free experience from day one.

Safe & Secure – Email encryption

Maintain peace of mind with SSL/TLS encryption on all of your emails.

Secure data centres

Your information is stored in data centres that are accredited with the highest levels of data safety in Europe. Want to move your mailboxes to Microsoft Office 365 but worried about downtime or mail loss? Our specialist team of migration experts have moved many thousands of mailboxes successfully with no data loss.

Latest news

Stay up to date on cloud services with the latest news and the expert views of our team.