Cyber threats are constantly evolving and organisations need to have the right tools and strategies in place to protect their data, devices and employees. At Microsoft Partner Security Day, we had the privilege of showcasing key security solutions that help businesses meet these challenges.
What was our lecture about?
- When to choose Basic Mobility and Security and when to choose Microsoft Intune?
- How to protect corporate devices vs. BYOD?
- How to effectively use Microsoft Defender for Endpoint to protect all platforms
- How to use Microsoft Sentinel for threat monitoring and automated response?
Let’s take a closer look at the key issues we addressed at the event.
Microsoft Intune vs. Basic Mobility and Security – What to choose?
Managing corporate devices is essential for cybersecurity and compliance with company policies. Microsoft offers two solutions for managing and protecting corporate devices:
Basic Mobility and Security
- Basic protection and management of mobile devices in Microsoft 365
- Control access to company data
- Ability to remotely wipe data from compromised devices
❌ Limited policy and management options
Microsoft Intune
- Comprehensive endpoint management (Windows, macOS, iOS, Android)
- Advanced security policies, access control and device configuration
- Integration with Microsoft Defender for Endpoint for threat detection
- Configurable BYOD policies and conditional access
When to choose Intune? If you want more granular control over your business devices, including BYOD, and take advantage of advanced security and compliance options.
Protecting corporate devices vs. BYOD
Hybrid work and employee mobility bring new security challenges. Companies are faced with the decision of how to manage and secure business and personal devices (BYOD).
Corporate facilities
- Full control over configuration, updates and security
- Possibility of using the Zero Trust model
- Better protection against phishing and malware
BYOD (Bring Your Own Device)
- The advantage of flexibility for employees
- Lower hardware costs
- ❌ Higher security risks (need Intune and Defender to protect)
The solution? Microsoft Intune and Microsoft Defender for Endpoint help manage and protect both corporate and BYOD devices with conditional access, corporate data isolation and threat monitoring.
Microsoft Defender for Endpoint – One tool for all platforms
The attacks target not only Windows, but also macOS, iOS, Android and Linux. Microsoft Defender for Endpoint delivers proactive protection through machine learning and advanced threat analysis.
What does it allow?
- Real-time attack detection and prevention
- Integrated protection against phishing and ransomware
- Proactive monitoring of user and application behaviour
- Connection to Microsoft Sentinel for advanced analysis
The advantage? Unified protection of corporate devices across all operating systems.
Microsoft Sentinel – Automated monitoring and response to threats
How to detect and eliminate security threats quickly? Microsoft Sentinel is a cloud-based SIEM/SOAR solution that enables:
- Consolidation of security events from different sources (Intune, Defender, firewalls, VPNs…)
- AI threat analysis to identify suspicious behaviour
- Automated incident response using playbooks
- Integration with Microsoft 365 Defender for better threat visibility and management
Why Sentinel? It helps security teams eliminate false alarms and respond quickly to real attacks through automation.
Who represented us?
Our security solutions experts shared their experiences:
Roman Přikryl – System Architect
Daniel Vodrážka – System Architect
Petr Malina – Business Development Manager
