Event banner

Building a tamper-resilient endpoint with Microsoft Intune and Microsoft Defender

Event Ended
Wednesday, Oct 26, 2022, 09:30 AM PDT
Online

Event details

Come listen to Matt and Josh talk about how secure endpoint configurations fit into your zero trust strategy. They'll describe the overall landscape, how to unify your configurations into a single so...
Heather_Poulsen
Updated Dec 27, 2024
Technical Takeoff
Blessing's avatar
Blessing
Copper Contributor
Oct 26, 2022
Is it recommended or best practice for security team to edit or update configurations in MEM or they should request the IT team to make required changes?
Matt_Call's avatar
Matt_Call
Icon for Microsoft rankMicrosoft
Oct 26, 2022
You can do it either way. We offer a built-in role and a tailored experience (Endpoint Security) to allow your Security Admins to manage settings, etc. Generally, this is going to come down to your organizational culture and workload assignment, and we strive to support both scenarios.
  • Paul_Woodward's avatar
    Paul_Woodward
    Iron Contributor
    Oct 27, 2022
    In my experience, as the Intune guy, the security team will be tempted enable policy (e.g. a new security baseline) that clashes with existing policy configurations, due to lack of insight to the existing policies, and not being party to the testing of devices and policy during UAT. So any change to settings needs to be done in parallel with the ICT admins and the Service desk, so that potential clashes and breakages can be avoided, and impact assessed. I'd recommend a sign off process to ensure all parties are fully aware of changes.
Date and Time
Oct 26, 20229:30 AM - 10:00 AM PDT