HOW TO USE OFFICE 365 AND X1 DISCOVERY TO ACHIEVE YOUR EDISCOVERY GOALS AGENDA
• Office 365 eDiscovery and Compliance features and functions • X1 Distributed Discovery features and demo • Q&A/Open Discussion with Audience
WWW.D4DISCOVERY.COM 2 PANELISTS
Rachi Messing Senior Program Manager
John Patzakis Executive Chairman of the Board
Rafe Stanley [Moderator] Discovery Engineer
WWW.D4DISCOVERY.COM 3 OFFICE 365 RACHI MESSING
WWW.D4DISCOVERY.COM 4 Employees work on nearly 2x the number of teams than they did five years ago*
41% employees say mobile business apps are changing the way they work*
Information overload wastes 25% of employee time, costing Digital trends are U.S. business $997B each year* changing the way 160M customer records leaked* people work 229 days to detect security infiltration*
* Multiple industry sources. Office 365 Service offerings by category
Authoring Mail & Social Sites & Content Chat, Meetings Analytics & Voice
Word Outlook OneDrive Microsoft Teams Power BI Excel Yammer SharePoint Skype for Business MyAnalytics PowerPoint Delve OneNote
Office 365 Groups Graph Security & Compliance Top 3 Cloud Concerns
73% orgs indicated security as a top challenge holding back SaaS adoption
89% of orgs required to govern content for compliance or business continuity purposes
63% of orgs state transparency challenges restrict them from growing their cloud usage Office 365 Built-in capabilities and customer controls
Best-in-class security Privacy by design with a Commitment to meeting Transparency in our with over a decade of commitment to use industry standards and operations so you can experience building customers’ information delivering a rich set of monitor the state of your Enterprise software only to deliver services applications which service, track issues, and and online services enable organizational have historical view of compliance availability Office 365 Compliance Solutions
What solutions does Microsoft provide to bring data overload under control and support my ability to achieve organizational compliance?
Who is in control of the data in O365? Office 365 In-Place Compliance Solutions
Organization needs
Preserve vital data Find relevant data Monitor activity
Data Governance eDiscovery Auditing Import, store, preserve and expire data Quickly identify the most relevant data Monitor and investigate actions taken on data
Security & Compliance Center Manage compliance for all your data across Office 365 Security and Compliance Center
Bringing together different compliance tools with roles based permission controls
Scenario oriented workflows with cross-cutting policies spanning features
Powerful content discovery across Office 365 workloads
Proactive suggestions leveraging Microsoft Security Intelligence Graph Office 365 In-Place Compliance Solutions
Organization needs
Preserve vital data Find relevant data Monitor activity
Data Governance eDiscovery Auditing Import, store, preserve and expire data Quickly identify the most relevant data Monitor and investigate actions taken on data
Security & Compliance Center Manage compliance for all your data across Office 365 Traditional Data Governance Many organizations transfer data to a third party hosted archiving service which has challenges Exchange Data Outsourced Data Journaling Challenges
Increased costs Having a separate copy of the data being stored significantly increases costs
Increased risks Content may be compromised moving from one environment to another
Third party outsourced Point in time data Captures data at a point in time which miss any edits in place journaling or from transport agents in flight
Increased time Waiting for indexing increases time required to find relevant data
No service wide insights Unable to leverage service wide machine learning to draw correlations between the data
9 Office 365 In-Place Data Governance Data stays in-place and does not need to be continually transferred out of Office 365 providing benefits
In-Place Office 365 Data Governance Benefits of In-Place Office over Journaling
Reduce risk Data is not duplicated to another provider or compliance boundary. Record all actions taken on the data
Higher fidelity and lower costs Content stays in Exchange and SharePoint, which results in lower storage costs, and higher fidelity data
Location, query or policy based Apply preservation to mailbox or SharePoint site, apply a query to hold less content, or use preservation policies
No impact to users Seamlessly create, edit, and delete without knowing data is being preserved
Insights Insights to enable you to keep what’s important, delete what’s not, and to share according to policy
1 0 Office 365 Compliance Data Lifecycle Ingestion of data outside Office 365 In-Place data creation, retention and archiving In-Place eDiscovery Export
Auditing
1 1 Data Governance: Core Capabilities Import Drive Shipping, Network Upload and 3rd Party Data Ingestion (Facebook, Twitter, Bloomberg) through partners to provide cross platform compliance and governance
Retention policies Unified Retention and Disposition Policy for workloads in Office 365
Records management End user classification in Outlook, SharePoint, OneDrive and Groups. Manual review and disposition, reporting and permissions
SEC 17A-4 compliant SEC 17A-4 whitepaper covering SharePoint, OneDrive, Groups, Skype, Preservation Lock, immutability, Supervisory Review
Security and Compliance Center Office 365 experience to bring together all compliance and security experiences Office 365 In-Place Compliance Solutions
Organization needs
Preserve vital data Find relevant data Monitor activity
Data Governance eDiscovery Auditing Import, store, preserve and expire data Quickly identify the most relevant data Monitor and investigate actions taken on data
Security & Compliance Center Manage compliance for all your data across Office 365 eDiscovery in O365
Wide range of scenarios Regulatory compliance, employment law, HR, financial, internal business requirements Secure access Provide access based on role, delegated access and enable security filters to scope access Self-service case management tools Investigators can create & manage cases, put data on hold, perform searches and export
Identify subjects, witnesses, custodians Search for relevant subjects or witnesses or custodians
Identify relevant data Search for data relevant to the investigation across Office 365 and imported data
Enable collaboration Between investigators & attorneys overseeing the case Search and Export Capabilities
Real-time in-place searching Quickly find relevant data No waiting for indexing, always live and up-to-date across Office 365 Proximity search, rich query syntax
Make decisions Query and source statistics help you to analyze results
Native export Export with analysis Export into review tool
Technology Partners Epiq Rational Enterprises Everlaw Recommind Kcura Servient iConect Zapproved iPro Zylab Mindseye
Download to PST or Native Folder Light weight tagging Full review tools Manual data review Single-investigator cases Ready to load data package Move data between locations Simple investigations Larger investigations Advanced eDiscovery Intelligently explore and analyze unstructured data to quickly identify what’s relevant
Identify relevant documents Predictive coding enables you to train the system to automatically distinguish between likely relevant and non-relevant documents
Identify data relationships Use clustering technology to look at documents in context and identify relationships between them
Organize and reduce data prior to review Use near duplicate detection to organize the data and reconstruct email threads from unstructured data to reduce what’s sent to review Office 365 In-Place Compliance Solutions
Organization needs
Preserve vital data Find relevant data Monitor activity
Data Governance eDiscovery Auditing Import, store, preserve and expire data Quickly identify the most relevant data Monitor and investigate actions taken on data
Security & Compliance Center Manage compliance for all your data across Office 365 Office 365 Auditing Opt-in for all O365 tenants
1 billion events collected Azure daily Active Directory SharePoint Security & Online Compliance Center Power BI What Data Is Audited?
Exchange Online Admin activity, end-user (mailbox) activity
Security and Compliance Center Admin activity
Azure Active Directory Office 365 logins, directory activity
Power BI Admin activity
SharePoint Online and OneDrive for Business File activity, sharing activity
Innovation & Release Management
Cloud updates on a regular basis
Visibility Rolling 90-day public roadmap of what’s coming Control First release program and deferred service branch Cadence Regular releases of new innovations X1 JOHN PATZAKIS
WWW.D4DISCOVERY.COM 5
How to Use Office 365 and X1 to Achieve Your eDiscovery Goals
LIVE WEBINAR Numerous Challenges • Custodian self-collection not defensible: • Nat’l Day Laborer Org. Network v. US Immigration & Customs Enforcement Agency, (S.D.N.Y. Jul. 13, 2012) • GN Netcom, Inc. v. Plantronics, Inc., No. 12-1318-LPS, 2016 U.S. Dist. (D. Del. July 12, 2016). • Lack of Uniformity and Transparency • Disruption • But full-disk imaging is disruptive, expensive and not required by the courts Central Index Approach • Substantial scalability challenges • Requires huge network bandwidth and computational resources • Team of FTEs to deal with index corruption, database crashes, etc. • Any real enterprise-wide success stories?
Crawling Solutions Are Slow & Cumbersome • Must collect all data and transmit over the network to be searched by the solution. Requires several hours per end- point • Must start search over if even a tiny change to keyword or metadata search criteria Enterprise architecture considerations • Most eDiscovery software must collect and migrate all custodian data BEFORE searching and culling begins • Counter-productive to the very purpose of a cloud-based O365 investment.
• Standard network infrastructures do not support timely migrations of terabytes of data.
• Next generation eDiscovery solutions must search and process cloud data in place and consolidate non-cloud sources with cloud sources SOLUTION
Distributed Discovery
• Revolutionizes how organizations search, identify and collect documents at the desktop level across up to thousands of endpoints and network sources with industry-leading speed • Empowers legal and IT teams to generate and actually adjust key terms in real-time, before collection • Maps to O365 workflow and many information governance use cases X1 Distributed Discovery Product Demo Q&A/OPEN DISCUSSION
Please send your questions through the chat window. We will answer as many as we can. The rest will be answered in an email to you next week.
WWW.D4DISCOVERY.COM 6 All attendees will receive the presentation recording and slides tomorrow, Friday, August 4.
If you have any questions or need assistance from a forensics expert, please contact: [email protected].
THANK YOU!
WWW.D4DISCOVERY.COM 7