BACKGROUND IMAGE: iSTOCK/GETTY IMAGES
The complete guide to Windows 10 security tools
-
Article
Get to know the three Windows Defender tool groups
The three native Windows 10 utilities included in Windows Defender -- Advanced Threat Protection (ATP), Exploit Guard and Application Guard -- allow IT to protect the organization's network, track endpoints and more. Read Now
-
Article
What's new with Windows Defender in Windows 10?
IT pros can use the behavioral analysis from Windows Defender ATP and the Microsoft Edge browser's Application Guard integrations to protect users. Read Now
-
Article
Troubleshoot Windows Defender update issues
If IT encounters issues with an update to Windows Defender, it can run the Windows Update troubleshooter to see if the update itself is at fault, for example. Read Now
-
Article
Track the evolution of Windows Defender ATP
Since Microsoft first released Windows Defender ATP, the company has added behavioral analysis, machine learning and more to the tool. Read Now
Editor's note
Windows 10 is the most used OS for desktops in the world, so it's a big target for hackers.
IT professionals should get to know all the Windows 10 security tools they have at their disposal so they can protect users' desktops. Options include native Windows 10 security tools and utilities such as Microsoft Windows Defender and Microsoft Security Compliance Toolkit. There are also third-party tools to supplement Windows' native firewalls, encryption tools and more.
With so many Windows 10 security tools, IT pros may not know which ones they should choose. For IT pros to determine which aspects of security can rely on Windows 10's native security tools and which cannot, they must learn the ins and outs of each option they have.
1Shore up Windows 10 desktops with patch management
Late or absent desktop or application patches can create significant vulnerabilities. As a result, IT must find a way to deploy patches quickly, without causing compatibility issues with the desktop or other applications. The balance of testing patches for compatibility while still deploying them quickly is difficult for IT pros to strike -- especially for organizations with many third-party applications. Microsoft's native patching utilities, WSUS and System Center Configuration Manager (SCCM), don't handle third-party application patches well. As a result, IT can turn to third-party tools to lighten the workload and fill in the gaps that Windows 10's native patch management cannot.
-
Article
WSUS a strong option for Windows patches
IT professionals can take advantage of WSUS' patch scheduling and automatic download utilities to deploy Windows patches, but they shouldn't expect it to do much for third-party application patching. Read Now
-
Article
Take control of all updates and patches
IT shouldn't leave any application-patching functions to their users, because they likely won't understand the intricacies of the process. IT pros should use WSUS, SCCM and a third-party patching tool to remove the uncertainty from the patching process with automation. Read Now
-
Article
Patch automation shrinks the margin for error
To ensure its entire deployment receives patches for third-party applications as soon as possible, IT should use a patch management tool that includes some automation. Read Now
-
Article
Consider patch management software for third-party apps
Selecting a patch management tool isn't a simple decision. Learn about the current options on the market, such as ManageEngine Patch Manager Plus and GFI LanGuard, before selecting a tool. Read Now
2Get to know the options for firewall and encryption
Data encryption and firewalls are crucial for strong security. Firewalls are software that enforces a set of rules on data transactions within the network and between one network and another. Firewalls serve as the front line for all inputs and outputs for an organization's network. Data encryption tools, which encode any data moving from one device to another, ensure that even if a hacker bypasses the firewall and accesses an organization's data transfers, he can't read the data without the decryption key.
-
Article
Microsoft adds full-disk encryption to BitLocker
BitLocker, Windows 10's native data encryption tool, allows IT to secure users' local data in addition to their data transfers. Best of all, IT pros can manage and deploy BitLocker settings through PowerShell. Read Now
-
Article
Look into the most popular third-party encryption tools
IT professionals ranked centralized policy management, application and database transparency, and low latency as the three most important factors for an encryption tool. There is no perfect encryption tool that works for all deployments, so IT pros must prioritize. Read Now
-
Article
Before diving into data encryption, learn the basics
Before selecting a data encryption tool, IT professionals should learn how these utilities work, how to use them effectively and how they would fit into their Windows 10 deployment. Read Now
-
Article
Understand Windows 10 firewall options
Windows Firewall, the native firewall included in Windows 10, is popular because IT can enable and manage it through Group Policy. But for more robust firewalls, IT pros should consider third-party options. Read Now
3Do you understand the Windows 10 security tool market?
Windows Defender is not the only native Windows 10 security tool. Test your knowledge of Windows Defender and other native security options IT can use to lock down its organization's endpoints.
4Understand the vocabulary for Windows 10 security tools
Get to know the crucial vocabulary around Windows 10 security tools.
-
Definition
BitLocker
BitLocker is an operating system-level extension to Vista that combines on-disk encryption and special key management techniques... (Continued) Read Now
-
Definition
full-disk encryption (FDE)
What is full-disk encryption (FDE)?Full-disk encryption (FDE) is encryption at the hardware level. Read Now
-
Definition
Microsoft Windows Defender
Windows Defender is Microsoft's antimalware software. Defender works with Windows Update to automatically install new virus definition files as they are published and provide computers using the Microsoft operating system (OS) with both real-time and anytime scanning options. Read Now
-
Definition
firewall
A firewall is software or firmware that enforces a set of rules about what data packets will be allowed to enter or leave a computer network. Read Now
-
Definition
Windows Defender Application Guard
Windows Defender Application Guard is a security tool built into Microsoft Edge that isolates browser sessions from the desktop in a virtual machine (VM) to prevent any malicious activity from reaching the desktop. Read Now
-
Definition
patch management
Patch management is an area of systems management that involves acquiring, testing, and installing multiple patches (code changes) to an administered computer system. Read Now
-
Definition
Windows Server Update Services (WSUS)
Windows Server Update Services (WSUS), also called Windows Update Services (WUS), is a free add-on for managing patches and updates to the Microsoft Windows XP, Windows Server 2000, and Windows Server 2003 operating systems... (Continued) Read Now