15 April 19, 07:43
Quote:Continue Reading
Microsoft published a new security configuration framework for Windows 10 devices that it calls SECCON framework in April 2019. The new framework complements the Windows security baselines that Microsoft publishes for each new release of Windows.
SECCON framework configurations are designed specifically for organizations that don't implement the published security baselines.
The new framework organizes devices into productivity and privileged access devices, and provides security configurations for each based on the classification. The configurations offer generic recommendations that are not specific to certain environments.
The first three levels suggest policies for productivity devices, the last two for privileged access workstations
Level 5: Enterprise security -- Minimum security configuration for Enterprise devices.
Level 4: Enterprise high security -- Security configuration for devices where users access sensitive or confidential information.
Level 3: Enterprise VIP security -- Configuration for organizations with a "larger or more sophisticated security team" or high-risk users.
Level 2: DevOps workstation -- Configuration for testers and developers who may be targeted specifically.
Level 1: Administrator workstation -- Security configuration for the highest risk class.