Goal of this session

Objectives

Get familiar with Yammer’s principals, architecture and roadmaps to

understand core of out Social platform.

Agenda

• Principals of Yammer

• Methodology

• Security and Architecture

• Roadmaps

Principals of Yammer

Users first

Users try and

adopt Yammer

They invite their

colleagues

Company take control

and ownership

User drives Yammer

• Driver: User

• Vehicle: Yammer

• Safety: IT

IT’s mission is to make sure that users can drive their vehicle “safely” to their destination

Methodology

Yammer 101

Activity Stream

Private messaging

Groups

News feed

Development

Architecture

• Slow to implement

• Increased risk to affect other parts

• Hard to test small parts

• Fast Deployment

• Low risk with deployment

• Easy to test – quick feedback

Data driven design

Release Schedule

https://about.yammer.com/success/engage/grow-your-network/release-schedule/

Security and Architecture

Security Mission

Yammer’s mission is to protect customer data. We

strive to be proactive and prepared and maximize

velocity for the business. Our security initiatives are

never complete and we are constantly reevaluating

and adapting to new challenges.

Cloud-based Software-as-a-Service

Data - Information

Application - Software

Infrastructure - Hardware

Data Center - Facility

Data - Information

• Customers own their data

• Private network for your

organization

• HTTPS (SSL3.0/TLS1.0)

• Separation of App and DB

Yammer User

Application

Servers

Customer

Data Stores

SSL Connection

Data Segregation Checks

• Low level logical firewall

SecurityContextValidation

• Separation of test and production

• Snapshot backup - twice per day

Application - Software

• Secure development best practices

• Plan, Do, Check, Methodology

• Code reviews

• Vulnerability scans – weekly

• Third Party pen tests quarterly

• Host-Based Intrusion Detection System

Infrastructure - Hardware

• Secure access (SSL3.0/TLS1.0)

• Access Controls

• Separated application and data stores

• All systems send logs to centralized log server

• Real-time log analysis and monitoring

• Minimum weekly audits of system logs

• Incident Response Plan

• TLS and SPF for email

2-Factor

Authentication

Yammer

Jump Host

Yammer Production Network

Managed VPN

Internal Access to Yammer Production

Data Center - Facility

• Yammer Datacenter is Tier 4 SSAE16 SOC1 T2 certified All components are fully fault-tolerant including uplinks, storage, chillers, HVAC systems,

servers etc. Everything is dual-powered.

Guaranteeing 99.995% availability

24/7/365 guarded, man traps, CCTV

Regulated physical access

SOC1 SSAE 16 Type 2

Yammer is currently undergoing ISO27001

Plan to move to Microsoft Global Foundation Service’s datacenter

Administrative control

User Control

Compliance

User Control

Access:

Password Policy

Session Management

Single Sign On

(SAML 1.1/2.0)

Provisioning:

Manual

Bulk update

Directory Sync Tool

Control:

Administrator Roles

Usage Policy

User Management

Keyword Monitoring

Data Export

Compliance

Data Export

• Exports of all network data

• Retain backups to abide by e-Discovery regulations

Data Retention

• Hard or Soft Delete

Keyword Monitoring

• Use keyword or regex

Usage Policy

• Make it mandatory to accept

Road map

O365 and Yammer - Identity

Today

• SSO and Dsync are different tool set from O365.

• User Mapping – O365 to Yammer without additional authentication. (90%

deployed)

Future

• Single Identity in Azure with O365

*Please note that the information above is subject to change without any notice

based on project progress.

O365 and Yammer – User Interface

*Please note that the information above is subject to change without any notice

based on project progress.

Q and A

Yammer related sessions to check out

Day 1

• 1100-1215 Session 2: Room 226+227

SES172 Yammer Security and Architecture

• 1515-1630 Session 4: Room 426+427

SES298 Enterprise Graph and Integration

Day 3

• 1515-1630 Session 4: Room 426+427

SES213 Steps That Will Make Your Enterprise Social Network Project to Successful

References

Product related info:

https://about.yammer.com/product/platform/

Admin, Integration and Security related info:

https://about.yammer.com/product/admin/

https://about.yammer.com/product/security/

Yammer and O365

https://about.yammer.com/product/office365/

http://blogs.office.com/2014/03/03/work-like-a-network-enterprise-social-and-the-future-of-work/

ios (version 6 or below):

Please input the below URL:

http://aka.ms/SES172

Other platform:

QR Code: