Organizations needed a way to allow their workforce to easily collaborate, communicate and meet internally and also externally with their clients and partners. However, many missed one of the most critical pieces of the puzzle in the haste to roll out functionality to improve productivity – the governance of Microsoft Teams.
An organization launching Microsoft Teams should establish a Teams governance committee. Teams is ever-evolving, and new functionality is frequently released without much notice or ability for an organization to intervene. A monthly governance committee meeting focusing on new functionality and its impact on the organization allows a company to determine the best way to communicate or potentially restrict these new features. Scheduling a monthly meeting ensures that you can continue to drive adoption, get the most value out of the tool and the organization can continue to protect its data, employees and adherence to any industry-required compliance measures that may be needed.
Creating Your Governance Plan
Microsoft Teams governance is a broad topic, but below are some things to consider when you build out and create your initial governance plan:
Microsoft Teams Policies allow the administrator to control what users can do within Teams and Teams channels at a more granular level. Some relevant Teams policies to consider setting up in your initial rollout may include:
- Teams devices: Control and manage all of your Teams room devices, such as Windows devices, Android, Surface Hubs, Panels, Phones, Displays and SIP devices across your organization.
- Meeting policies: Control what features are available to users when they join Teams meetings, including live events.
- Messaging policies: Control what chat and channel messaging features are available to users in Teams.
- App permission policies: Control what apps you want to make available to Teams users in your organization.
An organization can set a single-team policy at the global level for its entire user base. For example, a lot of organizations will have a global policy around messaging as they want to restrict the usage of gifs or memes in conversations or control their ratings so as not to offend anyone or violate existing policies in place.
Another approach is to create separate policies for specific segments of the user base. For example, you can create a targeted meeting policy for your sales team only, restricting members of that group from sharing their screen during a meeting with users outside the organization.
External and Guest Access
Much like other tools within Microsoft’s suite, Teams allows users to interact with external and guest users. External access is a default setting enabled within Teams that allows users to find, call and chat with people in other domains. Guest access, if enabled, allows users to add individuals from outside the organization to teams and channels in Teams.
External access is not an area we see heavily governed by most organizations. Most companies choose to retain this setting but may opt to block specific domains.
As the emails start to pile up and attachments get lost, collaborating with people outside your organization can prove to be challenging. The guest access Teams feature is where we see a lot of clients garner value. Often users are led to alternate, non-IT-approved solutions when there is a need to collaborate and share files. Guest access ensures that you not only retain your company’s data but that it is protected based on your organization’s and industry’s standards. Governance of guest access can be critical to a company’s adoption of Teams.
Automated Teams Governance
A way we’ve seen many organizations take governance to the next level is through automation. Automation reduces overhead costs to IT and ensures that Teams does not become unmanageable as adoption grows:
- Automating naming conventions is a great way to provide structure and consistency for users. Naming conventions help users with the findability of Teams and Teams channels. Teams administrators can specify a naming convention that includes prefixes or suffixes when they create new teams. Adding prefixes or suffixes to a team name can also distinguish internal teams vs. teams you may share with a vendor or guest. Additionally, we’ve seen our clients gain value in the ability to block specific words from being used when naming a team.
- Once an organization adopts Teams, some teams will reach a point where the content, conversation and channels have served their purpose and are no longer needed. Enabling an expiration policy allows IT to automate content cleanup of these unused teams where team owners will receive a notification if a site is not in use. If the owner does not respond to the notification to renew the site, then the team will be automatically deleted.
- Many organizations will want to create retention policies for their data in Teams. Automating retention or deletion of Teams content is an excellent option to ensure data is retained for audit or legal purposes or deleted if not required or could pose a future liability.
- Out of the box, it is easy for users to create teams, which often leads to duplicates and unused resources. We work with clients to help them best govern this process and think through how a team should be requested and subsequently created. In some instances, clients choose to restrict team creation to the few people in the organization by setting up a security group for team creators. In contrast, other clients automate team creation via a bot.
Whether you’re ready to implement Microsoft Teams or have already rolled it out, we can help you create an effective Teams governance strategy. Contact a member of our Digital and Technology Transformation Services Team to get started!