It’s been a very exciting several of months for us here at Microsoft, and for many of our customers and partners, sharing the excitement of Windows 7. Since its release to manufacturing in July, through this week at TechEd Europe, we’ve had a lot of Windows 7 and MDOP activities, including countless in-person launch events held around the world. We’ve also had an estimated one in two IT Professionals worldwide try Windows 7, we’ve seen hundreds of community led events, and millions of you have visited us on the Springboard Series on TechNet to get information, tools and guidance for migrating to Windows 7.

I have personally visited 12 countries in the last 2 months and had the chance to speak with many customers and partners to learn about your experiences with Windows 7. Several themes are consistent. You tell me your users are incredibly excited about the performance and productivity improvements of Windows 7 and your IT organizations are seeing great value in the enhanced security and management. I am hearing how you can both pull cost out of your organization and provide greater productivity to your users. It is very encouraging to hear this positive impact you’re seeing with Windows 7 in your organization.

You heard from some of our customers during the TechEd keynote, and we thought you might like to hear the experiences of several other customers that we have worked with and how they realized and quantified significant cost savings. We have also included some useful guidance below to help you with your deployment planning

• International energy company Statoil is deploying Windows 7 along with Windows Server 2008 R2 to provide their travelling employees with seamless access, improve information access in their branch offices, and further enhance their IT security. By using DirectAccess, BranchCache, and BitLocker, Statoil is able to provide their users with mobile and remote access as well as the satisfaction that their data is protected. Check out this Q&A with Statoil for more on their Windows 7 deployment.
• F. Hoffmann-La Roche, a Switzerland-based healthcare company, is working towards their goal of deploying Windows 7 to 5,000 of their PCs to take advantage of BitLocker’s ability to protect data stored on hard drives as well as removable USB sticks. Roche is working closely with Microsoft Services to plan and deploy their new Active Directory infrastructure as well as their Group Policy management rollout.
• The Ministry of Defense in the Netherlands is working to upgrade 50,000 of their PCs to Windows 7 through 2010. By starting their application compatibility testing early – on Windows Vista last year – they were able to get a jump start on their Windows 7 deployment plans and begin their pilot of 200 users, who have expressed excitement over the enhanced user interface and their ease of data access wherever they are.

You can hear from more customers during our live monthly Webcasts on the Windows Enterprise website. For more information specifically on cost savings early Windows 7 adopters have experienced, visit the following total cost of ownership studies:

• Getronics is seeing direct IT labor savings of $111 per PC per year
• Baker Tilly is reducing their IT labor costs by $191 per PC per year
• City of Miami is reducing their IT labor costs by $148 per PC per year

So how can we help your organization realize the benefits of Windows 7? Microsoft has an extensive set of partners that are trained and ready to help you with your deployment planning and migration to Windows 7 - since January this year we have trained more than 110K partner individuals on Windows 7 worldwide. These partners can help you assess your readiness for a Windows 7 migration, they are able to help you develop a deployment plan and can provide services to assist you in the deployment, migration and ongoing management and support of your environment.

Additionally, Microsoft Services has consultants and support professionals in 82 countries to help you out. They offer specialized services based on best practices developed in coordination with product groups and early adopter customers to help you test your applications and jumpstart your deployment, including:

• Desktop Planning and Deployment services, which provide a framework for planning and deployment of Windows 7 operating system and desktop applications. It includes planning and architecture design, proof of concept, and pilot deployment that determines the optimal way to deploy Windows 7 and Microsoft Office based on customer business requirements and organizational readiness.
• Microsoft Services Desktop Application Compatibility offering provides an end-to-end application compatibility solution to ensure that business applications and data can be used more effectively in the new desktop environment with Windows 7, Internet Explorer 8 and the latest version of Microsoft Office.
• Desktop Image Engineering creates a standardized corporate desktop image that takes into account hardware, security, performance and localization requirements, in addition to applications, deployment and management. Consultants also give your team guidance on future maintenance and change management.
• Desktop Deployment Jumpstart helps you understand the costs of developing an enterprise-capable desktop, including a current state assessment, gathering requirements, and a gap analysis against a Microsoft referent deployment solution architecture.

What are YOUR next steps? Here’s some deployment planning guidance which might help you:

• If your organization is still running Windows 2000, we recommend that you begin your application testing on Windows 7 and begin your deployment planning.
  • If you’ve already started a migration to Windows Vista, continue that deployment, as it will help you get ready for Windows 7 when the time is right for you.
• If your organization is on Windows XP, we recommend that you also begin your application compatibility testing on Windows 7 and begin your deployment planning.
  • If you’ve already started a migration to Windows Vista, continue that deployment, as it will help you get ready for Windows 7 when the time is right for you.
  • If you’re in the early stages of planning a Windows Vista deployment, we recommend that you test your applications and infrastructure on Windows 7 and our advice is to change to Windows 7.
• If you have just deployed Windows Vista, we recommend that you begin evaluating Windows 7, and consider Windows 7 as you refresh your hardware or deploy it to the users who’d benefit the most from its features.
• Don’t have access to Windows 7 Enterprise edition? If you’re an IT professional and don’t already have access to Windows 7 Enterprise edition, you can download the 90 day evaluation SKU here. This will allow you to begin testing the final released code with your hardware and application portfolio.
• Already running Windows 7? Tell us what you think! You can join the conversation at www.talkingaboutwindows.com.

Now that Windows 7 is available, a recent blog by Chester Wisnieski (who works at security vendor Sophos), entitled Windows 7 vulnerable to 8 out of 10 viruses, which has stirred some interest.

Here's a quick summary for those who missed Chester's blog. During a test SophosLabs conducted, they subjected Windows 7 to "10 unique [malware] samples that arrived in the SophosLabs feed." They utilized a clean install of Windows 7, using default settings (including the UAC defaults), but did not install any anti-virus software. The end result was 8 of the 10 malware samples successfully ran and the blog proclaims that "Windows 7 disappointed just like earlier versions of Windows." Chester's final conclusion? "You still need to run anti-virus on Windows 7." Well, we agree: users of any computer, on any platform, should run anti-virus software, including those running Windows 7.

Clearly, the findings of this unofficial test are by no means conclusive, and several members of the press have picked apart the findings, so I don't need to do that. I'm a firm believer that if you run unknown code on your machine, bad things can happen. This test shows just that; however, most people don't knowingly have and run known malware on their system. Malware typically makes it onto a system through other avenues like the browser or email program. So while I absolutely agree that anti-virus software is essential to protecting your PC, there are other defenses as well.

Let me recap some of the Windows 7 security basics. Windows 7 is built upon the security platform of Windows Vista, which included a defense-in-depth approach to help protect customers from malware. This includes features like User Account Control (UAC), Kernel Patch Protection, Windows Service Hardening, Address Space Layout Randomization (ASLR), and Data Execution Prevention (DEP) to name just a few. The result, Windows 7 retains and refines the development processes, including going through the Security Development Lifecycle, and technologies that made Windows Vista the most secure Windows operating system ever released.

Beyond the core security of Windows 7, we have also done a lot of work with Windows 7 to make it harder for malware to reach a user's PCs in the first place. One of my favorite new features is the SmartScreen Filter in Internet Explorer 8. The SmartScreen Filter was built upon the phishing protection in Internet Explorer 7 and (among other new benefits) adds protection from malware. The SmartScreen Filter will notify you when you attempt to download software that is unsafe - which the SophosLabs methodology totally bypassed in doing their test.

So while I'm not a fan of companies sensationalizing findings about Windows 7 in order to sell more of their own software, I nevertheless agree with them that you still need to run anti-virus software on Windows 7.  This is why we've made our Microsoft Security Essentials offering available for free to customers. But it's also equally important to keep all of your software up to date through automatic updates, such as through the Windows Update service. By configuring your computers to download and install updates automatically you will help ensure that you have the highest level of protection against malware and other vulnerabilities.

Remember this hilarious video called “A Brief History of the Web” I blogged about in March? The video has won the Best Online Video (standalone) at the OMMA Awards. Very cool! You can see the full list of winners here. If you haven’t seen the “History of the Web” video already, you should ;-)

Now that Windows 7 is available, are you looking for some security baseline recommendations from the experts? Then here’s another timely release from the Microsoft Solution Accelerators team! Today, new security baselines for Windows® 7 and Windows® Internet Explorer® 8 are available for download.

Over the past few months, the Solution Accelerators team collaborated with Microsoft security experts, multiple government agencies worldwide, and a large community of IT security professionals to develop and test these new security baselines.All of these baselines are free for you to use.

In case you are not familiar with all of the security baselines available for Microsoft products, they ship as part of the Security Compliance Management Toolkit (SCMT) Series. The SCMT helps you to plan, deploy, and monitor security baselines for Windows® operating systems, Internet Explorer, and 2007 Microsoft® Office applications. It contains background information about compliance, and planning advice about how to automate security compliance. It also refers you to other tools and guidance that you can use to establish and deploy a security baseline, and then monitor and maintain compliance with your established configuration.

Where do you start?

At a high level, security compliance consists of four basic steps:

1. Plan how to meet security baseline requirements.
2. Deploy security baseline configurations.
3. Monitor security baseline configurations.
4. Remediate security baseline configurations.

The tools, guidance, and recommendations in the SCMT help you through each step of this process and give you the support to make key decisions about security baseline settings for your specific environment.

Here’s what you get:

• Security guide – The toolkits include new and updated security guides for Windows 7, Windows Vista, Windows XP, Windows Server 2008, Windows Server 2003 SP2, Microsoft Office 2007 SP1, and Internet Explorer 8. The guidance provides you with best practices and automated tools to help you plan and deploy your security baselines.
• Attack Surface Reference workbook – A resource that lists the changes introduced as server roles are installed on computers running Windows Server 2003 and Windows Server 2008.
• Security Baseline Settings workbook – A resource that lists all of the prescribed settings for each of the preconfigured security baselines that the guides recommend.
• Security Baseline XML – XML files that allow you to consume the data defined in the security baseline settings workbooks.
• GPOAccelerator tool – A tool that you can use to create all of the Group Policy objects (GPOs) you need to deploy your chosen security configuration. This release also supports creating security configurations on computers not joined to a domain.
• Baseline Compliance Management Overview – The overview discusses best practices on how to monitor security baselines for Windows operating systems, Office applications, and Internet Explorer 8.
• DCM Configuration Pack User Guide – A step-by-step prescriptive user guide about how to use Configurations Packs with the DCM feature in Configuration Manager 2007 R2.
• DCM Configuration Packs – Configuration Packs that provide prescriptive security information, which you can use to check the compliance of systems in your environment.

What should you do next?

• Learn more about the Security Compliance Management Toolkit Series.
• Download the Security Compliance Management Toolkit Series.
• Find other Windows 7 Solution Accelerators here: Windows Desktop Solution Accelerators.
• The Solution Accelerators team is developing a new tool called the Security Compliance Manager. It will help you manage your security and compliance process for the most widely used Microsoft technologies. Join the Beta review program and provide your feedback on the features you want most.
• Get all the step by step guides, whitepapers, how to’s and screen casts on deploying and managing Windows 7 in your environment from the Springboard Series on TechNet.

Gartner Symposium/ITxpo 2009, the industry's largest and most important annual gathering of CIOs and their senior IT leaders is taking place this week in Orlando, Florida.

During this year’s event, which will focus on how business technology can help customers return to growth by balancing cost optimization and risk mitigation, Microsoft will be helping customers to understand how they can realize the benefits of Windows 7 through the following activities and sessions:

Windows 7 Early Adopter Customer Panel: Tuesday, October 20th, 2009   12:30PM - 1:30PM ET (Moderated by Michael A. Silver - Gartner)

A panel of Windows 7 early adopters will discuss Windows 7 planning, deployment tips and rollout plans. During the panel, attendees will share their experience on planning for a successful deployment and the immediate results they received deploying Windows 7. Featured Gartner Research VP & Distinguished Analyst Michael Silver will facilitate the panel discussion. Please visit Gartner.com for a replay of this webcast on October 22nd.

Windows 7 Unplugged-- Tips From Microsoft's CIO Office: Tuesday, October 20th, 2009 2:00Pm - 2:20PM ET (Rick Merrifield - Microsoft)

In this interactive session, the Chief Architect in Microsoft’s IT department will share insider tips on how to plan, pilot and rollout Windows 7. Learn how your organization can benefit from applying the Windows Optimized Desktop to increase end user productivity, enhance security and reduce costs by automating IT management.

Windows Optimized Desktop-- Windows 7 and Microsoft Desktop Optimization Pack: Wednesday, October 21st  3:30PM -4:30pm ET (Gavriella Schuster - Microsoft)

The Windows Optimized Desktop is designed to help with today’s imminent IT challenges while ensuring your future success. Come learn how Microsoft Windows 7 and the Microsoft Desktop Optimization Pack 2009 R2 together provide better user productivity, stronger data protection, security and PC management and automation improvements that can help you  save costs and improve IT efficiency.

Mastermind Keynote with Stephen Elop, President, Microsoft Business Division Thursday,  October 22nd 11:00am - 11:45am (Moderated by Neil MacDonald and Brian Gammage - Gartner)

Gartner analysts Neil MacDonald and Brian Gammage will moderate an interview with Stephen on a variety of topics top of mind for Symposium attendees. As president of the Microsoft Business Division, Stephen oversees the Information Worker, Microsoft Business Solutions and Unified Communications Groups here at Microsoft and is a member of the company's senior leadership team that sets overall strategy and direction for the company.

Windows 7 Hand On Labs— Monday, October 19th - Thursday,  October 22nd Various times (Various presenters)

30 minute, proctor led, interactive sessions where attendees can experience the following features of Windows 7: Windows 7 UI features, Internet Explorer 8 & Web Slices, Problem Steps Recorder, Med-V (using Internet Explorer to launch a Med-V web site), and using BitLocker which will include a 1GB key drive to activate BitLocker as a giveaway, with pre-loaded content including the current product guide and the Microsoft Optimized Desktop datasheet.

Today, we are announcing that we are extending the Browser for the Better Campaign with Internet Explorer 8. We will continue to help fight hunger by donating 8 meals for every download of Internet Explorer 8 throughout the month of September. September is Hunger Action Month.

We want to encourage our customers to upgrade to a modern and secure browser – so we are doubling donations for people who switch from Internet Explorer 6 to Internet Explorer 8 through this campaign. If you move from Internet Explorer 6 to Internet Explorer 8, we will donate 16 meals to help fight hunger!

For more information, see this press release from Feeding America.