Microsoft 365 roadmap roundup – 8 March 2021

Use these buttons to switch between each product’s roadmap updates.

Microsoft Information Protection

Updates listed under this heading combines the following products: Azure Information Protection, 365 compliance center, Information Protection, Office 365 Advanced Threat Protection, Microsoft Defender, Microsoft Intune, Office 365 Data Loss Prevention and Security and Compliance center.

  • Launched (7)
  • Rolling out (2)
  • In development (27)

🍾 LAUNCHED

  • Microsoft 365 compliance center: Auto-apply retention labels leveraging document understanding – Easily assign a retention label created in the Microsoft 365 compliance center to a document understanding model that you created, leveraging the document classification in Project Cortex for dual purposes— business processes and compliance. Roadmap ID: 68690
  • Microsoft 365 compliance center: Advanced Audit log retention (1 year) – Log retention for up to one year to meet investigation requirements and customize retention policies per an organization’s requirements. Roadmap ID: 68878
  • Microsoft Information Protection: Coauthoring in MIP labeled protected files – Multiple authors can edit labeled and protected documents in Word, Excel, and PowerPoint simultaneously, frictionlessly, and with auto-save, as if they were regular documents. Roadmap ID: 68913
  • Microsoft Defender for Office 365: Override Alerts – We’re introducing Override Alerts in Microsoft Defender for Office 365. With these new system alert policies, security admins will now be alerted if a message with a high confidence phish or malware verdict is delivered to a mailbox due a policy or configuration override rule. Roadmap ID: 70567
  • Microsoft 365 Compliance Center: Communication Compliance can now leverage optical character recognition to extract and evaluate messages – Introducing the ability to extract printed or handwritten text from images using Azure’s Computer Vision Optical Character Recognition (OCR). Text extracted will then be evaluated against Communication Compliance policies conditions. Roadmap ID: 70622
  • Microsoft 365 Compliance Center: Communication Compliance now support 7 languages for the Threat, Targeted Harassment and Profanities classifiers – Communication Compliance can now detect threat, targeted harassment, and profanities in the following languages: English, French, Spanish, German, Portuguese, Italian, Japanese, and Chinese. Roadmap ID: 70623
  • Microsoft Defender for Office 365: Email entity page – Email entity page brings a new look to your email investigations, designed to provide a 360 degree view of an email. Roadmap ID: 70665

🚂 ROLLING OUT

  • Microsoft Information Protection: Manual sensitivity labeling available in Office apps for DoD – You can now apply sensitivity labels to important documents and associate the labels with protection policies within the Outlook and Word/Excel/PowerPoint applications. The labels can also be associated with actions like encryption and visual marking. Roadmap ID: 76504
  • Microsoft Information Protection: Automatic and recommended sensitivity labeling available in Office apps for DoD – Automatic and recommended sensitivity labeling, based on content inspection, is natively built into Office apps within Outlook and Word/Excel/PowerPoint applications on Windows (in the Office 365 subscription version of the Office apps) and Office Online. Roadmap ID: 76502

⌛ IN DEVELOPMENT

Release – March 2021

  • 🆕 Microsoft Information Protection: Mandatory labeling in Office apps for gov clouds – Office apps (Word, Excel, PowerPoint, Outlook) will now respect the Admin policy setting to require users to apply a label to documents and emails on Windows, Mac, iOS, and Android (for the Office 365 subscription version of the apps). Roadmap ID: 70789
  • 🆕 Microsoft 365 Compliance Center: Recommendation widget for Teams DLP – A new recommendation widget will appear within the Microsoft 365 compliance center to guide admins in creating a packaged Teams DLP policy if they currently have no policy related to Teams DLP in their policy portfolio. Roadmap ID: 70731
  • 🆕 Microsoft 365 Compliance Center: Data loss prevention (DLP) data surfaced in Activity Explorer – DLP-related data sets which currently flow into Microsoft 365 Audit logs will now also surface within Activity Explorer under an activity called ‘DLP rule matched’. Roadmap ID: 70730
  • 🆕 Microsoft 365 Compliance Center: ServiceNow template for PowerAutomate available within Insider Risk Management – A ServiceNow PowerAutomate template will be provided to integrate Insider Risk Management with ServiceNow. Roadmap ID: 70717
  • 🆕 Microsoft 365 Compliance Center: Enhanced policy creation wizard for Insider Risk Management – We’re improving the experience of Insider Risk Management policy creation, including enhanced guard rails to enforce proper policy configuration. Roadmap ID: 70716
  • 🆕 Microsoft 365 Compliance Center: Enhanced user management in Insider Risk Management solution – We’re improving the experience around manually adding or removing users from Insider Risk Management policy scoring scope. Roadmap ID: 70715
  • 🆕 Microsoft 365 Compliance Center: Policy health check for Insider Risk Management – Insider Risk Management will now surface policy status to identify misconfigured policies which could impact detections. Roadmap ID: 70714
  • 🆕 Microsoft 365 Compliance Center: Insider Risk Management supports sequencing – Insider Risk Management will improve fidelity of detections by looking for sequences of events over time. Roadmap ID: 70713
  • 🆕 Microsoft 365 Compliance Center: Insider Risk Management supports native triggers – The Microsoft 365 Insider Risk Management solution will now leverage native triggers for Data Leak or Departing Employee Data Theft policy templates. Roadmap ID: 70712
  • 🆕 Microsoft 365 Compliance Center: Insider Risk Management supports fine-grained role-based access control – Insider Risk Management will now limit visibility of alerts and cases related to priority users to specific IRM Analysts or IRM Investigators. Roadmap ID: 70711
  • 🆕 Microsoft Cloud App Security: MFA step-up auth – This feature enables enforcing of conditional access policies during a user session. Roadmap ID: 70603
  • Microsoft Defender for Office 365: Safe Links Protection for Microsoft Teams – The power of Safe Links will now be available to protect users from malicious links sent via Microsoft Teams. Roadmap ID: 34298
  • Microsoft Defender for Office 365: Improvements to Alerts and Hunting – Microsoft are releasing a number of updates to alerts and hunting, including: Extending data retention for Threat Explorer and Real-time detections from 7 days to 30 days for trial tenants, after which you will be able to search for data for 30 days. Roadmap ID: 70544
  • Microsoft Information Protection: Changes in display of hierarchical sensitivity labels for Microsoft Teams – For hierarchical sensitivity labels, channel headers will only display the parent label instead of showing the child label. For example, for a sensitivity label such as Confidential\Finance, Teams will only show “Confidential” in the channel header. Roadmap ID: 70566
  • Microsoft Information Protection: AIP client and scanner data available in Audit and Activity explorer – Azure Information Protection (AIP) customers can now access data in Microsoft 365 compliance center Audit logs and Activity explorer, in addition to the AIP Analytics portal. This means that all data logged via AIP client and AIP scanner can be witnessed along with the rest of the Microsoft Information Protection (MIP) and Data Loss Prevention (DLP) data sets from native Office apps and other cloud resources. Roadmap ID: 70600
  •  Microsoft Defender for Office 365: Hunting for Impersonated domains and users – Threat Explorer (P2) and Real-time detections (P1) are powerful near real-time tools to help Security Operations teams investigate and respond to threats. Today we provide filters for Detection Technology with User impersonation or Domain impersonation which show all Phish emails caught by our impersonation detection. Roadmap ID: 70613
  • Microsoft Defender for Office 365: Updates to post-delivery detections and investigations – Microsoft are rolling out updates to alerts and investigations including new alert policies and post-delivery detections related to Zero-hour auto purge (ZAP). Roadmap ID: 70614
  • Microsoft Information Protection: Auto-classification with sensitivity labels in SPO, EXO, OneDrive for gov clouds – Auto-classification with sensitivity labels in OneDrive, SharePoint Online, and Exchange Online will soon be available in GCC, GCC-High and, DoD environments. Roadmap ID: 67125
  • Azure Information Protection: Microsoft 365 Groups: support for Sensitivity Labels in Government Community Clouds – Microsoft 365 Groups will soon support Sensitivity Labels to help you manage privacy and external access. Roadmap ID: 67158
  • Microsoft Information Protection: Automatic and recommended sensitivity labeling available in Office apps for Mac for Government clouds – Automatic and recommended sensitivity labeling, based on content inspection, is natively built into Office apps within Outlook and Word/Excel/PowerPoint applications on Mac. Roadmap ID: 68849
  • Microsoft Information Protection: Exact Data Match to support Auto-labeling – Organizations will be able to configure new or existing Auto-labeling policies using Exact Data Match (EDM) Sensitive Information Types (SITs), enabling more fine-grained control over which sensitive content gets labeled. Roadmap ID: 68881
  • Microsoft compliance center: Advanced eDiscovery Search tab is evolving to Collections tab – Now eDiscovery managers will see Collections in the top navigation of the Advanced eDiscovery solution in place of Search. Collections will provide an enhanced experience for collecting content for the case, including generating preview estimates and options for quickly collecting content directly into a new or existing review set. Roadmap ID: 68914

Release – April 2021

  • Microsoft 365 compliance center: Information governance – Retention policies for Microsoft Teams private channels – This update enables organizations to apply an organization-wide retention policy on Teams private channel messages. Roadmap ID: 70582

Release – June 2021

  • Microsoft Defender for Office 365: Potential Nation State Activity Alerts – Nation state threats are defined as cyber threat activity that originates in a particular country with the apparent intent of furthering national interests. Roadmap ID: 70624
  • Microsoft 365 Compliance Center: Ability to ignore email signature or disclaimer – Provide the ability within Communication Compliance to define text that should be ignored during policy evaluation to avoid false positives.  Roadmap ID: 68133

Release – September 2021

  • Microsoft 365 Compliance Center: Insider risk management hand-off – Introducing a new remediation action in Communication Compliance that will enable a user to be added to an existing Insider risk management policy for further evaluation. Roadmap ID: 68686
  • Microsoft 365 Compliance Center: Ability to set a retention period for a Communication Compliance policy – Introducing the ability to define how long content captured by a Communication Compliance policy is retained. Roadmap ID: 68688

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s