Microsoft 365 roadmap roundup – 11th April 2022

Use these buttons to switch between each product’s roadmap updates.

Microsoft Information Protection

Updates listed under this heading combines the following products: Azure Information Protection, 365 compliance center, Information Protection, Office 365 Advanced Threat Protection, Microsoft Defender, Microsoft Intune, Office 365 Data Loss Prevention and Security and Compliance center.

  • Launched (5)
  • Rolling out (1)
  • In development (17)

🍾 LAUNCHED

  • Microsoft 365 compliance center: Insider Risk Management analytics for Government clouds – The Microsoft 365 Insider Risk Management solution will provide aggregated and anonymized analytics to help identify potential insider risk activity within the organization. This is currently available in public preview. Roadmap ID:82129
  • Microsoft 365 compliance center: Core and Advanced eDiscovery – Enhanced Keyword Query Language (KQL) editor experience (US Government clouds) – The new Keyword Query Language (KQL) editor experiences improves the ability to quickly create an effective query with autofill of common properties and parameters, as well as highlights for potential and breaking errors with recommended mitigations. The KQL editor experience will be available across Core eDiscovery searches and Advanced eDiscovery collections experiences. Roadmap ID:88924
  • Microsoft 365 compliance center: Microsoft 365 data loss prevention on-premises scanner (US Government clouds) – Microsoft 365 DLP on-premises scanner relies on a full implementation of the Azure Information Protection (AIP) scanner to monitor, label, and protect sensitive items. It crawls on-premises data-at-rest in file shares and SharePoint document libraries and folders for sensitive items that, if leaked, would pose a risk to your organization, or pose a risk of compliance policy violation. This gives you the visibility and control you need to ensure that sensitive items are used and protected properly, and to help prevent risky behavior that might compromise them. The information about what the users are doing with sensitive items is made visible in Activity explorer and you can enforce protective actions on those items via DLP policies. Roadmap ID:88960
  • Microsoft Information Protection: Auditing and Analytics in Outlook for iOS, Android, and Mac (GCC, GCC-H)  – Outlook for iOS, Android, and Mac will send user label activity data to the Audit Log and Activity Explorer (depending on licensing configuration) for admins to search and review. Roadmap ID:88978
  • Microsoft Cloud App Security: Cloud Access Security Broker for GCC – The Microsoft Cloud App Security (MCAS) offering for GCC is built on the Microsoft Azure Government Cloud and is designed to inter-operate with the Microsoft 365 GCC environment. Microsoft Cloud App Security is a Cloud Access Security Broker (CASB) that secures SaaS and multi-cloud solutions. It provides rich visibility, control over data travel, and sophisticated analytics to identify and combat cyberthreats across all your cloud services. Roadmap ID:82037

🚂 ROLLING OUT

  • Microsoft 365 compliance center: Compliance Manager – Alerts and notifications for score changes  – This feature will allow admins to set monitoring policies on top of Compliance Manager activities such as score change, improvement action assignment, and evidence upload. A successful policy match will generate an alert which will allow admins to further investigate. Roadmap ID:88964

⌛ IN DEVELOPMENT

Release – April 2022

  • Microsoft Defender for Office 365: Mail latency report – we are making some enhancements to the existing Mail latency report in Defender for Office 365. The chart and filter options will be updated for more clarity. Roadmap ID:93213
  • Microsoft Defender for Office 365: Differentiated protection for Priority accounts – We are introducing differentiated protection for Priority accounts, which will provide users tagged as Priority accounts with a higher level of protection. As part of this release, we are introducing a Context filter within Threat Explorer and the Threat Protection Status report through which you can search for emails where Priority account protection is involved. In addition, the Threat Detection Details tab on the Email Entity page will be updated to show the threats, corresponding detection details, and whether these detections were identified as part of Priority account protection. Roadmap ID:88873
  • Microsoft Defender for Office 365: Investigations triggered by manual actions – In order to provide the most accurate information in the Action center, we’re making a change that creates an investigation when manual actions are taken by admins. As we converge to the security.microsoft.com portal, this will ensure that all actions are shown in the converged action center. This Roadmap Item has been updated to align with new and updated timeline. Roadmap ID:70555

Release – May 2022

  • 🆕 Microsoft Defender for Office 365: ZAP (zero-hour auto purge) alert enhancements – We are enhancing the successful ZAP (zero-hour auto purge) alert and introducing a new ZAP failure alert. Roadmap ID:93206
  • Microsoft 365 compliance center: Communication Compliance – Additional classifier language support – To expand the ability to detect policy violations in communications beyond English, French, Spanish, German, Portuguese, Italian, Japanese, and Chinese, Communication Compliance built-in classifiers (threat, harassment, and profanity) now support these additional four languages: Arabic, Dutch, Korean, and Chinese Traditional. Communication Compliance helps organizations detect explicit code of conduct and regulatory compliance violations, such as harassing or threatening language, sharing of adult content, and inappropriate sharing of sensitive information. Built with privacy by design, usernames are pseudonymized by default, role-based access controls are built in, investigators are explicitly opted in by an admin, and audit logs are in place to help ensure user-level privacy. Roadmap ID:88995

Release – June 2022

  • Microsoft 365 compliance center: Communication Compliance – Prioritize policy matches using Azure Cognitive Services sentiment analysis – Leveraging Azure Cognitive Services sentiment analysis, messages will be flagged as positive, negative, or neutral sentiment, helping policy investigators prioritize riskier messages to address first. Communication Compliance helps organizations detect explicit code of conduct and regulatory compliance violations, such as harassing or threatening language, sharing of adult content, and inappropriate sharing of sensitive information. Built with privacy by design, usernames are pseudonymized by default, role-based access controls are built in, investigators are explicitly opted in by an admin, and audit logs are in place to help ensure user-level privacy. Roadmap ID:88918
  • Microsoft 365 compliance center: Insider risk management – User activity reports – User activity reports allow you to examine activities for specific users for a defined time period without having to assign them temporarily or explicitly to an insider risk management policy. This is currently available in public preview. Insider Risk Management in Microsoft 365 correlates various signals from the chip to the cloud to identify potential malicious or inadvertent insider risks, such as IP theft, security and policy violations, and more. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to ensure user-level privacy. Roadmap ID:88491
  • Microsoft Compliance center: Insider Risk Management: Microsoft Defender for Endpoint alerts – Enables you to import indicators from Microsoft Defender for Endpoint related to unapproved or malicious software installation or bypassing security controls. Insider Risk Management in Microsoft 365 correlates various signals from the chip to the cloud to identify potential malicious or inadvertent insider risks, such as IP theft, security and policy violations, and more. Roadmap ID:83965
  • Microsoft Compliance Center: Expanded support to search and export items in SharePoint and OneDrive for Business Recycle Bin in Advanced eDiscovery – Traditionally, when a site is on hold, the files in the Recycle Bin would be stored in the Preservation Hold library. In cases when a site is not on hold, there is no way to search or export items in the Recycle Bin. The eDiscovery and SharePoint Online teams are making architectural changes that will make the Recycle Bin (both first-stage and second-stage Recycle Bins) in SharePoint Online and OneDrive for Business searchable and exportable by eDiscovery Managers. That means organizations can search and export items in the Recycle Bin regardless of whether a site is on hold or not. Roadmap ID:67092

Release – July 2022

  • Microsoft 365 compliance center: Insider risk management – Microsoft Information Protection (MIP) ML Classifier support – Leverage trainable classifiers from Microsoft Information Protection (MIP) to recognize various content types specific to your organization. Insider Risk Management in Microsoft 365 correlates various signals from the chip to the cloud to identify potential malicious or inadvertent insider risks, such as IP theft, security and policy violations, and more. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to ensure user-level privacy. Roadmap ID:88900
  • Microsoft 365 compliance center: Insider risk management – Noisy signal management – File path exclusions – Define specific file paths to manage user activity signals that may be considered noisy. Insider Risk Management in Microsoft 365 correlates various signals from the chip to the cloud to identify potential malicious or inadvertent insider risks, such as IP theft, security and policy violations, and more. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to ensure user-level privacy. Roadmap ID:88903
  • Microsoft 365 compliance center: Insider risk management – Enhancements to Security Policy Violation template – Leverage risky browsing activity on known hacking, malware, keylogger, and other risky websites to identify security policy violations by insiders. Insider Risk Management in Microsoft 365 correlates various signals from the chip to the cloud to identify potential malicious or inadvertent insider risks, such as IP theft, security and policy violations, and more. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to ensure user-level privacy. Roadmap ID:82144

Release – August 2022

  • Microsoft Information Protection: Maintain label and protection when creating PDF files from Office apps – Labels and protection applied on Office documents will be persisted to the output file when converting to PDF in Word, Excel, and PowerPoint on PC.  Roadmap ID:88516

Release – September 2022

  • 🆕 Microsoft 365 compliance center: New search for Microsoft 365 Audit – This is a new search for Basic Audit and Advanced Audit. This new search offers increased reliability and efficiency for search jobs. It also allows for search jobs to be completed in the background and saved for later reference. Roadmap ID:93236
  • Microsoft 365 compliance center: Advanced eDiscovery – Expanded support to search and export items in SharePoint and OneDrive for Business Recycle Bin (US Government clouds) – Traditionally, when a site is on hold, the files in the Recycle Bin would be stored in the Preservation Hold library. In cases when a site is not on hold, there is no way to search or export items in the Recycle Bin. The eDiscovery and SharePoint Online teams are making architectural changes that will make the Recycle Bin (both first stage and second stage Recycle Bins) in SharePoint Online and OneDrive for Business searchable and exportable by eDiscovery Managers. That means organizations can search and export items in the Recycle Bin regardless of whether a site is on hold or not.  Roadmap ID:93188
  • Microsoft 365 compliance center: Audit search enhancements – This update provides various service optimizations for Audit search, including speed and workflow improvements. For example, you can track status of the searches. Roadmap ID:72202

Release – December 2022

  • Microsoft 365 compliance center: new search for Microsoft 365 Audit (U.S. Government clouds) – This is a new search for Basic Audit and Advanced Audit. This new search offers increased reliability and efficiency for search jobs. It also allows for search jobs to be completed in the background and saved for later reference. Roadmap ID:93237

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s