SharePoint Stuff

Microsoft Information Protection

Updates listed under this heading combines the following products: Azure Information Protection, Microsoft compliance center, Information Protection, Microsoft Defender, Microsoft Intune, Security & Compliance center and Cloud App Security:

• Launched (10)
• Rolling out (7)
• In development (13)

🍾 LAUNCHED

• Microsoft Purview | Communication Compliance Recommended policy actions – Recommended policy actions help organizations discover trends that they may not be aware of, like harassment, threats or sharing of sensitive information. Insights for sensitive information types are surfaced automatically through the existing compliance portal data classification service while insights for machine learning classifiers require an organization to have already configured a policy in Communication Compliance. Insights for both sensitive information types and machine learning classifiers are designed to help organizations holistically set up parameters for internal governance by identifying potential areas of risk and determining the type and scope of communication policies to be configured. Recommended policy actions displays the aggregate number of matches per classification type, with none of the insights containing any personally identifiable information. Roadmap ID:93195
• Microsoft 365 compliance center: Microsoft Purview | New cmdlet for exporting Activity Explorer logs – Export feature of Activity Explorer has limitation of 10,000 rows. Our new feature will allow users to use cmdlet and export all the rows for all the data up to 30 days. Roadmap ID:93281
• Microsoft 365 compliance center: Microsoft Purview | New cmdlet for exporting Activity Explorer logs (U.S. Government clouds) – Export feature of Activity Explorer has limitation of 10,000 rows. Our new feature will allow users to use cmdlet and export all the rows for all the data up to 30 days. Roadmap ID:93316
• Microsoft 365 compliance center | Microsoft Purview: eDiscovery (Premium) – Release of Graph APIs (U.S. Government clouds) – Script common eDiscovery actions using the Microsoft Graph REST APIs. APIs include, but are not limited to: Case, Custodian, Search, Review Set, and Export management. The graph APIs will first be released to the Microsoft Graph beta endpoints, and then ultimately to production in the More Information link below. APIs will show up in preview as they are completed and available in production after most common scenarios are completed. Roadmap ID:93348
• Microsoft 365 compliance center: Microsoft Purview | eDiscovery (Premium) – Support Teams reactions (US Government clouds) – Discover Teams reactions (heart, thumbs up, thumbs down, laugh, surprised, angry) in eDiscovery (Premium). Roadmap ID:88922
• Microsoft Information Protection: Microsoft Purview | SIT Feedback Loop for Content explorer and DLP alerts – Admins can provide feedback for sensitive information type (SIT) False Positives via Content explorer and DLP Alerts. This feedback can be provided in a compliant manner and users can see a summary view of the feedback in the SIT overview page. The feedback will be used to make systematic fixes to SITs for improved accuracy. Roadmap ID:93210
• Microsoft 365 compliance center: Microsoft Purview | DLP incident management in Microsoft Defender portal – This feature provides a singular view for incident management across solutions by making the Microsoft Purview Data Loss Prevention incidents available in the unified incidents queue in the Microsoft Defender portal. In addition, customers can also leverage the M365 Defender connector in Microsoft Sentinel to import all DLP incidents into Sentinel to extend correlation, detection, and investigation across additional Microsoft and non-Microsoft data sources and extend automated orchestration flows using Sentinels native SOAR capabilities. Roadmap ID:93322
• Microsoft 365 compliance center: Microsoft Purview | Insider Risk Management integration with Power Automate – Insider Risk Management integration with Power Automate allows organizations to configure Power Automate flows to automate tasks for Insider Risk Management cases and users. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, security and policy violations, and more. Roadmap ID:93307
• Microsoft Information Protection: Microsoft Purview | New named entities SITs and enhanced unified policy authoring templates – Named entities are sensitive information types (SITs) that can easily be identified by a regular expression or a function; these include person names, physical addresses, and medical terms & conditions. This update adds 52 new SITs representing named entities, and 10 enhanced policy templates that can be used in solutions such as DLP and auto-labeling, and cover important regulations, such as US HIPAA and EU GDPR. Roadmap ID:72221
• Microsoft Defender for Office 365: Built-In Protection – We are introducing Built-In Protection for Microsoft Defender for Office 365 to automatically elevate all users within your organization to the base level of security protection. Built-In Protection will implement a low impact version of Safe Attachments and Safe Links, removing burden on admins to configure users with recommended security settings and policies. This new preset security policy will require no admin action and will be turned on by default for all new and existing customers. As a result, customers will be automatically protected from unintentional configuration gaps in their policies and experience overall improved protection against phish and malicious message delivery to end users.   Roadmap ID:72208

🚂 ROLLING OUT

• Microsoft 365 compliance center: Microsoft Purview | Insider Risk Management – User activity reports – Privacy-enabled security and compliance user activity reports allow Insider Risk Management admins with the appropriate permissions to examine risky user actions that may lead to a potential data security incident, such as an employee attempting to download confidential files to a personal device, for specific users across a defined time period without having to assign them to an Insider Risk Management policy. This helps customers maintain scale and flexibility in cyber risk and data security incident management. Roadmap ID:88491
• Microsoft Purview | Communication Compliance Customer complaints classifier – Detects messages that may suggest customer complaints made on your organization’s products or services, as required by law for regulated industries. This classifier can help customers manage regulatory compliance obligations such as FINRA Rule 4530, FINRA 4513, FINRA 2111, Consumer Financial Protection Bureau, Code of Federal Regulations Title 21 – Food and Drugs, and Federal Trade Commission Act. Roadmap ID:88872
• Microsoft Purview | Communication Compliance Customer complaints classifier (U.S. Government clouds) – Detects messages that may suggest customer complaints made on your organization’s products or services, as required by law for regulated industries. This classifier can help customers manage regulatory compliance obligations such as FINRA Rule 4530, FINRA 4513, FINRA 2111, Consumer Financial Protection Bureau, Code of Federal Regulations Title 21 – Food and Drugs, and Federal Trade Commission Act. Roadmap ID:88996
• Microsoft Information Protection: Microsoft Purview | Granular conditional access policies via “Sensitivity Labels” for SharePoint Online sites for GCC High and DoD – Admins will have the ability to use Azure AD conditional access policies to trigger multi-factor authentication (MFA), device and location policies on a specific SharePoint site collection based by simply attaching CA policies to a label. Roadmap ID:85979
• Microsoft 365 compliance center: Microsoft Purview | Audit (Standard and Premium) – New search – This is a new search for Audit (Standard) and Audit (Premium). This new search offers increased reliability and efficiency for search jobs. It also allows for search jobs to be completed in the background and saved for later reference. Roadmap ID:93236
• Microsoft Information Protection: Microsoft Purview | Granular conditional access policies via “Sensitivity Labels” for SharePoint Online sites – Admins will have the ability to use Azure AD conditional access policies to trigger multi-factor authentication (MFA), device and location policies on a specific SharePoint site collection based by simply attaching CA policies to a label. Roadmap ID:82115
• Microsoft Defender for Office 365: Custom organization branding for quarantine notification (custom sender address and Custom subject) – We are adding capabilities to making it possible for SecOps to customize end user quarantine notifications with their respective organization sender address and custom subject. Doing so helps ensure that users have safe and secure access to their quarantined messages and trains them to recognize legitimate notifications. Roadmap ID:93301

⌛ IN DEVELOPMENT

Release – October 2022

• Microsoft 365 compliance center: Microsoft Purview | eDiscovery (Premium) – Support for Graph Connectors content – Microsoft 365 admins can now connect third-party applications into their environments via Graph Connectors. With this update this content will now be available for eDiscovery workflows including collections, review, and export. Roadmap ID:93414

Release – November 2022

• 🆕 Microsoft Purview | Information Protection: AIP Scanner admin experience moving to Microsoft Purview compliance portal – The AIP Scanner admin configuration is currently managed through the Azure portal. The admin configuration will be moved to the Microsoft Purview compliance portal. Existing users of the Scanner will see their configurations in the Microsoft Purview compliance portal with no additional steps. Roadmap ID:100505
• Microsoft 365 compliance center: Microsoft Purview | Insider Risk Management – Data leaks by disgruntled users – Detects data leaks by users near a stressor event. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, security and policy violations, and more. Roadmap ID:83959
• Microsoft 365 compliance center: Microsoft Purview | Insider Risk Management – Security policy violations by disgruntled users – Detects security violations by users near a stressor event. Includes activity generated by Microsoft Defender for Endpoint alerts, which detect possible security violations performed on devices on devices onboarded to your organization. Roadmap ID:83964

Release – December 2022

• Microsoft Information Protection: Microsoft Purview | Information Protection – Manually apply and edit sensitivity labels on PDFs in Adobe Acrobat – Microsoft Purview Information Protection sensitivity labels are natively integrated into Adobe Acrobat, enabling users to manually label files in Acrobat on the desktop (Windows and macOS). Roadmap ID:93331

Release – January 2023

• 🆕 Microsoft Purview | Information Protection: Configure inheritance of attachment labels to email messages – Configure label policies for email messages with attachments to inherit labels that match the highest classification of those attachments. Roadmap ID:100158
• Microsoft Compliance center: Microsoft Purview | Data Loss Prevention: Decoupling the User Notifications and Policy Tips on Exchange DLP – With this update you will be able to configure policy tips and email notifications in your Microsoft Purview Data Loss Prevention (DLP) policies for Exchange Online independently for more granular control. Roadmap ID:93429
• Microsoft 365 compliance center: Microsoft Purview | Additional third-party data connectors (Veritas) – Use data connectors to import and archive third-party data from social media platforms, instant messaging platforms, document collaboration platforms and more, to mailboxes in your Microsoft 365 organization where you can then apply various Microsoft Purview compliance solutions to the imported data. This helps you ensure that your organization’s non-Microsoft data is in compliance with the regulations and standards that affect your organization. There are more additional connectors to come from Veritas (formerly Globanet). Now available in public preview. Roadmap ID:82038

Release – February 2023

• Microsoft Information Protection: Microsoft Purview | Application of a “default label” to an unlabeled file uploaded to a SharePoint Online document library – With this update, all newly uploaded documents to a document library can “inherit” the configured label for the document library (if not already labeled). Roadmap ID:85621

Release – March 2023

• Microsoft 365 compliance center: Microsoft Purview | Insider Risk Management – Increased set of first-party indicators – Insider Risk Management will now recognize an increase set of first party indicators, including Endpoint (Windows 10), Microsoft Teams, Azure Active Directory, SharePoint Online, and Microsoft Defender for Cloud Apps. Roadmap ID:83966

Release – April 2023

• 🆕 Microsoft Purview | Information Protection: Configure policy tips for emails with sensitivity labels – Configure Data Loss Prevention policies to enable policy tips for emails with sensitivity labels. Roadmap ID:100157

Release – June 2023

• Microsoft 365 Compliance center: Microsoft Purview | Insider Risk Management – Integration with Communication Compliance – Enrich Insider Risk Management signals by integrating a Communication Compliance triggering event during policy configuration. Roadmap ID:93259

Release – August 2023

• Microsoft Information Protection: Microsoft Purview | API to set label on files in SharePoint online in bulk – This is a “set-label” API that third parties and ISVs can use to labels many files across SharePoint via scripting or programmatic manner. Roadmap ID:85620

---