SharePoint Stuff

Microsoft Purview (Information Protection)

Updates listed under this heading combines the following products: Azure Information Protection, Microsoft compliance center, Information Protection, Microsoft Defender, Microsoft Intune, Security & Compliance center and Cloud App Security:

• Launched (2)
• Rolling out (1)
• In development (17)

🍾 LAUNCHED

• Microsoft Defender for Office 365: Automatic management of allow expiration for Tenant allow block list – Allows in the tenant allow block list typically expire after 30 days, meaning legitimate email can continue to be blocked. With this change, Microsoft will automatically extend or remove allow rules based on an assessment of the particular entity. Roadmap ID:98134
• Outlook: Outlook on the web: Junk/Phishing reporting actions integrated with Microsoft Defender for Office 365 – Description: The appearance and behavior of report phishing/junk actions in Outlook on the web can be controlled by admins using User Reported Settings in security.microsoft.com. Admins will be able to control whether the built-in Report actions appear in Outlook on the web, where these messages get reported to, and whether the user is prompted as they report phishing and junk. Roadmap ID: 101515

🚂 ROLLING OUT

• Microsoft Information Protection: Microsoft Purview | Maintain label and protection when creating PDF files from VBA in Word, Excel, and PowerPoint – This feature is for VBA developers who use Office fixed format export functions to create PDFs from documents with sensitivity labels and encryption. By default, all PDFs created using Office’s fixed format export functions will automatically inherit the source document’s label or encryption. Some VBA add-ins may need to be updated to avoid issues when post-processing an encrypted PDF. Roadmap ID: 93406

⌛ IN DEVELOPMENT

Release – January 2023

• Microsoft Defender for Office 365: Categorization of user-reported messages – An updated “Submissions” experience will categorize user-reported messages into individual tabs for Phish, Spam (Junk) etc., based on the user’s report. Roadmap ID:100159

Release – March 2023

• 🆕 Microsoft Defender for Office 365: DMARC aggregate reports for enterprise – As part of the DMARC standard the owner of the domain can request reports about how receivers viewed their traffic which will help the domain owners adjust their sender authentication configurations so they can get to an actionable DMARC policy. Roadmap ID:109535

Release – April 2023

• 🆕 Microsoft Purview compliance portal: Insider Risk Management – Forensic evidence – The forensic evidence capability is an opt-in add-in to Insider Risk Management, helping customers’ security teams get visual insights into potentially risky user actions that might lead to a data security incident. Forensic evidence is off by default and policy creation requires dual authorization. Customers determine what triggers the feature and manage investigation processes. Roadmap ID:109540

Release – May 2023

• Microsoft Purview compliance portal: Information Protection – | PDF files encrypted with sensitivity label can be searched and eDiscovered – With this update, PDF files with sensitivity label (and encryption) can be reasoned over in SharePoint Online, searched, or eDiscovered. Additionally, labels can be applied to the existing PDF files hosted in SharePoint. Roadmap ID:85617

Release – July 2023

• 🆕 Microsoft Purview compliance portal: Data Loss Prevention – DLP Policy tips revamp for Outlook Win32 – Expand the functionality of DLP Policy Tips in Outlook Win32 to support additional top predicates and exceptions for all customers, and also advanced classification for E5 customers. Roadmap ID:109589

Release – September 2023

• 🆕 Microsoft Purview compliance portal: Communication Compliance – Ability to analyze Microsoft Teams meeting transcripts – Microsoft Purview Communication Compliance policies can be configured to analyze Microsoft Teams meeting transcripts for potential policy matches. Communication Compliance provides the tools to help organizations detect regulatory compliance violations (e.g. SEC or FINRA) and business conduct violations, such as inappropriate sharing of sensitive/confidential information, adult content, and using harassing or threatening language. Roadmap ID:109534
• Microsoft Purview | Communication Compliance: Reporting improvements – Improvements in the message details reporting interface will help make it easier to create and download reports for specific users under scope of a policy, including number of alerts generated and remediation actions taken within a specified date range. Roadmap ID:98187
• Microsoft Purview | Communication Compliance – Reduce detection to investigation time from 24 hours to 1 hour (U.S. Government clouds) – This feature will reduce the detection to investigation time to under an hour, allowing your organization to respond promptly to policy violations. The alert will be reviewed by a policy investigator, who is explicitly granted permission to review policy alerts by the Communication Compliance admin role. Roadmap ID:93324
• Microsoft Purview | Communication Compliance: Prioritize analysis of policy-driven alerts with Azure Cognitive Services (U.S. Government clouds) – Leveraging Azure Cognitive Services, messages already matching policy conditions will be categorized in “positive,” “negative,” or “neutral” sentiment, giving policy investigators more context to prioritize potentially riskier messages to address first. Roadmap ID:93246
• Microsoft Purview | Communication Compliance: Message details report – This new Communication Compliance report provides a comprehensive summary of all activities and actions that have occurred against a policy, such as date sent, date flagged, reviewed by, message reconciliation, etc. By providing visibility into policy review activity, this feature can help organizations fulfill regulatory compliance obligations and better track the status and progress for unresolved policy violations. Roadmap ID:93197
• Microsoft Purview compliance portal: Information Protection – | PDF files encrypted with sensitivity label can be searched and eDiscovered (US Government clouds) – With this update, PDF files with sensitivity label (and encryption) can be reasoned over in SharePoint Online, searched, or eDiscovered. Additionally, labels can be applied to the existing PDF files hosted in SharePoint. Roadmap ID:93203
• Microsoft Purview | Communication Compliance: Gain context around ML model policy matches (U.S. Government clouds) – Make more informed remediation actions with machine learning (ML) model highlighting. This feature gives investigators greater context around which word or key phrase triggered an ML model policy match and caused a classifier to catch a message. Roadmap ID:93196
• Microsoft Purview | Communication Compliance: Integration with Power Automate (GCC) – Currently in public preview, Communication Compliance integration with Power Automate allows organizations to configure Power Automate flows to automate tasks for Communication Compliance cases and users. Roadmap ID:88847
• Microsoft Purview | Information Protection: Auto labeling (for files at rest in SharePoint Online) can now label PDF files – This feature enables you to label PDF files at rest via the auto-labeling engine as you would Word, Excel, or PowerPoint files. Roadmap ID:85618
• Microsoft Purview | Communication Compliance: Integration with Power Automate – Currently in public preview, Communication Compliance integration with Power Automate allows organizations to configure Power Automate flows to automate tasks for Communication Compliance cases and users. Roadmap ID:85604
• Microsoft Purview | Communication Compliance: Integration with Power Automate (GCC-High and DoD) – Communication Compliance integration with Power Automate allows organizations to configure Power Automate flows to automate tasks for Communication Compliance cases and users. Roadmap ID:85606
• Microsoft Purview | Communication Compliance: Analyze linked content from OneDrive and SharePoint Online – chats and private channels (U.S. Government clouds) – Communication Compliance policies that detect violations in Microsoft Teams will now analyze the content of documents shared in chats and private channels for potential policy match. Roadmap ID:85587

---