SharePoint Stuff

Microsoft Purview

Updates listed under this heading combines the following products: Azure Information Protection, Microsoft compliance center, Information Protection, Microsoft Defender, Microsoft Intune, Security & Compliance center and Cloud App Security:

• Launched (2)
• Rolling out (3)
• In development (21)

🍾 LAUNCHED

• Microsoft 365 Defender: Secure Score for Government Clouds – Microsoft Secure Score will be available for GCC-H, GCC-M and DoD for assessments on the following Microsoft products: Defender for Endpoint, Defender for Office 365, Defender for Identify, Defender for Cloud Apps and 3rd party applications (through Defender for Cloud Apps). GCC-H, GCC-M and DoD customers will be able to assess their security posture with Secure Score. Roadmap ID:109579
• Microsoft Purview | eDiscovery (Premium): New case creation wizard (U.S. government clouds) – Case creation in eDiscovery (Premium) will follow a step-by-step wizard configuration which allow users to configure case settings such as case member during the creation process. Roadmap ID:101524

🚂 ROLLING OUT

• Microsoft Purview compliance portal: Communication Compliance – Ability to analyze Microsoft Teams meeting transcripts – Microsoft Purview Communication Compliance policies can be configured to analyze Microsoft Teams meeting transcripts for potential policy matches. Teams meeting transcripts are only generated when meeting organizers opt in to meeting recording. Roadmap ID:109534
• Microsoft Defender for Office 365: Within 4 hours option for notifications – We are adding a new Within 4 hours option to end user notifications, allowing users to be able to rely on prompt notification about quarantined items when appropriate.  With this feature users can be rest assured that they will be updated frequently once new items lands on their quarantine folder. Roadmap ID:93304
• Microsoft Defender for Office 365: Easier to sort and filter messages reported by users – It will be easier to sort and filter messages by end users on User reported under Submissions. Roadmap ID:100159

⌛ IN DEVELOPMENT

Rollout starts – April 2023

• 🆕 Microsoft Purview compliance portal: Data Loss Prevention – Incident management in Microsoft Defender portal (U.S. Government clouds) – This feature provides a singular view for incident management by making the Microsoft Purview Data Loss Prevention incident management experience available in the Microsoft Defender portal. Customers can import all DLP incidents into Microsoft Sentinel to extend correlation, detection and investigation across additional Microsoft and non-Microsoft data sources, and extend automated orchestration flows using Sentinel’s native SOAR capabilities. Roadmap ID:117575
• Microsoft Purview compliance portal: Data loss prevention – | Configure Power BI DLP policies to automatically detect upload of sensitive data to Power BI premium workspaces – DLP policies can be configured to automatically detect upload of sensitive data to Power BI premium workspaces and trigger custom policy tip for data owner and/or alert to security admin. Roadmap ID:115474
• Microsoft Defender for Office 365: DMARC policy handling – We are working on improvements to the way that DMARC policy (reject/quarantine) handling is implemented within both consumer and enterprise services. Roadmap ID:117533
• Microsoft Purview compliance portal: eDiscovery (Premium) – Collections options settings enhancements (U.S. Government clouds) – Now eDiscovery admins can define default collection settings, enable eDiscovery managers to customize those defaults for each case and collection, and for each collection the eDiscovery manager can choose from a range of options to ensure the right content is collected per the requirements of the case. These options will include collection of cloud attachments, Teams as conversations, partially indexed items, and more. Roadmap ID:109543

Rollout starts – May 2023

• 🆕 Microsoft Defender for Office 365: Enabling malware filter bypass for SecOps Mailboxes – We are adding the ability for security admins and security operations (SecOps) teams to triage messages with malware verdicts for their own review and analysis. This update enables malware filter bypass on messages delivered to configured SecOps mailboxes in the advanced delivery policy. Roadmap ID:124818
• 🆕 Microsoft Defender for Office 365: Auto allow of third-party phish simulation URLs in email message body – We’re enabling automatic allow of URLs present in the email message body for third-party phishing simulation campaigns. With this update, security admins no longer need to configure simulation URLs to allow in the advanced delivery policy as previously required in order to ensure URLs are not blocked/detonated at time of click. These URLs will now be automatically allowed as part of the advanced delivery email message allow. Roadmap ID:124820
• 🆕 Microsoft Purview compliance portal: Endpoint DLP – Authorized printer groups (U.S. Government clouds) – With this capability, you can create groups of printer devices and designate restrictive actions for each group within your DLP policy in Microsoft Purview Data Loss Prevention. As an example, you will be able to create authorized or unauthorized groups and allow the “Print” activity to certain groups of printers and block “Print” for others. Roadmap ID:124830
• 🆕 Microsoft Purview compliance portal: Endpoint DLP – Network location as a condition in DLP policy  (U.S. Government clouds) – With this capability you will be able to use network location as a condition in your DLP policies in Microsoft Purview Data Loss Prevention. As an example, you will be able to block copying sensitive content to network shares on personal WiFi but not on Corporate WiFi on VPN. Roadmap ID:124831
• 🆕 Microsoft Purview compliance portal: Endpoint DLP – Sanctioned and unsanctioned site groups for different sensitive files (U.S. Government clouds) – With this capability you will be able to create groups of service domains and manage restrictions for the groups within the DLP policy. As an example, you will be able to allow ‘upload’ of sensitive data only to corporate SharePoint sites and block elsewhere. Roadmap ID:124832
• Microsoft Purview compliance portal: Communication Compliance – New built-in trainable and global classifiers (U.S. Government clouds) – This update includes new classifiers for use in Communication Compliance policies, including Corporate sabotage, Gifts & entertainment, Money laundering, Regulatory collusion, Stock manipulation, and Unauthorized disclosure. Roadmap ID:109531
• Microsoft Purview | eDiscovery (Premium) Collections enhancement – Collect to Export – Now admins will be able to directly export a report or results of a Collection without adding to review set first. This will streamline processes for organizations who require ability to conduct analysis on item reports of relevant content and those who need to quickly get data from Microsoft 365 into the hands of audit or regulators. Roadmap ID:100055
• Microsoft Purview compliance portal:  eDiscovery Premium – Collections progress, statistics, and workflow enhancements (GCC, GCC-High) – Now eDiscovery admins can understand the progress of Collections, statistics on what content contributed to changes between estimated items with hits and actual collected items, as well as commit the collection directly from the estimate without navigating through the entire collection wizard. Roadmap ID:93381

Rollout starts – June 2023

• 🆕 Microsoft defender for Office 365: Bulk complaint level (BCL) filtering in Threat protection status report – We are adding a new filter to the Threat protection status report that will allow security admins to easily filter for bulk related email catches at their different complaint level in the organization. With this capability, security admins can take confident bulk email management steps for users in their organization that is backed by the data in the Threat protection status report. Roadmap ID:124784
• Microsoft Defender for Office 365: Email Response actions available through Microsoft Graph Security API – We are introducing email response actions API. Email purge actions like soft delete, hard delete, move to junk etc can be triggered through Microsoft Graph API.Roadmap ID:93434
• Microsoft Purview compliance portal:  eDiscovery Premium – Collections progress, statistics, and workflow enhancements (DoD) – Now eDiscovery admins can understand the progress of Collections, statistics on what content contributed to changes between estimated items with hits and actual collected items, as well as commit the collection directly from the estimate without navigating through the entire collection wizard. Roadmap ID:93382

Rollout starts – July 2023

• Microsoft Purview compliance portal:  eDiscovery (Premium) – Identify Teams as data sources – Simplified picking of relevant Teams and channels (standard, private, and shared) to intelligently identify associated custodian mailboxes, group mailboxes, OneDrive for Business accounts, and SharePoint sites that may contain Teams data that’s relevant to your case.  Roadmap ID:88815

Rollout starts – September 2023

• 🆕 Microsoft Purview compliance portal: Information Protection – Label footers enhancement for emails (U.S. Government clouds) – When labels are configured to add footers, currently the footers accumulate at the very bottom of long email chains. This enhancement now adds footers at the bottom of the most recent reply instead of at the bottom of the whole email thread. Note that this feature supports emails formatted as HTML or PlainText. Support for Rich Text email formats is legacy and will not be improved in Outlook. For emails formatted as Rich Text, label footers will continue to accumulate at the bottom of email threads as before. Roadmap ID:124817
• 🆕 Microsoft Purview compliance portal: Information Protection – Contextual summary support in service-side auto-labeling (U.S. Government clouds) – Contextual summary will be supported in simulation mode for service-side auto-labeling. When reviewing matched items in the Contextual Summary tab, you’ll now be able to easily review what sensitive information type was found as a match in the document. Roadmap ID:124821

Rollout starts – October 2023

• Microsoft Defender for Office 365: Quarantine asynchronous update [stage one] – Microsoft Defender for Office 365 is working to enable additional quarantine enhancements, like partial string search functionality and 1,000 message bulk operation support in quarantine. As a result, we’ll be making adjustments to the release process through an asynchronous approach. the first stage will be the introduction of the asynchronous updates and the second stage will the introduction of enhancement features such as partial string search and 1,000 message bulk support. Roadmap ID:93303

Rollout starts – February 2024

• Microsoft Purview compliance portal : Insider Risk Management – Real-time policy tuning analysis – Policy tuning analysis provides admins with a real-time prediction based on the number of users that could match a given set of policy conditions. It helps organizations efficiently adjust the selection of indicators and thresholds of activity occurrence, so they don’t have too few or too many alerts from a policy. Roadmap ID:122280
• Microsoft Defender for Office 365: Quarantine asynchronous update [stage one] – Microsoft Defender for Office 365 is working to enable additional quarantine enhancements, like partial string search functionality and 1,000 message bulk operation support in quarantine. As a result, we’ll be making adjustments to the release process through an asynchronous approach. the first stage will be the introduction of the asynchronous updates and the second stage will the introduction of enhancement features such as partial string search and 1,000 message bulk support. Roadmap ID:93303

---