Microsoft 365: Providing the tools businesses need to reduce risk

Our data tells a lot about us and our behavior. It can give insight on what we do, our habits, likes, dislikes, what we may do, and ultimately, who we are. With Data being such a powerful tool for analytics and information, it is more important than ever to secure it.

Microsoft 365 is continuously improving the way it manages and secures the data entrusted to them by many organizations and companies. One area that has been at the forefront of conversations is “How is secure is my data?”.  Microsoft has been working to provide tools to help organizations take more control over the security and integrity of their data. 

Microsoft has bundled their tools and features for Microsoft Endpoint Data Loss Prevention (DLP), Double Key Encryption, Risk Management, and communication compliance tools in Microsoft Teams. These key features are all designed with one thing in mind – Protecting Data. 

 

Microsoft Endpoint Data Loss Prevention (DLP)

Microsoft 365 data loss prevention (DLP) to monitor the actions that are being taken on items you've determined to be sensitive and to help prevent the unintentional sharing of those items. Endpoint (DLP) extends the activity monitoring and protection capabilities of DLP to sensitive items that are on Windows 10 devices. 

Picture1.png

It monitors and collects extensive data including:  activity type, client IP, target file path, happened timestamp, file name, user, file extension, file size, previous file name, location, filepath, device name, destination location type, application that performed the copy, removable media device manufacturer, removable media device model, and removable media device serial number.

Double Key Encryption 

Double key encryption is a new offering from Microsoft to assist in heightening security and diminish concerns of cloud data access the concept itself relies on the use of two keys, one that Microsoft has and controls, and one that the company has and controls. In order to access the data, you need to have both keys. Since Microsoft only has access to one key, your data and your organization’s key an inaccessible to them. This makes it easier for organizations such as banks, healthcare, or European companies (GDPR) to be in compliance. 

 

Risk Management 

Previously Microsoft began work on an Insider Risk management tool to identify and help reduce the level of risk associated with data. They have now taken it to the next level by expanding the types of behavior that it deems as “risky”. It now has the ability to detect these behaviors throughout Office 365 (Exchange, Teams, SharePoint). This can be from checking for allowed domains, to monitoring for content downloads or emails that are going to external parties. 

pexels-bongkarn-thanyakij-3751553.jpg

Communication and Compliance with Microsoft Teams 

Organizations have now been given more control over how data is shared within communications as well. Features now allow removal of messages in Teams that are deemed to violate policy, while also giving explanations s to why this is the case. It now even tracks incidents to identify and pinpoint repeated behaviors.

 

The trend and shift towards dispersed work forces has increased the need for organizations to reevaluate the way they think about security, how their information is accessed, shared, and stored. With Microsoft’s continued push towards the cloud, these additional tools and features will help give organizations the control, insight, and assurance they seek to make that move

Collaborative ServicesJimmy PadgettEnhance ITMicrosoft2 Comments