Event banner
Event details
20 Comments
- Trevor_Rusher
Community Manager
Thank you for watching this session! We would love to hear your feedback on this event, tell us what you thought here: https://aka.ms/TechAccelSurvey8Hi Shekhar_Palta & tonythem ,
How would you be able to discover data in your tenant for which no sensitive info types have been detected?
- tonythem
Microsoft
Hi Bart, There are two scenarios here: 1. The file actually has no SIT matches. 2. The file has SIT matches, but has never been indexed because it is "cold" - untouched for a very long time. In the case of 1, I think this is an okay outcome. If these files are used, they may get a default label, or a mandatory label if you have it configured. Many customers like to mitigate risk by adding a DLP condition "if the file is not labeled", where the user either has to label or can override when sharing. In the case of 2, we are working on a cold data crawl feature. This is a long-term project, we will have a limited private preview in H2 this year and expect it to come to market some time in 2024.
- is it possible to use a DLP rule to check for the sensitive content written in the Jira ticket ?
- Potentially yes. When you go to Microsoft Defender for Cloud Apps / Investigate / Connected Apps, Atlassian is one of many 3rd party apps that can be controlled there. Please check the product documentation https://learn.microsoft.com/en-us/defender-cloud-apps/connect-atlassian. But you can always request that support.
- Trevor_Rusher
Thanks for joining us today! We’ll continue to answer questions here in the chat for the rest of the half hour and we’ll check back through the end of the week. Thanks to everyone who was able to join us live - and to those catching up on demand!
Up next: Azure network security AMA
- Heather_Poulsen
- is it possible to use a DLP rule to check for PHI uploaded to Jira?
- Shekhar_PaltaYes, you can use endpoint DLP controls to detect and block upload of sensitive content like PHI to certain service domains (in this case JIRA). Please see https://learn.microsoft.com/en-us/microsoft-365/compliance/dlp-configure-endpoint-settings?view=o365-worldwide#service-domains
- what about the content written in the Jira ticket ?
- Considering the recent leak of classified material, are there any templates for the detection of government classified documents? This would be important for companies that are Defense Industry Businesses
- tonythemA few suggestions here are to use document fingerprinting (new capability) or ML-based Trainable Classifiers. For document fingerprinting, relevant docs need to be uploaded to the system so that full or partial matches are detected. For ML models, if the built-in categories aren't sufficient then customers can build their own models.
- So, in short, no. I'll be looking at the new fingerprinting that Shekhar spoke about and looking at building the RegEx required to ensure detection. It would be nice, considering the volume of DIB and government partners that Microsoft has if those capabilities were baked in, rather than being an ad hoc signature or policy derived by each customer on their own.
- Agreed. That would be very helpful
- The video on this page is unavailable.
- The YouTube link is working for me: https://youtu.be/WEbiRUggwmQ
- Strange. It says something about Google Workspace restrictions and won't open. Thanks.
- Trevor_RusherWelcome to Information Protection and DLP and the Microsoft Secure Tech Accelerator. Let's get started! Have a question? Post here in the Comments so we can help. Let’s make this an active Q&A!
