Event banner
Event details
How do you prove to new customers that security is tight as opposed to just trusting the settings? Is there a log that proves that nothing slipped through the cracks?
- I'd use the following tools to prove to a customer that their M365 tenant security is tight. (1) The data access governance report in the SharePoint Admin center would help identify potential oversharing that would be equated with loose security re: sharing links and access to sites with files labelled with sensitive labels. If data isn't labelled, the content explorer in Purview would show files in your M365 tenant (SharePoint/OneDrive) that contain sensitive information. You could also use the Communication compliance tool to start detecting communications that discuss certain sensitive information that may lead to clues that someone has access where they shouldn't. On the post-Copilot deployment side, your compliance manager can use the audit log in Purview to view Copilot activities to see who has interacted with Copilot.
- Hello! I'd recommend checking out these two resources, How Microsoft delivers trustworthy AI - https://techcommunity.microsoft.com/t5/copilot-for-microsoft-365/how-microsoft-365-delivers-trustworthy-ai/ba-p/4045596 and https://www.microsoft.com/en-us/trust-center/product-overview
