As workplaces transition from remote to hybrid, workers are moving fluidly between work and home devices and networks. This shift poses new set of challenges, and organizations are concerned about worker’s inadvertent mistakes and unsafe data practices leading to more data breaches and exfiltration. Additionally, the great reshuffle is fueling the great exfiltration - with 29% of workers downloading and storing more sensitive corporate data, and 15% uploading more corporate data to personal cloud apps in 2021 as compared to 2020 . Organizations are scrambling to prevent data exfiltration in the cloud and across platforms and applications.
Today we announced Microsoft Purview - a comprehensive set of solutions that help you govern, protect, and manage your entire data estate. This new brand family combines the capabilities of the former Azure Purview and the Microsoft 365 Compliance portfolio that customers already rely on, providing unified data governance and risk management for your organization. As part of this announcement, Office 365 Data Loss Prevention will now be called Microsoft Purview Data Loss Prevention (DLP).
Microsoft Purview DLP helps users make the right decisions and take the right actions while using sensitive data, therefore helping balance security and productivity. Microsoft Purview DLP leverages sensitivity labels from Microsoft Purview Information Protection to create and enforce policies to prevent sensitive data exfiltration through common egress points. Microsoft Purview Information Protection is a built-in, intelligent, unified, and extensible solution to protect sensitive data across your digital estate – in Microsoft 365 cloud services, on-premises data stores, endpoints and mobile devices, third-party SaaS applications, and more. Microsoft Purview DLP is part of Microsoft Purview Information Protection and is offered and managed as a single, integrated, and extensible offering that allows organizations to manage their DLP policies from a single location and has a familiar user experience for both administrators and end-users.
Today we are extremely pleased to announce the general availability of Microsoft Purview Data Loss Prevention for macOS endpoints, enabling organizations to extend their endpoint DLP insights and controls to devices running macOS (Catalina or higher). We know that macOS is an important platform for our customers and are excited to continue to invest in supporting our customers’ multi-platform strategy.
“The endpoint DLP capabilities for macOS help us improve the security posture of our non-windows devices as it alerts users of inappropriate or risky actions on sensitive data and provides actionable policy tips and remediation guidance. This provides Intact the ability to quickly identify and block potential data exfiltration on macOS in addition to Windows” said Sophony Anselme, IT Technical Advisor Specialist, Intact Financial Corporation.
Microsoft Purview DLP helps your organization to move away from a disparate set of tools and benefit from a unified solution that helps detect the use of sensitive data, remediates policy violations, and educates users on how best to handle sensitive data at the endpoint, on-premises, and in the cloud. Microsoft Purview DLP is easy to turn on with protection built-in to Microsoft 365 cloud services, Office apps, Microsoft Edge (on Windows and Mac), and on endpoint devices. You can manage your endpoint DLP policies for macOS from the same place in the Microsoft Purview compliance portal where you manage your DLP policies for other workloads, making it easy to extend your policies and custom sensitive identifiers to macOS endpoints without extensive reconfiguration. Learn more here.
“At Avanade, we are committed to ensuring we have the right processes and technologies in place to keep our people, our data, and our clients safe without hampering employee productivity, and Microsoft’s Endpoint DLP capabilities help us do just that. In addition to Windows, we are now able to enforce the same DLP policies on the Mac endpoints and prevent inappropriate or risky sharing, transfer, and use of sensitive information and quickly identify and prevent potential risks to Avanade.” – said Erika Ludwig, Information Security Manager, Avanade.
DLP for macOS endpoints is a continuation of our promise to extend DLP support for non-Microsoft environments. We previously announced support for Chrome browser through the Microsoft Purview extension for Chrome and various cloud apps such as Dropbox, Box, Google Drive, and others through the integration with Microsoft Defender for Cloud Apps.
Recent endpoint DLP capabilities
In addition to the general availability of endpoint DLP for macOS, we are excited to announce the following recent capabilities that provide additional controls to protect sensitive information on Windows endpoints.
Figure 1: Restricted app groups settings in endpoint DLP
General availability of
Increasing DLP value across different workloads
In addition to endpoint DLP capabilities, we are continuing to add value to Microsoft Purview DLP across several workloads with the general availability of the following capabilities
Leverage your Microsoft Purview Information Protection investments in DLP
You can reuse your investments in Microsoft Purview Information Protection’s unified classification and labelling across Microsoft Purview solutions, including DLP. We are excited to share that DLP policies will support the 50 new Sensitive Information Types (SITs) and 10 new enhanced policy templates spanning Financial, Medical, Health, and Privacy. These new SITs will make it easier to detect person names, physical addresses, and a rich set of medical conditions and terms, enabling your organization to detect sensitive personal data with improved efficiency and accuracy. You can read more about these capabilities in this blog.
We are happy to share that there is now an easier way for you to try Microsoft Purview solutions directly in the Microsoft Purview compliance portal with a free trial. By enabling the trial in the compliance portal, you can quickly start using all capabilities of Microsoft Purview, including Insider Risk Management, Records Management, Audit, eDiscovery, Communication Compliance, Information Protection, Data Loss Prevention, and Compliance Manager.
Visit your Microsoft Purview compliance portal for more details or check out the Microsoft Purview solutions trial (an active Microsoft 365 E3 subscription is required as a prerequisite).
We look forward to your feedback!
The Microsoft Purview Information Protection Team
 With the ‘Great Resignation’ comes the ‘Great Exfiltration’, SECURITYWEEK, Jan 2022
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.