Some recent updates from Microsoft Purview Data Loss Prevention (DLP), which are set to elevate our data protection strategies. With the rapid adoption of artificial intelligence (AI) technologies across organizations, Microsoft is prioritising security by introducing several new capabilities that not only extend DLP protections but also enhance insights for administrators.
Key Highlights of the New Capabilities
1. Extended DLP Coverage: Microsoft Purview DLP is now extending its protective umbrella to new surfaces, including Microsoft 365 Copilot. This functionality allows organisations to enforce policies that prevent AI from processing sensitive, labelled documents, thereby mitigating the risk of data oversharing.
In addition, enhancements have been made for macOS endpoint controls, which now include:
- Archive File Detection: Identify and protect sensitive data within compressed file formats.
- Just-in-Time Protections: Implement real-time safeguards to prevent unauthorised access during critical operations.
- Web-Based Activity Monitoring: Track and control sensitive data interactions across web applications.
2. Strengthened Core Protections: The core DLP capabilities have been significantly bolstered to ensure comprehensive data safeguarding. Key improvements include:
- Broadened File Type Support: Support has been expanded to include over 110 file formats for endpoint DLP, ensuring a wide range of sensitive data is protected.
- Blanket Protections: DLP now offers protections for non-scannable file types, ensuring that even obscure data formats are subject to security measures.
- Enhanced Triage Capabilities: Leveraging Security Copilot, admins can gain insights to identify potential gaps in their DLP strategies and optimise policy coverage effectively.
3. Streamlined Insights & Admin Tools: To simplify admin workflows and improve incident response, several new tools have been introduced:
- Power Automate Connector: Customise workflows with automated incident reporting and data remediation processes.
- Improved Forensic Options: Administrators can now store DLP policy-matched files for deeper investigations, enhancing their ability to respond to security incidents.
- Integrated Defender XDR Filtering: Centralised incident analysis is now more efficient, providing comprehensive oversight of security events.
Why It Matters
As AI technologies continue to proliferate in the workplace, the importance of safeguarding sensitive data cannot be overstated. The new capabilities within Microsoft Purview DLP empower organisations to effectively mitigate AI-related risks while ensuring robust data security across various platforms.
With the public preview of DLP for Microsoft 365 Copilot, organisations can significantly reduce the risk of AI-related oversharing. This is particularly vital in today’s landscape, where data privacy regulations are becoming increasingly stringent.
Addressing Data Oversharing and Insider Risks
Microsoft has also addressed critical challenges such as data oversharing and insider risks through innovative features:
- Data Security Posture Management (DSPM) for AI: This proactive tool identifies sensitive data in user prompts and assesses access permissions in platforms like SharePoint, allowing organisations to mitigate potential risks effectively.
- Enhanced Insider Risk Management: New detection mechanisms are in place to identify risky AI usage, including unauthorised access to sensitive data and potential prompt injection attacks.
Securing and Governing Custom AI
In addition to protecting data in traditional environments, Microsoft is focusing on securing custom AI solutions:
- AI Security Posture Management (AI-SPM): This tool helps organisations discover and reduce risks associated with AI assets across platforms like Azure OpenAI and AWS Bedrock.
- Azure AI Foundry: This collaborative management center facilitates resource management and compliance workflows for developers and security teams, ensuring that AI deployments adhere to security standards.
Conclusion
The latest enhancements to Microsoft Purview Data Loss Prevention are a testament to Microsoft’s commitment to fostering a secure and compliant AI landscape. These updates not only simplify the administrative burden but also empower organisations to navigate the complexities of data protection in an AI-driven world.
For more information on Microsoft Purview Data Loss Prevention and its new capabilities, check out the official Microsoft Purview blog and explore how these innovations can support your organization’s data security strategy.
Let’s embrace these advancements and ensure that our approach to data protection keeps pace with the evolving technological landscape!
