Data Loss Prevention in O365:The Basics

Slides:



Advertisements
Similar presentations
Power BI Sites and Mobile BI. What You Will Learn Sharing and Collaboration Introducing Power BI Exploring Power BI Features and Services Partner Opportunities.
Advertisements

“ “ Accidental with attachment exposed hundreds of individuals’ names and Social Security Numbers… “ “
Acceleratio Ltd. is a software development company based in Zagreb, Croatia, founded in Acceleratio specializes in developing high-quality enterprise.
Compliance in Office 365 Edge Pereira Sandy Millar From Avanade Australia OSS304.
Microsoft Ignite /17/2017 2:11 PM
Version 2.0 for Office 365. Day 1 Administering Office 365 Day 2 Administering Exchange Online Office 365 Overview & InfrastructureLync Online Administration.
Office 365: Efficient Cloud Solutions Wednesday March 12, 9AM Chaz Vossburg / Gabe Laushbaugh.
What Keeps You Awake at Night Compliance Corporate Governance Critical Infrastructure Are there regulatory risks? Do employees respect and adhere to internal.
Module 9 Configuring Messaging Policy and Compliance.
Module 9 Configuring Messaging Policy and Compliance.
Ankur Kothari Microsoft Corporation. In-Place Archive with secondary quota Access documents with SkyDrive Pro Site Mailboxes enable better collaboration.
Module 7 Planning and Deploying Messaging Compliance.
Microsoft Hosting. Simplified admin experience Small Business (1-25)Midsize Business (1-300) Enterprise (unlimited) Full Enterprise admin experience.
“ “ Accidental with attachment exposed hundreds of individuals’ names and Social Security Numbers… “ “
James Lewis and Simon Waight Office 365 security: everywhere you need it to be PRD33 1.
Local Touch—Global Reach Microsoft SharePoint 2013 Overview Stacy Simpkins, Sr. Consultant, Sogeti Florida.
What’s New Data Loss Prevention 14. Information is Everywhere Brings Productivity, Agility, Convenience ……and Problems Copyright © 2015 Symantec Corporation.
One Drive for Business: More Than a File Share Erica Toelle
Your Office 365 Journey Prepare, Migrate, and Operate with Barracuda
Microsoft Virtual Academy Chris Oakman | Managing Partner Infrastructure Team | Eastridge Technology Curtis Sawin | Technical Solutions Professional |
Data Loss Prevention and Information Rights Management in SharePoint Tim Beamer, Plus Consulting
Intro to the Office 365 Security & Compliance Center
Advanced Data governance – labels (data classification)
Your Office 365 Journey Prepare, Migrate, and Operate with Barracuda
Data Loss Prevention (DLP) in Microsoft Office 365
ActiveSync & DLP management in Exchange Online
Secure your complete data lifecycle using Azure Information Protection
Intro to Data Loss Prevention In SharePoint 2016\Office 365
Data Loss Prevention in Office 365
A Winning Combination !! and Good afternoon…
Azure Information Protection Strategy and Roadmap
Deployment Planning Services
Managing onedrive for business
Protect sensitive information with Office 365 DLP
7/23/2018 6:01 PM BRK2282 Protecting complete data lifecycle using Microsoft’s information protection capabilities Gagan Gulati Alex Li Principal.
9/4/2018 6:45 PM Secure your Office 365 environment with best practices recommended for political campaigns Ethan Chumley Campaign Technology Advisor Civic.
Protect your data in Office 365 with Data Loss Prevention
Extending classification ,labeling , and protection to 3rd party applications Kartik Microsoft Tony Digital Guardian Amit Cohen.
Secure your complete data lifecycle using Azure Information Protection
Simplified for business
Smart Org Charts in Microsoft Office 365: Securely Create, Collaborate, Edit, and Share Org Charts in PowerPoint and Online with OrgWeaver Software OFFICE.
9/14/2018 2:22 AM THR2026 Set up secure and efficient collaboration for your organization with Office 365 Joe Davies Senior Content Developer Brenda Carter.
Understanding best practices in classifying sensitive data
Microsoft Intune MAM without Device Enrollment
Office 365 and Azure Data Governance
Introduction to Soonr by ….
Ochrana (nejen) poštovních zpráv pomocí AIP (Azure Information Protection) Miroslav Knotek MVP: Cloud and Datacenter Management, MCSE: Productivity IT.
Skyhigh Enables Enterprises to Use Productivity Tools of Microsoft Office 365 While Meeting Their Security, Compliance & Governance Requirements Partner.
Threat Landscape for Data Security
A Complete Business Productivity Suite
Cloud Access Security Broker Lets Enterprises Enforce Security and Compliance in Office 365 Partner Logo “Skyhigh helps us securely enable high-impact.
Protect your OneDrive and SharePoint files on mobile devices
Securely run and grow your business with Microsoft 365 Business
Which is right for your business, Office 365 or Microsoft 365?
11/16/2018 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
Which is right for your business, Office 365 or Microsoft 365?
Security in SharePoint and Teams with DLP, IRM, and AIP
Top 10 Tips for GDPR Compliance in Office 365
Encryption in Office 365 Shobhit Sahay Technical Product Manager
Managing Content: You Need To Think About More Than Office 365
SPO Demos to Business Value Discussion Pillar Mapping
IN THE PAST, THE FIREWALL WAS THE SECURITY PERIMETER devicesdata users apps On-premises.
4/9/ :42 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.
Microsoft Data Insights Summit
03 | Basic Admin Capabilities
Microsoft Data Insights Summit
Comodo Dome Data Protection
SysKit Security Manager
Security in SharePoint and Teams with DLP, IRM, and AIP
Presentation transcript:

Data Loss Prevention in O365:The Basics An overview of the data loss prevention offerings from Microsoft to help your business stay secure in today's challenging digital world. Don Daubert Covenant Technology Partners Twitter @sharepointroxs ddaubert@mailctp.com

SHAREPOINT SATURDAY ST.LOUIS 2018 Gold Sponsors Silver Sponsors Bronze Sponsors

What is Data Loss Prevention? Data loss prevention (DLP) is a strategy for making sure that users do not send sensitive or critical information outside the enterprise. As part of that strategy a software\cloud solution is usually implemented that uses policies or business rules to protect data. Data at Rest – File Shares, Archives, Storage, Backups. Data In Motion – Across Network, Email, Sharing. Data In Use – Copy\Paste, Printing, Faxing, Screen Capture. How? – Data Matching, Rule Matching, Regex, Metadata.

Who should implement a DLP Strategy? Everyone  Financial Institutions, Educational Institutions, Health Care Types of information to protect HIPPA PII PHI Why - http://focus.forsythe.com/articles/19/10- Reasons-Why-Your-Organization-Needs-Data-Loss- Prevention Auditing, Compliance, Security, Financial, Prevention DLP Deployment Tips - https://www.csoonline.com/article/2134517/it- strategy/strategic-planning-erm-7-strategies-for-a- successful-dlp-strategy.html 45%

DLP vs RMS + Sharing\Intune Together - Both provides a comprehensive way in which customers can protect their data in during the lifecycle of that data including data in motion, at rest and in use. DLP – Files and sensitive types must match rules. DLP – Prevent accidental\intentional sharing and email communication. Some sharing features assist with this Intune Conditional Access policies assist with MDM RMS - Prevent sensitive information from being printed, forwarded, or copied by unauthorized people. Access and permissions stored in file OneDrive For Business and SharePoint Sharing Security - https://techcommunity.microsoft.com/t5/OneDrive-Blog/Introducing-a-new-secure-external-sharing- experience/ba-p/112624 Intune – Secure Devices, Access policies Microsoft 365 – O365, Windows 10, EMS (Enterprise Mobility & Security) - https://www.microsoft.com/en- us/microsoft-365/enterprise/home

What is Data Loss Prevention in O365? Discovery and protection of sensitive data in the enterprise. Risk Mitigation. An automated process to simplify security. Common policies across the enterprise. File protection during lifecycle for data at rest and in motion. In use (Other methods ie RMS, Windows Policies, Internet Policies)- Copy to USB, Screeenshot sharing, Exposure to Dropbox, GoogleDrive Must have E3 or E5 Plan - https://technet.microsoft.com/en- us/library/office-365-plan-options.aspx

Deeper Dive…O365 Identify sensitive information across many locations. Exchange Online SharePoint Online OneDrive For Business Policies apply to each or across all Prevent accidental or intentional sharing of sensitive data Works in the Desktop versions of Word 2016, Excel 2016, Outlook 2016, PowerPoint 2016. Works in Mobile versions of Office Products – OD4B, Outlook, SharePoint. Help users stay compliant – Policy tips. Reporting of incidents. Implement in “test” or “monitor” mode to watch false +- and ensure actions are accurate before deployment. Works hand in hand with O365 Message Encryption.

Under The Hood…Information Sensitive Types Manage from Office 365 Security & Compliance Center. Exchange Online Transport rules and DLP can be created in EXO Admin but will not appear in Security & Compliance. Policies for all (SPO, EXO, OD4B) must be created here. Out Of The Box Information Sensitive Types Definitions SSN, Phone, Drivers License, Credit Card #, Bank Account #. Can create Custom Sensitive Types with .xml and Powershell. Customization - https://support.office.com/en- us/article/create-a-custom-sensitive-information-type- 82c382a5-b6db-44fd-995d-b333b3c7fc30

... Policies Policies contain rules. Where – Location of content to protect. SharePoint Online, Exchange Online, OneDrive For Business. SPO - All or select OD4B – All or Select EXO – All (Cannot chose individual MB’s yet) Rules – These enforce your business requirements. Conditions – The content must match before the rule is enforced -- for example, look only for content containing Social Security numbers that's been shared with people outside your organization. Actions - that you want the rule to take automatically when content matching the conditions is found -- for example, block access to the document and send both the user and compliance officer an email notification. Out Of The Box Templates Simple and Advanced Settings User Notification and Overrides – Business Justification.

Policy Tips – User education and compliance. Outlook 2013 + and Outlook Web SPO & OD4B Excel 2016, Word 2016. Powerpoint 2016 stored on site included in DLP policy Can create and upload custom policies with Powershell. Grouping and Logical Operators Group sensitive information types. Choose the logical operator between the sensitive information types within a group and between the groups themselves. Examples – And, Or, Any Of These Rule Priority Set in order of creation Rule Tuning Adjust for false + or false – Match Accuracy - Percentage of accuracy Labels Can use Labels as a condition for rule matching Publish – Users manually apply Labels Auto-Apply

Deployment - If you’re creating DLP policies with a large potential impact, this sequence is recommended: Start in test mode without Policy Tips and then use the DLP reports and any incident reports to assess the impact. You can use DLP reports to view the number, location, type, and severity of policy matches. Based on the results, you can fine tune the rules as needed. In test mode, DLP policies will not impact the productivity of people working in your organization. Move to Test mode with notifications and Policy Tips so that you can begin to teach users about your compliance policies and prepare them for the rules that are going to be applied. At this stage, you can also ask users to report false positives so that you can further refine the rules. Start full enforcement on the policies so that the actions in the rules are applied and the content’s protected. Continue to monitor the DLP reports and any incident reports or notifications to make sure that the results are what you intend. Reporting Focus on specific time periods and understand the reasons for spikes and trends. Discover business processes that violate your organization’s compliance policies. Understand any business impact of the DLP policies Fine tuning policies and rules

How it Works? That’s Level 200  EXO - Once created, syncs to EXO, Outlook Web, Desktop SPO & OD4B – Search

Questions? Time For Demo?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.