Microsoft Purview Insider Risk Management will be rolling out a new capability – sequence detection starting with downloads from third-party sites.
This message is associated with Microsoft 365 Roadmap ID 115495
[When this will happen:]
Rollout will begin at the end of August and is expected to be complete by the end of September.
[How this will affect your organization:]
Admins with appropriate permissions can configure the new sequence feature to detect risky user activities that start with downloading data from third-party domains, such as box.com or dropbox.com. This can help security teams gain visibility into actions that take place in their multi-cloud environments that may lead to a data security incident.
Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, data leakage, and security violations. Insider Risk Management enables customers to create policies based on their own internal policies, governance, and organizational requirements. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to help ensure user-level privacy.
[What you need to do to prepare:]
To begin using this capability, admins with appropriate permissions can configure third-party domains at Insider risk settings > intelligent detections > third-party domains.
Get started with Insider Risk Management in the Microsoft Purview compliance portal.
