Presentation is loading. Please wait.

Presentation is loading. Please wait.

Data Loss Prevention (DLP) in Microsoft Office 365

Published byEmmeline Small Modified over 6 years ago

Similar presentations

Presentation on theme: "Data Loss Prevention (DLP) in Microsoft Office 365"— Presentation transcript:

1 Data Loss Prevention (DLP) in Microsoft Office 365
1/30/2018 Data Loss Prevention (DLP) in Microsoft Office 365 Kevin Vogl VP of Virtualization & Cloud Champion Solutions Group © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

2 Data Loss Prevention in Microsoft Office
TechReady 17 1/30/2018 Data Loss Prevention in Microsoft Office Identify Protect Monitor End user education Helps to identify monitor protect sensitive data through deep content analysis © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

3 DLP system walkthrough
Backend policy evaluation DLP policy configuration Admin Audit & incident data generation Policy distribution Contextual policy education Information workers

4 DLP Policy Enforcement
Microsoft Exchange 1/30/2018 DLP Policy Enforcement Flexible tools for policy enforcement that provide the right level of control Transport Rules Rights Management Data Loss Prevention APPEND OVERRIDE ENCRYPT REVIEW CLASSIFY REDIRECT ALERT BLOCK © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

5 DLP policy templates Built-in templates based on common regulations
TechReady 17 1/30/2018 DLP policy templates Built-in templates based on common regulations Import DLP policy templates from partners Build your own © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

6 Sensitive content detection
TechReady 17 1/30/2018 Sensitive content detection Predefined rules targeted at sensitive data types Advanced content detection Combination of regular expressions, dictionaries, and internal functions (e.g. validate checksum on credit card numbers) Extensibility for customer and ISV defined data types © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

7 Built-in DLP Content Areas
Country PII Financial Health US US State Security Breach Laws, US State Social Security Laws, COPPA GLBA & PCI-DSS (Credit, Debit Card, Checking and Savings, ABA, Swift Code) Limited Investment: US HIPPA, UK Health Service, Canada Health Insurance card Rely on Partners and ISVs Germany EU data protection, Drivers License, Passport National Id EU Credit, Debit Card, IBAN, VAT, BIC, Swift Code UK Data Protection Act, UK National Insurance, Tax Id, UK Driver License, Passport IBAN, BIC, VAT, Canada PIPED Act, Social Insurance, Drivers License Credit Card, France National Id (INSEE), Drivers License, Passport Japan PIPA, Resident Registration, Social Insurance, Passport, Driving License Bank Account, Australia Drivers License, Passport, Social Insurance Credit Card, Bank Account, Swift Code

8 Content analysis process
Microsoft Exchange 1/30/2018 Content analysis process Examples: Get Content Joseph F. Foster Visa: Expires: 2/2015 RegEx Analysis  a 16 digit number is detected Function Analysis  matches checksum  does NOT match Additional Evidence Keyword Visa is near the number A regular expression for date (2/2015) is near the number Verdict There is a regular expression that matches a check sum Additional evidence increases confidence © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

9 DLP Document Fingerprinting
Advanced deep content analysis enabling new scenarios! A tax firm needs to detect and encrypt standard tax forms, like the 1040 EZ, W2, etc. Company Confidential documents like Patents detected based on their template A Law firm can fingerprint legal forms, and have them detected automatically for policy application Integrates with the existing DLP infrastructure as a custom sensitive information type Surfaced in Exchange, Outlook and OWA

10 Document Fingerprinting
Microsoft Exchange 1/30/2018 Document Fingerprinting Get Template Content Fabrikam Patent Form Tracking Number Author Date Invention Title Names of all authors... CLASSIFICATION RULE with FINGERPRINT CONFIGURATION Create Fingerprint Condensed representation of the template content Document is not stored Stored as a sensitive information type Evaluation + verdict Get Content Fabrikam Patent Form Tracking Number Author Alex Date 1/28/2014 Invention Title Fabrikam Green Energy... Create Fingerprint Temporary in memory representation Used for comparson with source fingerprint created at config time RUNTIME FINGERPRINT GENERATION Verdict Compare the two fingerprints Evaluate a ’containtment coefficient’ to declare template contained in content © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

11 DLP in SharePoint Online
Search for sensitive data Built-in classifications Identification and export Extends to data in OneDrive

12 User education Outlook OWA Empower users to manage their compliance
Contextual policy education Doesn’t disrupt user workflow Can work even when disconnected Admin customizable text and actions

13 Policy Tips in OWA for devices

14 DLP reporting and auditing
Comprehensive view of DLP policy application Drill into specific departures from policy to gain business insights Export to excel workbook & incident reports

15 Real Time Notifications
Match details Rule details Classification Audit data

16 DLP extensibility points
Custom DLP content Supplemental DLP policy rules Supplemental DLP classification rules Incident reports integration with custom workflows Custom reporting solutions Remote PowerShell management

17 Office 365 Compliance Center
Give me one experience Make it easier to manage Central compliance policies which apply across the Office 365 suite Central point for access to existing Exchange and SharePoint compliance features

18 Data Loss Prevention in Compliance Center
Managing DLP policies across Office 365 workloads One policy definition independent of workload One policy lifecycle One set of sensitive type definitions New DLP policy from Template Import DLP policy

19 DLP Feature Set in Office 365
TechReady 18 1/30/2018 DLP Feature Set in Office 365 EXCHANGE and OUTLOOK 2013 NEW in SP1 – EXCHANGE and OUTLOOK 2013 Deep content analysis engine 46 OOB sensitive information types 40 OOB DLP Templates Support for 3rd party defined DLP policy templates Policy Tips in Outlook 2013 Contextual user education and empowerment Incident management Rich reporting Policy Tips in OWA and Mobile OWA Advanced Document Fingerprinting in Exchange, Outlook, and OWA 5 new OOB sensitive information types DLP in SharePoint coming soon © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

20 Summarizing your DLP Deployment
Plan Start with built in templates to start meeting your business or regulatory requirements Customize policy rules, sensitive types and scopes Target a pilot group of users Tune Set Policies to test and notify modes Enable incident reports to access impact of rules Tune based on false positive reports and hit rates Enable Switch policies to enforce mode Continue to tune based on report data trends

21 DLP is a Premium Feature
Available for Exchange Plan 2 Premium SKU’s E3/E4, A3/A4, G3/G4 On-Prem: Enterprise CAL with Services* * Policy Tips will require Office Professional Plus/Pro Plus

Download ppt "Data Loss Prevention (DLP) in Microsoft Office 365"

Similar presentations

© 2010 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.

© 2010 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.
2 DLP helps to identify monitor protect sensitive data through deep content analysis.

2 DLP helps to identify monitor protect sensitive data through deep content analysis.
MIX 09 4/15/2017 11:14 PM © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.

MIX 09 4/15/ :14 PM © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.
Feature: Payroll and HR Enhancements © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.

Feature: Payroll and HR Enhancements © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.
“ “ Accidental email with attachment exposed hundreds of individuals’ names and Social Security Numbers… “ “

“ “ Accidental with attachment exposed hundreds of individuals’ names and Social Security Numbers… “ “
System glitches Malicious intentOops! 39% 24% 37% 97% avoidable! Online Trust Alliance: 2013 Data Protection and Breach Readiness Guide.

System glitches Malicious intentOops! 39% 24% 37% 97% avoidable! Online Trust Alliance: 2013 Data Protection and Breach Readiness Guide.
“ “ Accidental email with attachment exposed hundreds of individuals’ names and Social Security Numbers… “ “

“ “ Accidental with attachment exposed hundreds of individuals’ names and Social Security Numbers… “ “
Compliance in Office 365 Edge Pereira Sandy Millar From Avanade Australia OSS304.

Compliance in Office 365 Edge Pereira Sandy Millar From Avanade Australia OSS304.
Windows 7 Training Microsoft Confidential. Windows ® 7 Compatibility Version Checking.

Windows 7 Training Microsoft Confidential. Windows ® 7 Compatibility Version Checking.
What’s New in Exchange Online. Disclaimer This presentation contains preliminary information that may be changed substantially prior to final commercial.

What’s New in Exchange Online. Disclaimer This presentation contains preliminary information that may be changed substantially prior to final commercial.
Welcome to the Exchange 2013 Webcast Archiving, eDiscovery, & Data Loss Prevention.

Welcome to the Exchange 2013 Webcast Archiving, eDiscovery, & Data Loss Prevention.
“ “ Accidental email with attachment exposed hundreds of individuals’ names and Social Security Numbers… “ “

“ “ Accidental with attachment exposed hundreds of individuals’ names and Social Security Numbers… “ “
Session 1.

Session 1.
“ “ Accidental email with attachment exposed hundreds of individuals’ names and Social Security Numbers… “ “

“ “ Accidental with attachment exposed hundreds of individuals’ names and Social Security Numbers… “ “
Built by Developers for Developers…. © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.

Built by Developers for Developers…. © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.
MEC 2014 4/22/2017 5:53 AM © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks.

MEC /22/2017 5:53 AM © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks.
© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or.

© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or.
© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or.

© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or.
Ankur Kothari Microsoft Corporation. In-Place Archive with secondary quota Access documents with SkyDrive Pro Site Mailboxes enable better collaboration.

Ankur Kothari Microsoft Corporation. In-Place Archive with secondary quota Access documents with SkyDrive Pro Site Mailboxes enable better collaboration.

Similar presentations

Ads by Google