Microsoft 365: The Essential 10 Security Considerations
When we talk about Microsoft 365 security, we are talking about two things: The latter can be used to achieve the former, as well as other (non-Mic...
Read Article →Microsoft Purview Security Posts
Discover the latest insights, best practices, and security research related to Microsoft Purview data governance and compliance.
Search Purview Posts
Filter Posts
Posts
Purview Launches New DLP Policy for Copilot Prompts
A new DLP policy for Copilot prompts monitors blocked sensitive information types like credit card numbers to stop their use in Copilot prompts. Th...
Read Article →Microsoft 365 Announcements at Ignite 2025
The Ignite 2025 keynote was a marathon 150-minute event, but some interesting Microsoft 365 announcements emerged, mostly centered on AI. Microsoft...
Read Article →How to Use PIM with RBAC Roles: Purview, Exchange, and More
Discover how to use PIM with RBAC roles to provide just-in-time access for users. Learn setup for Purview, Exchange, and more, plus the pros, cons,...
Read Article →How to Export Microsoft Purview Permissions (RBAC Roles) Easily
I was recently asked if I knew a way to export Microsoft Purview RBAC roles with members. I couldn’t find a ready solution, so I wrote a PowerShell...
Read Article →Mastering Microsoft Entra Authentication Contexts - Part 3: Advanced Data Protection
With identities and access strengthened in part 2 , it’s time to turn our focus to real-world data protection with Authentication Contexts. One of ...
Read Article →Departmental Risk-Based Segmentation with Purview and Entra
Copyright © 2025 Microsoft Security - All Rights Reserved.
Read Article →Mastering Microsoft Entra Authentication Contexts – Part 1: What They Are, Why They Matter, and How to Use Them
Over my last few posts, I’ve casually mentioned Authentication Context a few times, so I thought it was about time we gave the feature a proper spo...
Read Article →Purview Priority Cleanup Expands to SharePoint and OneDrive
Purview Priority Cleanup is growing its capabilities to be able to process files stored in SharePoint Online and OneDrive for Business. Public prev...
Read Article →DLP Diagnostics Available in Purview Portal
DLP diagnostics were announced in October 2024, and it’s taken quite a while for Microsoft to make the four DLP diagnostic tests available. In trut...
Read Article →How to Block Upload to WeTransfer, DropBox & Google Drive (but Allowing Download) – using Microsoft Purview Data Loss Prevention (DLP)
This blog was created in response to recent policy changes related to the WeTransfer cloud storage service. These changes raised ... Read more
Read Article →In-Depth Series: Mastering DSPM in Microsoft Purview
Copyright © 2025 Microsoft Security - All Rights Reserved.
Read Article →In-Depth Series: DLP Strategy with Microsoft Purview
Copyright © 2025 Microsoft Security - All Rights Reserved.
Read Article →Important Purview eDiscovery Changes Take Effect in May 2025
Microsoft is making some important changes to Purview eDiscovery from May 26, 2025. The changes affect how content searches work and are likely to ...
Read Article →Licensing Auto-Label Policies for Sensitivity Labels
Microsoft Purview makes it easy to apply sensitivity labels to Office documents and PDF files with auto-label policies. Licenses are needed for aut...
Read Article →Why Microsoft Purview projects fail before they even begin - and how to stop that from happening
Microsoft Purview isn’t just another tool you switch on and walk away from. It’s a full-on transformation.
Read Article →Another day, another Purview solution: Data Security Investigations
You know that saying "another day, another dollar"? Pretty sure when the songwriters came up with that, they weren’t talking about...
Read Article →Seal the gaps: new Microsoft Purview data security controls for the browser & network
Introduction Microsoft Purview is stepping up its game again, and this time, they’re bringing data security to the network layer and...
Read Article →Microsoft Purview Series - Part 4
Copyright © 2025 Microsoft Security - All Rights Reserved.
Read Article →Purview Retires the Events Alert Capability from Audit Solution
Microsoft has announced the removal of events alerts from the Purview Audit solution. Fortunately, the decision doesn't affect activity alerts. Aud...
Read Article →Securing Microsoft Business Premium Part 01: The First Step to an Unbreakable Defense
Today kicks off a comprehensive blog series where I’ll delve into the security features of the Business Premium license SKU, offering...
Read Article →Enable all auditable events
You likely aren’t collecting all available events to the Unified Audit Log :( First, not all events are enabled or retained optimally. Consid...
Read Article →Track Sensitivity Label Downgrades and Removals with Audit Log Data
The Purview Insider Risk Management solution can do all sorts of clever things, like tracking sensitivity label downgrades and removals as an indic...
Read Article →Microsoft to Separate Copilot and Teams Compliance Records
In a November 8 post, Microsoft says that Purview Data Lifecycle Management will allow tenants to split processing of Copilot interactions and Team...
Read Article →Using the Members of a Dynamic Microsoft 365 Group to Populate an Adaptive Scope
Adaptive searches are a nice way to target users, sites, and groups for Purview retention processing. But a user adaptive scope can't select member...
Read Article →Purview eDiscovery’s Big Makeover
eDiscovery is a calling best left to skilled investigators. But Microsoft 365 administrators need to know how to search and how the new Purview eDi...
Read Article →The Problem with Scoped Audit Log Searches
Microsoft Purview and the Exchange Online Search-UnifiedAuditLog cmdlet both perform searches of the Microsoft 365 unified audit log. Both mechanis...
Read Article →Microsoft Purview Series - Part 3
Copyright © 2025 Microsoft Security - All Rights Reserved.
Read Article →Microsoft Purview Series - Part 2
Copyright © 2025 Microsoft Security - All Rights Reserved.
Read Article →Monitoring Updates to Sensitivity Label Policies and Labels
A reader wanted to know why the Purview Compliance portal doesn't show who last updated sensitivity label policies. The reason why is unclear, but ...
Read Article →Teams Meeting Audit Events Available to Purview Audit Standard Customers
Microsoft is deploying additional audit events to tenants with Purview Audit (Standard) licenses. Among the 15 Teams events in the set are Teams me...
Read Article →Microsoft Finally Delivers Promised Audit Events to Purview Audit Standard Tenants
A May 20 post contains the welcome news that the new audit events promised for Purview Audit standard customers should be available in June 2024. S...
Read Article →Thoughts on Copilot for Security’s Early Days
April 1, 2024, seen the release of Microsoft Copilot for Security to general availability (GA). It is a generative AI solution integrating with Def...
Read Article →Microsoft Purview Series - Part 1
Copyright © 2025 Microsoft Security - All Rights Reserved.
Read Article →Microsoft Toughens Premium Sensitivity Label License Requirements
According to Microsoft 365 notification MC736438, Microsoft is getting tougher at enforcing the rules for Purview information protection licenses. ...
Read Article →Creating a Hold Report for Purview eDiscovery Cases
Microsoft plans to make an eDiscovery hold report available to tenants in January 2024. This article explains how to use PowerShell to create a sim...
Read Article →How the Auto-label Policy for Cloudy Attachments Works
Cloudy attachments are links to files sent in messages. An auto-label policy can capture copies of cloudy attachments and make them available for e...
Read Article →Get Ahead of Microsoft’s New Free Purview Discovery Plan
Microsoft has released a new free Microsoft Purview Discovery plan which includes brand new features available for free tier users. The post Get Ah...
Read Article →Take Advantage of New Exchange and SharePoint Audit logs for Standard Users
Microsoft expands their Microsoft Purview audit log availability to standard users for premium exchange and SharePoint activities. The post Take Ad...
Read Article →Endpoint Data Loss Prevention (DLP): Protect cloud uploads and printing
Managing the risks around data has become increasingly complex for organizations. At the current stage more and more employees are working from hom...
Read Article →Microsoft Endpoint Data Loss Prevention: Blokkeren van USB bestandstransfers
Databeveiliging en classificatie is belangrijk. Een datalek via een verkeerde aanzender of toegang tot externe databronnen is snel gemaakt, waardoo...
Read Article →