409965 – Microsoft Purview compliance portal: Insider Risk Management- Adaptive scopes

cloudscout.one Icon

check before: 2024-12-01

Product:

Entra, Purview Communication Compliance, Purview Information Protection, Purview Insider Risk Management

Platform:

US Instances, Web, World tenant

Status:

In development

Change type:

Links:

Details:

Ability to target IRM policies using global Adaptive Scopes. Adaptive scopes within IRM policies allow admins to use existing adaptive scopes created on the Microsoft Purview compliance portal within IRM policies, Adaptive scopes can be created using queries to define user groups dynamically. This feature provides more powerful targeting for policies, allowing different settings to be assigned to users based on attributes from Entra ID without the administrative burden of creating and maintaining groups. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, data leakage, and security violations. Insider Risk Management enables customers to create policies based on their own internal policies, governance, and organizational requirements. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to help ensure user-level privacy.

Change Category:
XXXXXXX ... free basic plan only

Scope:
XXXXXXX ... free basic plan only

Release Phase:
General Availability, Preview

Created:
2024-09-17

updated:
2024-09-17

Public Preview Start Date

XXXXXXX ... free basic plan only

Docu to Check

XXXXXXX ... free basic plan only

MS workload name

XXXXXXX ... free basic plan only

summary for non-techies**

Adaptive Scopes within Microsoft Purview's Insider Risk Management (IRM) enable IT administrators to dynamically manage user groups for security policies based on specific attributes, reducing manual updates and ensuring policies are always current. This feature enhances efficiency, aligns with organizational governance, and maintains high privacy standards through pseudonymization and role-based access controls.

Direct effects for Operations**

Implementation of Adaptive Scopes in Insider Risk Management
Without proper preparation, the implementation of adaptive scopes may lead to misconfigured policies that could either over-restrict or under-restrict user access, resulting in either unnecessary alerts or missed insider threats.
   - roles: Compliance Officer, IT Security Manager
   - references: https://techcommunity.microsoft.com/t5/security-compliance-identity/insider-risk-management-in-microsoft-purview/ba-p/3651230, https://www.microsoft.com/en-us/security/blog/2022/09/15/insider-risk-management-in-microsoft-purview/

User Experience Disruption due to Policy Misconfiguration
If adaptive scopes are not properly tested before deployment, users may experience disruptions in their access to necessary resources, leading to decreased productivity and potential frustration.
   - roles: End User, IT Support Specialist
   - references: https://www.forbes.com/sites/bernardmarr/2021/06/14/the-importance-of-user-experience-in-technology-adoption/?sh=4c1b1c1e7c3b, https://www.microsoft.com/en-us/security/blog/2022/09/15/insider-risk-management-in-microsoft-purview/

Configutation Options**

XXXXXXX ... paid membership only

IT Security**

XXXXXXX ... paid membership only

explanation for non-techies**

XXXXXXX ... free basic plan only

** AI generated content. This information must be reviewed before use.

a free basic plan is required to see more details. Sign up here


A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.



Share to MS Teams

Login to your account

Welcome Back, We Missed You!