check before: 2024-12-01
Product:
Entra, Purview Communication Compliance, Purview Information Protection, Purview Insider Risk Management
Platform:
US Instances, Web, World tenant
Status:
In development
Change type:
Links:
Details:
Ability to target IRM policies using global Adaptive Scopes. Adaptive scopes within IRM policies allow admins to use existing adaptive scopes created on the Microsoft Purview compliance portal within IRM policies, Adaptive scopes can be created using queries to define user groups dynamically. This feature provides more powerful targeting for policies, allowing different settings to be assigned to users based on attributes from Entra ID without the administrative burden of creating and maintaining groups. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, data leakage, and security violations. Insider Risk Management enables customers to create policies based on their own internal policies, governance, and organizational requirements. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to help ensure user-level privacy.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
General Availability, Preview
Created:
2024-09-17
updated:
2024-09-17
Public Preview Start Date
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
summary for non-techies**
Adaptive Scopes within Microsoft Purview's Insider Risk Management (IRM) enable IT administrators to dynamically manage user groups for security policies based on specific attributes, reducing manual updates and ensuring policies are always current. This feature enhances efficiency, aligns with organizational governance, and maintains high privacy standards through pseudonymization and role-based access controls.
Direct effects for Operations**
Implementation of Adaptive Scopes in Insider Risk Management
Without proper preparation, the implementation of adaptive scopes may lead to misconfigured policies that could either over-restrict or under-restrict user access, resulting in either unnecessary alerts or missed insider threats.
- roles: Compliance Officer, IT Security Manager
- references: https://techcommunity.microsoft.com/t5/security-compliance-identity/insider-risk-management-in-microsoft-purview/ba-p/3651230, https://www.microsoft.com/en-us/security/blog/2022/09/15/insider-risk-management-in-microsoft-purview/
User Experience Disruption due to Policy Misconfiguration
If adaptive scopes are not properly tested before deployment, users may experience disruptions in their access to necessary resources, leading to decreased productivity and potential frustration.
- roles: End User, IT Support Specialist
- references: https://www.forbes.com/sites/bernardmarr/2021/06/14/the-importance-of-user-experience-in-technology-adoption/?sh=4c1b1c1e7c3b, https://www.microsoft.com/en-us/security/blog/2022/09/15/insider-risk-management-in-microsoft-purview/
Configutation Options**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.