check before: 2025-05-01
Product:
Microsoft 365 Apps, Microsoft 365 suite, Purview Communication Compliance, Purview Information Protection, Purview Insider Risk Management, SharePoint
Platform:
Online, Web, World tenant
Status:
In development
Change type:
New feature, User impact, Admin impact
Links:
Details:
Coming soon: You will be able to extend Microsoft Purview to the network layer by integrating Purview with your preferred Secure Access Service Edge (SASE) / Security Service Edge (SSE) solution. Through this integration, admins can intercept and inspect traffic flowing through the network layer to identify the presence of sensitive data. This enables admins to detect sensitive data shared with untrusted cloud applications through browsers, applications, APIs, add-ins, and more, including common generative AI, cloud storage, and content sharing services. The signals from inline discovery for the network further enrich Purview solutions including Data Security Posture Management (DSPM) and Insider Risk Management (IRM), helping admins better understand how to reduce data exfiltration risks to locations outside of their organization. Learn more: Building layered protection: New Microsoft Purview data security controls for the browser & network | Microsoft Community Hub (March 24, 2025).
This message is associated with Microsoft 365 Roadmap ID 488807.
[When this will happen:]
Public Preview: We will begin rolling out early May 2025 and expect to complete by late May 2025.
General Availability (Worldwide): We will begin rolling out early December 2025 and expect to complete by late December 2025.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
General Availability, Preview
Created:
2025-04-16
updated:
2025-04-16
Public Preview Start Date
XXXXXXX ... free basic plan only
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
linked item details
XXXXXXX ... free basic plan only
summary for non-techies**
Microsoft is enhancing its Purview platform with new features for data security, integrating with SASE/SSE solutions to monitor network data traffic and allowing administrators to set detailed policies for detecting sensitive information, with a public preview starting in May 2025 and general availability by December 2025.
Direct effects for Operations**
Data Exfiltration Risks
Without proper preparation, the integration may lead to unintentional data exfiltration if sensitive data is not correctly identified and policies are not configured, potentially exposing the organization to compliance violations.
- roles: Data Security Admin, Compliance Officer
- references: https://techcommunity.microsoft.com/blog/microsoft-security-blog/building-layered-protection-new-microsoft-purview-data-security-controls-for-the/4395071
User Experience Disruption
Users may experience disruptions in their workflows if sensitive data sharing is incorrectly flagged or blocked due to misconfigured policies, leading to frustration and decreased productivity.
- roles: End User, IT Support
- references: https://techcommunity.microsoft.com/blog/microsoft-security-blog/building-layered-protection-new-microsoft-purview-data-security-controls-for-the/4395071
Increased Administrative Overhead
The automatic rollout without prior preparation may overwhelm IT admins with the need to quickly configure new policies and manage unexpected incidents, leading to resource strain.
- roles: IT Admin, Data Security Admin
- references: https://www.microsoft.com/microsoft-365/roadmap?searchterms=488807
Configutation Options**
XXXXXXX ... paid membership only
Opportunities**
Enhanced Data Security Monitoring
Integrating Microsoft Purview with a Secure Access Service Edge (SASE) solution allows for real-time monitoring of sensitive data shared over the network. This capability enhances the organization's ability to detect potential data breaches and unauthorized sharing of sensitive information, thereby improving overall data security posture.
- next-steps: Identify and select a compatible SASE/SSE partner for integration. Prepare a plan for implementation, including training for data security admins on how to configure and manage the new policies within the Purview portal.
- roles: Data Security Admins, Compliance Officers, IT Managers
- references: https://techcommunity.microsoft.com/blog/microsoft-security-blog/building-layered-protection-new-microsoft-purview-data-security-controls-for-the/4395071, https://www.microsoft.com/microsoft-365/roadmap?searchterms=488807
Granular Policy Creation for Sensitive Data
With the new collection policies option in Purview, organizations can define specific sensitive information types to monitor and create tailored policies for various user groups. This level of granularity allows for more effective data protection strategies and minimizes the risk of data exfiltration.
- next-steps: Develop a framework for identifying sensitive data types relevant to the organization. Train admins on how to create and manage these granular policies in the Purview portal to ensure effective monitoring and compliance.
- roles: Data Security Admins, Compliance Officers, IT Governance Managers
- references: https://techcommunity.microsoft.com/blog/microsoft-security-blog/building-layered-protection-new-microsoft-purview-data-security-controls-for-the/4395071, https://www.microsoft.com/microsoft-365/roadmap?searchterms=488807
Improved User Awareness and Training
As the new features roll out, there is an opportunity to enhance user awareness regarding data security practices. Educating users about the implications of sharing sensitive data and the organization's policies can foster a culture of security and compliance.
- next-steps: Create a training program that includes information about the new Purview features, data sharing policies, and best practices for data security. Schedule regular training sessions and updates to keep users informed.
- roles: HR Managers, Training Coordinators, Compliance Officers
- references: https://techcommunity.microsoft.com/blog/microsoft-security-blog/building-layered-protection-new-microsoft-purview-data-security-controls-for-the/4395071, https://www.microsoft.com/microsoft-365/roadmap?searchterms=488807
Potentional Risks**
XXXXXXX ... paid membership only
Data Protection**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
Hypothetical Work Council Statement**
XXXXXXX ... paid membership only
DPIA Draft**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 2 weeks ago
