check before: 2025-05-01
Product:
Purview Communication Compliance, Purview Information Protection, Purview Insider Risk Management
Platform:
Online, Web, World tenant
Status:
In development
Change type:
New feature, User impact, Admin impact
Links:
Details:
Summary:
Admins will soon be able to select Communication Compliance policy alerts as indicators in Microsoft Purview | Insider Risk Management policies. This feature will roll out from late May to early July 2025. No action is required before the rollout, but admins should review configurations and notify relevant personnel.
Details:
Coming soon to Microsoft Purview | Insider Risk Management (IRM), admins will be able to select any Communication Compliance (CC) policy alerts as indicators in IRM policies. After this rollout, IRM admins can select any CC policies that they would like to bring into IRM and detect if a user has alerts for these selected CC policies. When an IRM alert is generated, admins can review if there are any alerts for the user in CC under the policies that are enabled as indicators. This feature will help admins and analysts view this information in IRM without switching to CC.
This message is associated with Microsoft 365 Roadmap ID 489838.
[When this will happen:]
Public Preview: We will begin rolling out late May 2025 and expect to complete by early June 2025.
General Availability (Worldwide): We will begin rolling out mid-June 2025 and expect to complete by early July 2025.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
General Availability, Preview
Created:
2025-05-15
updated:
2025-05-15
Public Preview Start Date
XXXXXXX ... free basic plan only
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
linked item details
XXXXXXX ... free basic plan only
summary for non-techies**
Microsoft is enhancing its Purview Insider Risk Management system by integrating alerts from Communication Compliance policies as indicators within IRM policies, streamlining the monitoring process for potential insider risks.
Direct effects for Operations**
Change in Compliance Monitoring
The introduction of Communication Compliance policy alerts as indicators in Insider Risk Management may lead to confusion among admins if they are not prepared for the new configurations. This could result in missed alerts or improper monitoring of insider risks, potentially allowing security incidents to go undetected.
- roles: IRM Admins, Compliance Officers
- references: https://learn.microsoft.com/purview/insider-risk-management-settings-policy-indicators?tabs=purview-portal, https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=489838
User Experience Disruption
If admins do not review and configure the new indicators properly, users may experience delays in response to insider risk alerts, leading to potential security breaches or data leaks. This could negatively impact user trust and overall organizational security posture.
- roles: IRM Admins, End Users
- references: https://learn.microsoft.com/purview/insider-risk-management-settings-policy-indicators?tabs=purview-portal, https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=489838
Configutation Options**
XXXXXXX ... paid membership only
Data Protection**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 1 month ago
