Security and Compliance in Office 365 – PART 1
There are many new possibilities how to make environment secure. Many companies are however even don’t know that there are such possibilities, because they just use some of them or even none of them, which is sad. Companies like to use own security solutions, they love to combine different vendors for such a solution and invest to many settings and integrations between those solutions. Smaller companies just install some firewall and antivirus, but don’t want to make some general settings to prevent attacks. On the other side bigger companies trying to invest to external proxy servers, internal DMZs and network access limitations, but both are not investing into security of such a basic thing like document restrictions. Such a basic scenario, where people will just send documents to their private emails. Scenarios where there are almost no data governance, data loss prevention etc. This article should provide some fundamentals as a potential inspiration of what can be done using Microsoft cloud services in Office 365 & Azure. NOT because there is this super evil villain named GDPR but because there are just such tools in a place.
Alerts – Advanced Compliance in Office 365
- Admin Portal \ Admin Centres \ Security & Compliance
- Security & Compliance Admin Portal \ Alerts \ Manage Advanced Alerts
- Check “Turn On Office 365 Cloud App Security”
- Click on “Go To Office 365 Cloud App Security”
- Office 365 Cloud App Security Portal
You can set many settings. However, you can also create report from many data sources. For example, external proxy provider Zscaler.
The final report should look like this. It collects all the information from the specific data source with view on geolocation and other aspects. Nothing extra complex, but simple provided report based on collected / sync data. Out of box. Almost no investment, only basic setting, in need specification of new policies/alerts.
Classifications – labels, label policies, sensitive information types
Once upon a time, there was a label. Those labels can be set in Classification section in Security & Compliance admin part of the Office 365. This label is not a normal label, it is a magic label based on how Microsoft describe “When published, labels appear in your users’ apps, such as Outlook, SharePoint, and OneDrive. When a label is applied to email or docs (automatically or by the user), the content is retained based on the settings you chose. For example, you can create labels that retain content for a certain time or ones that simply delete content when it reaches a certain age.”
When you are creating a new label, only setting you will met is the name for the label, description for the admins and end users and if there is a need to retention. After the label is created, you can select if it will be auto applied. Ant this is where the fun begins. You select your created label, you can then select if the label will be assigned to the content with sensitive information based on definition or if the label will be automatically assigned to the content with the specific words or phrases. You can specify these information as well as the name for the policy and location to which settings will be applied to – OneDrive, Outlook SharePoint Documents, O365 Groups or combination with includes & excludes. Then review, submit and we are done here.