Is Microsoft Purview going too far, or not far enough? Many things happen on a day to day basis within an organisation. Employees look for new roles, they reply to emails that could be less than 100% above board, but does this mean that Employers should be using policy to detect things like: Leavers, Corporate Sabotage, Gifts and Entertainment.
Data Incontinence – when leaks sneak out
CSF framework: 1. Identify; 2. Protect. Cyber Maturity Level:⭐️⭐️
To prevent data being used against you in the future either through competitive, intellectual or malicious usage or publication? What should you do?
Data Leakage Protection, preventing loss of data
CSF framework: 1. Identify; 2. Protect; 3. Detect; Cyber Maturity Level:⭐️⭐️⭐️⭐️
Who owns the Data? does the business expect SecOps or IT to manage? (Hint: very often “yes”)
Where is the budget for managing the DLP solution coming from after implementation?
Is the business going to accept the inconvenience of DLP rules “upsetting” their daily workflows”
Will the business get sufficient value from the ongoing investment
What Data needs “Loss Prevention”, is there a better way to do DLP, because maybe the business only needs to protect accidental emails etc (Hint: often yes)