Is your organisation at risk from unmanaged Microsoft 365 Copilot (and other products) access with user-controlled self-service trials and purchases? Microsoft 365 Copilot offers powerful AI-driven productivity enhancements, but if it’s adopted through self-service trials and purchases, it can expose your organisation to unapproved spend, data governance gaps, and compliance risks with potentially hefty consequences.Continue reading “M365 tenant admins beware: Copilot and user self-service purchases are enabled by default”
Tag Archives: M365
M365 Compliance – Cyber Essentials, NIS2, ISO 27001, CIS
What is Compliance Manager? Compliance Manager is a Microsoft Purview feature that evaluates and reports on tenant configuration, showing areas that need to be fixed to meet the standards or requirements of specific industries, regional areas, or accreditations. A collection of assessment templates for different industries, accreditations, regions and countries are available and used toContinue reading “M365 Compliance – Cyber Essentials, NIS2, ISO 27001, CIS”
OneDrive for Business – Version History
Understanding the OneDrive version history feature can prevent uncertainty around data loss when working on files, or avoid spending unnecessary amounts of time trying to undo or fix formatting and content issues. Often a simple few clicks can restore the file to a previous version/point in time which will result in the same or betterContinue reading “OneDrive for Business – Version History”
Insider Risk Management
What is Insider Risk Management? Insider Risk Management is a compliance feature within Microsoft Purview designed to minimise and audit the risk of internal, potentially malicious, risky behaviour such as an employee who is leaving the organisation copying corporate data to public or personal locations. The intent itself may not be malicious, it may justContinue reading “Insider Risk Management”
AAD MFA – Number Matching
What is it? Number matching with MFA is a feature in Azure AD which is currently in public preview that provides enhanced MFA push notifications with an aim of ensuring focused validation of an MFA challenge. Since MFA has become a familiar process for users, there can be instances where complacency may lead to unintendedContinue reading “AAD MFA – Number Matching”
OneDrive Document Scanning
What is it? The OneDrive mobile app can be used to scan documents, whiteboards, business cards and photos. Features include intelligent capture, for example when you select to scan a business card or document, it is specifically looking for an area within the frame that is likely rectangular in shape, and additional editing options. ComparedContinue reading “OneDrive Document Scanning”
Azure AD Conditional Access Policy Templates
The configuration options available in Azure Active Directory Conditional Access Policies have grown rapidly over the last few years, and not implementing them at this point would not only be a waste of available features, but more importantly not provide optimal security configuration for cloud resources. Over the last few years of implementing these policiesContinue reading “Azure AD Conditional Access Policy Templates”
Defender for Endpoint
What is Microsoft Defender for Endpoint? Microsoft Defender for Endpoint is an endpoint security service that offers advanced protection, both proactively and reactively based on a combination of known threats and vulnerabilities, endpoint behavioural analysis and cloud security analytics. Threats can be remediated automatically or manually depending on both the automation level configuration and theContinue reading “Defender for Endpoint”
Defender for Endpoint – Web Content Filtering
What is Web Content Filtering? Web Content Filtering provides the ability to manage which web content users have access to and if applicable, block access to specific or pre-categorised content. There are also softer options such as auditing content which is accessed, warning users when potentially inappropriate content is accessed and options to limit theContinue reading “Defender for Endpoint – Web Content Filtering”
365Pete.blog 