Is your organisation at risk from unmanaged Microsoft 365 Copilot (and other products) access with user-controlled self-service trials and purchases? Microsoft 365 Copilot offers powerful AI-driven productivity enhancements, but if it’s adopted through self-service trials and purchases, it can expose your organisation to unapproved spend, data governance gaps, and compliance risks with potentially hefty consequences.Continue reading “M365 tenant admins beware: Copilot and user self-service purchases are enabled by default”
Tag Archives: Microsoft
Managing AI data risk with Microsoft Purview
As the world gets to grips with the adoption and understanding of AI assistant technologies, from a business perspective, the practicalities and risks also need consideration, with an appropriate strategy in place. Some of the key questions include – This post explores Microsoft Purview’s Data Security Posture Management (DSPM) for AI capabilities. Whilst it’s aContinue reading “Managing AI data risk with Microsoft Purview”
Planning a Microsoft 365 Tenant-to-Tenant Migration: Key Questions
Migrating from one Microsoft 365 tenant to another is rarely a simple ask. It often involves complex considerations across workloads, identities, devices, applications, user experience, and more. Success starts with asking the right questions early and building a strategy that aligns with organisational needs. This post outlines some of the important questions to consider duringContinue reading “Planning a Microsoft 365 Tenant-to-Tenant Migration: Key Questions”
M365 Compliance – Cyber Essentials, NIS2, ISO 27001, CIS
What is Compliance Manager? Compliance Manager is a Microsoft Purview feature that evaluates and reports on tenant configuration, showing areas that need to be fixed to meet the standards or requirements of specific industries, regional areas, or accreditations. A collection of assessment templates for different industries, accreditations, regions and countries are available and used toContinue reading “M365 Compliance – Cyber Essentials, NIS2, ISO 27001, CIS”
Intune Suite
The ‘Microsoft Intune Suite’ plan is a comprehensive set of enhanced features available separately to the standard Intune Plan 1 and Plan 2 offerings and includes features such as remote assistance, application management and cloud PKI. Although an additional cost, the features enable further vendor consolidation opportunities, streamlined integration and management, and improvements to existingContinue reading “Intune Suite”
Insider Risk Management
What is Insider Risk Management? Insider Risk Management is a compliance feature within Microsoft Purview designed to minimise and audit the risk of internal, potentially malicious, risky behaviour such as an employee who is leaving the organisation copying corporate data to public or personal locations. The intent itself may not be malicious, it may justContinue reading “Insider Risk Management”
AAD MFA – Number Matching
What is it? Number matching with MFA is a feature in Azure AD which is currently in public preview that provides enhanced MFA push notifications with an aim of ensuring focused validation of an MFA challenge. Since MFA has become a familiar process for users, there can be instances where complacency may lead to unintendedContinue reading “AAD MFA – Number Matching”
365Pete.blog 