Unified DLP Policies in Office 365
Introduction to Unified Data Loss Prevention Policies in Office 365
Every organization is concern about their data security. Regardless of the size of the organization or industry they deal in, organizations want to ensure the security of their data. Office 365 Data Loss Prevention (DLP) helps organizations protect their sensitive information from getting into the wrong hands. Data Loss Prevention policies in Office 365 help organization to protect the confidential data based on business requirements. Earlier this month, Microsoft introduced unified Data Loss Prevention policies in Office 365 to empower IT admins to create, manage and report DLP policies for Exchange Online, SharePoint online and OneDrive for Business from single admin pane.
Administrators are no longer required to setup and manage DLP policies separately for Exchange online, SharePoint Online and OneDrive for Business.
Unified Data Loss Prevention Policies in Office 365 is provided via the the Office 365 Security and Compliance Center. We have discussed Office 365 Security and compliance center in my previous blog post for enabling the auditing of admin users in Office 365. Now with new enhancements in Office 365, admins can create a single DLP policy in the Office 365 Security and Compliance Center that covers Exchange Online, SharePoint Online and OneDrive for Business. The unified DLP platform allows organizations to manage multiple workloads from a single management experience, reducing the time and complexity required to set up and maintain security and compliance within your organization.
New unified DLP Policies experience in Office 365 do not impact any existing policies configuration created
Setting up Unified Data Loss Prevention Policies in Office 365
Setting up unified DLP policies in Office 365 requires you to perform the following steps.
- Login to Office 365 Security and Compliance center with global admin account
- Navigate to Home > Threat Management > Data Loss Prevention
- Click on + icon to create a new DLP policy.
- In new policy wizard, select the DLP policy type and click next. In my case, I have selected the policy type of “Medical and Health Regulation” and creating a HIPPA compliance policy
- Next step is to select the services to which you would like to apply the DLP policy. I have selected all the workloads to apply the policy
By default, SharePoint online and OneDrive is selected. You can also specify the users to whom you would like to apply the policy in SharePoint online and OneDrive for Business.
- Click next and customize the rule if required.
- Once you finalized the policies, click next and define the name and description of the policy. You are also required to turn on or off your compliance policy. By default, when you create a compliance policy from Office 365 Security and Compliance center, it’s setup with the option of “Test it out”.
Once the policies are being created, it will be applied to the users based on your criteria defined during the policy creation.
Unified Data Loss Prevention Policies Reporting in Office 365
With Office 365 Security and Compliance center, Microsoft also provide you unified reporting capabilities for your DLP policies. You can view reports for your DLP policies across Exchange Online, SharePoint Online and OneDrive for Business. This makes it easier to understand the business impact of your DLP polices and uncover actions that violate policies across multiple workloads. To view the report of your DLP policies, you are required to perform the following steps.
- Login to Office 365 Security and Compliance Center
- Navigate to Reports > DLP Policy Matches
DLP Policy matches will give you a unified report of your DLP policies across all platform.