Micrsoft Purview - Insider Risk Management

With the emerge and vast acceptable of digitalization and as the digital landscape continues to grow, the risk landscape for organizations has been changed significantly. Earlier days, insider risk management team are part of the security team who make sure some kind of end-user training on data protection is in place and ensuring the security of corporate assets are in place. 

Due to digitalization and as industry shift totally towards cloud era, the data size is keep growing and growing in exponential manner. More apps, more application organization is demanding and hence more monitoring and required tight control is required to be in place. Personally, I believe due to Covid, the work from home culture demands more the role of Chief Information Security Officer (responsible for data protection and manage the insider risk threats). 

Controlling the security/threats/damages now is not limited to some modules/check points/assessments, it is now altogether a new era and hence Microsoft Purview evolves and comes to drive this journey. Organizations around the globe facing the challenges and it come from outside the organization as well as from inside the organization. 

A product born on business demands. Continuing and growing threats, loss, degrade reputations, financial loss and many such negative impact of the organizations make them have something which can easily able to detect, analyze, and control the upcoming damages. Organization needs to protect their trust and a great culture inside in their organization to move upwards, and so Organizations demand a smart product and experience skilled people to accomplish this.


Microsoft Purview – A perfect well-defined solutions which know what needs to check, where needs to check, thresholds metrics, how to check, what are the policies to define, where to define, how to track, and more importantly how to minimize the risk or damages using a couple of clicks.


Now, lets discuss about insider risk – what is it? 

Let’s define this as a simple way. The risk which is coming from inside a company. For example, someone who is going to leave the organization or planning to leave the organization. Employee do have some plan which directly impact the organization in negative way. As the employee is presence in the organization, so that person has access authorization to the organization’s information and assets. Employee can share the information outside the information, stole assets, publish some important insider content of the organization which not supposed to be seen by the rest of the worlds, or can give anyone outside the organization an access.


Insider Rick Management help us to define some policies, metrics, track some intelligence way who is doing what in respect of what circumstances, and the system should intelligent to take the control and stop doing the damages in real time. 


Below are some reports published by Microsoft while they vigorously analyze and collect the data from different organization about the loss of data and in this respect.


Highest-rated impacts of insider risk events


High concern areas around negative consequences




Insider risk level associated with different departments


Holistic Insider Risk Management Index - Measures how holistic an insider risk management program is based on measurements related to the integration of the following four categories: people, process, tools, and training. The more people focused on and addressed these four elements, the more holistically they were approaching insider risk.


Below are five key characteristics of holistic insider risk management:

1. Prioritize employee trust, productivity, and privacy controls 

2. Attain program buy-in and involvement across the organization

3. Attest that effective training and education are vital

4. Use positive deterrents  more often

5. Integrate tool  usage 


There are many points which we can discuss about the above five key elements, and I'll create a new post on this. However, just to remond this is just the begging and I'm sure lots of things will comes in and place their right to transform this jouerney.

Be safe and be Happy!

Comments

Post a Comment

Popular posts from this blog

How to fix Azure DevOps error MSB4126

Image
Setting up build and release pipeline always tedious and we face many build related issues. Here is one common error I face couple of times while setting app Web or windows apps in Azure DevOps After placing the code in repos, and creating the build pipeline and run it, you can face the following error ##[error]D:\a\8\s\<your solution file>.sln.metaproj(0,0): Error MSB4126: The specified solution configuration "release|$(BuildPlatform)" is invalid. Please specify a valid solution configuration using the Configuration and Platform properties (e.g. MSBuild.exe Solution.sln /p:Configuration=Debug /p:Platform="Any CPU") or leave those properties blank to use the default solution configuration. To understand what is target platform defined in your project you need to visit or open the solution(.sln) file and review the following sections. In my case, this has been defined as x86 as target platform.                   GlobalSecti
Read more

How to create Custom Visuals in Power BI – Initial few Steps

Image
This post will help you to know the steps to create custom visuals in PowerBI. Microsoft defined them as well at https://docs.microsoft.com/en-us/power-bi/service-custom-visuals-getting-started-with-developer-tools . First things first, and you need to download and install NodeJS , in case if you do not have npm setup in your machine.  Second step is to run couple of npm commands to install Power BI Visual Tools and create & publish the cert. Finally, create your own package and upload with the help of npm. 1.       npm install -g powerbi-visuals-tools 2.       pbiviz --create-cert pbiviz --install-cert 3.       pbiviz new My Visual name – This will create the file under the name of your visual file. 4.      pbiviz start – You need to go to the folder where your custom visual  resides, and run this command. You can change a few things in your pbiviz.json file, like author, display name, icon, style etc. Finally, package your
Read more

How to fix Azure DevOps Error CS0579

Image
During build process of one ASP.NET web application in Azure DevOps environment, I face the error  CS0579 multiple times. Everything looks great to me, but continuous crappy error keep saying issues in AssemblyInfo.cs file. Below are few red error I have face during setup this project. "SharePointServicesWebApp\Properties\AssemblyInfo.cs(8,12): Error CS0579: Duplicate 'AssemblyTitle' attribute" ##[error]SharePointServicesWebApp\Properties\AssemblyInfo.cs(9,12): Error CS0579: Duplicate 'AssemblyDescription' attribute ##[error]SharePointServicesWebApp\Properties\AssemblyInfo.cs(10,12): Error CS0579: Duplicate 'AssemblyConfiguration' attribute ##[error]SharePointServicesWebApp\Properties\AssemblyInfo.cs(11,12): Error CS0579: Duplicate 'AssemblyCompany' attribute I was quite sure there is something coming up during build process and make this as duplicate. Because this build process also provides assembly information other way rou
Read more