Professional Documents
Culture Documents
Microsoft 365 Information Protection and Compliance Capabilities
Microsoft 365 Information Protection and Compliance Capabilities
Page 1
Microsoft 365 Information Protection and Compliance Capabilities
Introduction
Microsoft 365 includes a broad set of information protection and compliance capabilities. For more information about how Microsoft 365 can help financial services institutions meet security
Together with Microsoft’s productivity tools, these capabilities are designed to help and compliance regulations, see Key compliance and security considerations for US banking and
organizations collaborate in real time while adhering to stringent regulatory compliance capital markets.
frameworks.
In these illustrations, Woodgrove Bank hosts two Teams environments for projects with different
This set of illustrations uses one of the most regulated industries, financial services, to demonstrate participants. In each scenario, each Team’s Microsoft 365 Group provides a security boundary for
how these capabilities can be applied to address common regulatory requirements. Feel free to membership, with Azure Active Directory enforcing multi-factor authentication and other
adapt these illustrations for your own use. conditional access policies for Microsoft Teams.
October 2020 © 2020 Microsoft Corporation. All rights reserved. To send feedback about this documentation, please write to us at CloudAdopt@microsoft.com.
This topic is 2 of 8
Page 2
IT Department Syndicates
Retail and
Wealth v External Investors
Management
October 2020 © 2020 Microsoft Corporation. All rights reserved. To send feedback about this documentation, please write to us at CloudAdopt@microsoft.com.
This topic is 3 of 8
Page 3
Microsoft Information
Protection (MIP) Microsoft Teams Environment
Automated
labeling
Sensitivity labels
OneDrive
for Business
SharePoint Online
OK
1
1
OneDrive
for Business
2
SharePoint
Online
2
Exchange
Online
October 2020 © 2020 Microsoft Corporation. All rights reserved. To send feedback about this documentation, please write to us at CloudAdopt@microsoft.com.
This topic is 4 of 8
Page 5
Woodgrove Bank
Retention Policies
OneDrive for
Business
SharePoint
Online
Exchange
Online
Audit logging notes
changes made to policy
Woodgrove Bank
Create Retention Labels
OneDrive for
Business
SharePoint
Online
Exchange
Online
October 2020 © 2020 Microsoft Corporation. All rights reserved. To send feedback about this documentation, please write to us at CloudAdopt@microsoft.com.
This topic is 4 of 8
Page 8
Govern data and manage compliance requirements for retention: WORM requirement
Retention policies and Preservation locks
Several financial regulations require that electronic data must be stored in a non-erasable format financial regulations by ensuring that after a retention policy’s lock is turned on, it cannot be turned
(WORM: Write-Once-Read-Many). When a retention policy is locked: no one can turn it off, off or made less restrictive. In summary, a locked retention policy can be increased or extended, but it
containers can be added but not removed, policy compliant content can't be modified or deleted by can't be reduced or turned off. Below we see the Preservation Lock applied to data that needs to meet
an administrator during the retention period. Preservation Lock helps you be compliant with these the WORM requirement.
Woodgrove Bank
Retention Policies
OneDrive for
Business
SharePoint
Online
Exchange
Online
Woodgrove Bank
Create Retention Labels
OneDrive for
Business
SharePoint
Online
Exchange
Online
October 2020 © 2020 Microsoft Corporation. All rights reserved. To send feedback about this documentation, please write to us at CloudAdopt@microsoft.com.
This topic is 5 of 8
Page 10
Woodgrove Bank
Information Barrier
policy Financial
Advisor
segment
OneDrive
for Business
Exchange
Online
October 2020 © 2020 Microsoft Corporation. All rights reserved. To send feedback about this documentation, please write to us at CloudAdopt@microsoft.com.
This topic is 6 of 8
Page 11
Woodgrove Bank
OneDrive
for Business
2 SharePoint Online
Exchange
Online
Woodgrove Bank
Communication
Compliance policy
1 1 2
October 2020 © 2020 Microsoft Corporation. All rights reserved. To send feedback about this documentation, please write to us at CloudAdopt@microsoft.com.
This topic is 7 of 8
Page 13
Microsoft 365
Data loss prevention
Sharing
Download
Etc.
Human Resources
events
Departures
Retirements
Etc.
Microsoft Information
Protection
Offensive language
Custom trainable ML
classifiers
Etc.
Other data sources For a video walkthrough of insider risk management capabilities, see aka.ms/insiderriskguide.
Woodgrove Bank
OneDrive
for Business
SharePoint
Online
Exchange
Online
October 2020 © 2020 Microsoft Corporation. All rights reserved. To send feedback about this documentation, please write to us at CloudAdopt@microsoft.com.
This topic is 8 of 8
Page 15
October 2020 © 2020 Microsoft Corporation. All rights reserved. To send feedback about this documentation, please write to us at CloudAdopt@microsoft.com.