Example: air traffic controller

Page 1 Microsoft 365 Information Protection and Compliance ...

This topic is 1 of 8. Page 1. Microsoft 365 Information Protection and Compliance Capabilities Introduction Microsoft 365 includes a broad set of Information Protection and Compliance capabilities. For more Information about how Microsoft 365 can help financial services institutions meet security Together with Microsoft 's productivity tools, these capabilities are designed to help and Compliance regulations, see Key Compliance and security considerations for US banking and organizations collaborate in real time while adhering to stringent regulatory Compliance capital markets.

Microsoft Teams Environment Woodgrove Bank IT Department Retail and Wealth Management Financial Crime Unit High level Teams logical architecture A common scenario where Teams benefits financial services is when running internal projects or programs. For example, many financial institutions have anti-money laundering and compliance programs in ...

Tags:

  Team, Microsoft, Common, Microsoft teams

Information

Domain:

Source:

Link to this page:

Please notify us if you found a problem with this document:

Other abuse

Transcription of Page 1 Microsoft 365 Information Protection and Compliance ...

1 This topic is 1 of 8. Page 1. Microsoft 365 Information Protection and Compliance Capabilities Introduction Microsoft 365 includes a broad set of Information Protection and Compliance capabilities. For more Information about how Microsoft 365 can help financial services institutions meet security Together with Microsoft 's productivity tools, these capabilities are designed to help and Compliance regulations, see Key Compliance and security considerations for US banking and organizations collaborate in real time while adhering to stringent regulatory Compliance capital markets.

2 Frameworks. In these illustrations, Woodgrove Bank hosts two Teams environments for projects with different This set of illustrations uses one of the most regulated industries, financial services, to demonstrate participants. In each scenario, each team 's Microsoft 365 Group provides a security boundary for how these capabilities can be applied to address common regulatory requirements. Feel free to membership, with Azure Active Directory enforcing multi-factor authentication and other adapt these illustrations for your own use.

3 Conditional access policies for Microsoft Teams. Woodgrove Bank Contoso (guest members). v Microsoft Teams Environment October 2020 2020 Microsoft Corporation. All rights reserved. To send feedback about this documentation, please write to us at This topic is 2 of 8. Page 2. High level Teams logical architecture A common scenario where Teams benefits financial services is when running internal projects or The Anti-money laundering project includes only Woodgrove Bank employees. The Virtual data room . programs. For example, many financial institutions have anti-money laundering and Compliance for project B includes guest members from Contoso.

4 The Virtual Data room acts as a secure place programs in place. In this illustration , Woodgrove Bank hosts two Teams Environments for to share data that can only be accessed by authorized users. Azure Active Directory also enforces projects with different participants. multi-factor authentication and other conditional access policies for guests. Woodgrove Bank Contoso (guest members). IT Department Syndicates Retail and Wealth v External Investors Management Financial Crime Private Equity Unit Firms Microsoft Teams Environment October 2020 2020 Microsoft Corporation.

5 All rights reserved. To send feedback about this documentation, please write to us at This topic is 3 of 8. Page 3. Identify sensitive Information and prevent data loss Microsoft 365 allows all organizations to identify sensitive data within the organization through a Sensitivity labels combination of powerful capabilities, including Microsoft Information Protection (MIP), and Office The following scenario illustrates how sensitive Information can be labeled either through machine 365 Data Loss Prevention (DLP). MIP enables organizations to classify documents and emails learning or manually (shown below through user prompting and education).

6 DLP can scan these labels to intelligently by using sensitivity labels, applied manually or through machine-learning. enforce data loss prevention policies. Woodgrove Bank Contoso Microsoft Information Protection (MIP) Microsoft Teams Environment Automated labeling Sensitivity labels OneDrive for Business SharePoint Online User is prompted to label sensitive Information Exchange Online This message includes sensitive Information . OK. Continued on next page Data loss prevention Once sensitivity labels are applied across the data, DLP can be used to identify documents, emails, The following illustration demonstrates DLP enforcing policies for data that matches several sensitive and conversation by scanning these for the sensitivity labels.

7 It then enforces appropriate policies on Information types (Policy 1) and data labeled Highly Confidential' (Policy 2). We see that if an attempt is this data and lets you monitor, protect, and prevent accidental sharing of sensitive Information . It also made to share data marked Highly Confidential' outside of allowed recipients, DLP blocks the sharing helps users stay compliant without interrupting their workflow. of the Information and prevents data loss. Woodgrove Bank Contoso (guests). Microsoft Teams Environment Data Loss Prevention policies 1.

8 1. OneDrive for Business 2. SharePoint Online 2. Exchange Online 2. October 2020 2020 Microsoft Corporation. All rights reserved. To send feedback about this documentation, please write to us at This topic is 4 of 8. Page 5. Govern data and manage Compliance requirements for retention Retention policies and retention labels Microsoft 365 provides flexible capabilities to define retention policies and retention labels to intelligently Retention policy Retention label implement records-management requirements. Retention settings that you configure can help Assigns the same retention settings Assigns the retention settings at an Compliance with industry regulations requiring you to for content at a container level: at How are they used?

9 Item level (folder, document, email). retain content for a minimum period of time, reduce risk site or mailbox level. in case of litigation or security breaches, and share knowledge in an effective, agile way. A single policy can be applied Labels are applied to individual items . You can use both retention policies and retention labels automatically to multiple or specific at Where are they such as documents, email, or videos at folder level. to assign retention settings. container levels for example, SharePoint applied?

10 Sites or group mailboxes. Both of these come with specific ways to help comply with rules defined by financial regulatory bodies such as SEC Rule 17a-4(f), which requires regulated entities to "Preserve the records exclusively in a non-rewriteable, If an item is edited, deleted, or moved, a Persistence of label/policy The retention label persists if the copy of the content is automatically data is copied or moved to a non-erasable format." Microsoft 365 accomplishes this retained as it existed when you applied different site or mailbox within that by applying a Preservation Lock to a Retention Policy or the retention settings.


Related search queries