SlideShare a Scribd company logo

30 on Thursday - data loss prevention in SharePoint 2016 - protect your sensitive information - published

Download as PPTX, PDF
A
AntonioMaio2

Enterprise SharePoint deployments contain sensitive data, from intellectual property to compliance impacting information (PII, PCI and PHI). Users are not always aware of what data is classified as sensitive and they can unknowingly create information security and compliance issues. Microsoft SharePoint 2016 provides new Data Loss Prevention (DLP) capabilities that allow us to find and protect sensitive information in SharePoint and OneDrive for business. These capabilities alert users to when they are working with sensitive information, and they help you work with document owners to reduce the risk to your organization and remain compliant with industry regulations. In this session, Demoing Live Protection, Antonio Maio will show you how to deploy and configure DLP in SharePoint 2016 to support your security and compliance objectives.

Technology
1 of 33
Data Loss Prevention in SharePoint 2016: Protect Your Sensitive Information Thank you for joining our webinar!
Who We Are 3,300 professionals Over 20 countries in the Americas, Europe, the Middle East and Asia-Pacific 70+ offices IT Consulting ► Enterprise Content Management Solutions Protiviti is a global consulting firm that helps companies solve problems in finance, technology, operations, governance, risk and internal audit, and has served more than 40 percent of FORTUNE 1000® and FORTUNE Global 500® companies. Protiviti serve clients through a network of more than 70 locations in over 20 countries. Protiviti is a wholly owned subsidiary of Robert Half (NYSE: RHI). Founded in 1948, Robert Half is a member of the S&P 500 index.
Introduction • ‘30 on Thursday’ Webinar Series • 30 minute webinar series • All things SharePoint & Enterprise Content Management! • Upcoming Webinars: • June 9: “SharePoint 2016 and PowerApps Revealed!” • July 14: “Capacity Planning: An Introduction on How to Size and Architect a SharePoint Farm” • Full Schedule: ECM.Protiviti.com/Webinars
Upcoming Roundtables: SharePoint Security Register Now at: ECM.Protiviti.com/Events! Date Time Location Tuesday, May 17 8:30-10:30 am Edina, MN Tuesday, May 17 12:00-2:00 pm McLean, VA Tuesday, May 17 12:00-2:00 pm Atlanta, GA Wednesday, May 25 8:30-10:30 am Chicago, IL Wednesday, May 25 12:00-2:00 pm Houston, TX
Live Tweeting! Tweet us your questions & feedback during the webinar! Tweet @ProtivitiECM and use #30TDLP
Today’s Webinar • Today’s session is being recorded • Archive of past sessions • YouTube.com/ProtivitiSP • Questions: Use the Question Window or tweet us your questions @ProtivitiECM using #30TDLP
Today’s Presenter Antonio Maio Microsoft SharePoint MVP (5x) Senior Manager & Senior SharePoint Architect Protiviti
LET’S GET STARTED!
Data Loss Prevention (DLP) Goals • Protect the business (legal action, sanctions, loss of reputation) • Comply with regulations and business standards DLP is about Finding and Protecting sensitive information • Personally Identifiable Information (PII) • Payment Credit Industry Data (PCI, PCI DSS) • Financial Data • Health Insurance Data etc…
Data Loss Prevention in Office 365 Available through… • Exchange Admin Center • Compliance Center (Protection Center)
Data Loss Prevention in SharePoint 2016 Available through… • Improved eDiscovery Site Collection • New Compliance Policy Center Site Collection
SharePoint 2016 DLP Policies for eDiscovery eDiscovery Center • Create & run DLP Queries to identity sensitive data • Save Queries • Export Data • Highly dependent on SharePoint Search Index!
SharePoint 2016 DLP Policies for Compliance Compliance Center • Create DLP Policies to monitor and enforce protection of sensitive information • Provide administrator notification (via email) • Provide policy tips to users and owners • Block access to files containing sensitive content • Assign policies to existing site collections • Highly dependent on SharePoint Search Index!
SharePoint 2016 DLP Prerequisites • Create a Search Service Application (mandatory) • Start the search service, Define a crawl schedule, Perform a full crawl • Must have a healthy search index and crawl • Configure out-going email (recommended) • Turn on Usage reports (recommended) • Create the eDiscovery or Compliance Center site collections (mandatory– both not needed) • eDiscovery – for DLP Queries to identify where sensitive data exists • Compliance Policy Center – for DLP Policies to monitor or enforce policies • Assign permissions to Compliance team through the Site Collection Members group (recommended)
Creating the Compliance Center • Create a new Site Collection • Site Template - Select the Enterprise tab • Select Compliance Policy Center template • Only One Compliance Center Site Collection per Web Application • Compliance Center cannot cross Web Application boundary (eDiscovery Center can query across Web Applications)
Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • U.S. / U.K. Passport Number • U.S. Individual Taxpayer Identification Number (ITIN) • U.S. Social Security Number (SSN) • No health related data • Cannot customize policy templates or data types
Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • Credit Card Number • U.S. Bank Account Number • U.S. Individual Taxpayer Identification Number (ITIN) • U.S. Social Security Number (SSN) • No health related data • Cannot customize policy templates or data types
Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • Credit Card Number • No health related data • Cannot customize policy templates or data types
Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • Credit Card Number • EU Debit Card Number • SWIFT Code • No health related data • Cannot customize policy templates or data types
Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • ABA Routing Number • Credit Card Number • U.S. Bank Account Number • No health related data • Cannot customize policy templates or data types
Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • U.K. National Insurance Number (NINO) • U.S. / U.K. Passport Number • No health related data • Cannot customize policy templates or data types
Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • SWIFT Code • U.K. National Insurance Number (NINO) • U.S. / U.K. Passport Number • No health related data • Cannot customize policy templates or data types
Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • SWIFT Code • No health related data • Cannot customize policy templates or data types
Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • U.S. Social Security Number (SSN) • No health related data • Cannot customize policy templates or data types
Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • Credit Card Number • U.S. Bank Account Number • U.S. Driver's License Number • U.S. Social Security Number (SSN) • No health related data • Cannot customize policy templates or data types
Create DLP Policies • Create New Policies • Provide Name • Select 1 of 10 templates (no customization) • Select # of instances of sensitive data • Email address to send incident reports • Select to Notify with Policy Tip • Select to Block Access • Assign Policies to site collections (one at time)
Avoiding False Positives Looking for More Than Regular Expressions Finding Credit Card Numbers • Format • Pattern • Checksum (Luhn Algorithm) • 191 related keywords • Confidence Definition • 85% confident if all found within 300 chars • 65% confidence if number found & checksum passes Full Definitions found here: https://support.office.com/en-ie/article/What-the-sensitive-information-types-in- SharePoint-Server-2016-look-for-ec9fdbe2-bb77-455f-a2f6-407a4f54fca5
Finding US Driver’s License Numbers • Format – State Dependent • Pattern • 16 related abbreviations & 75 keywords • State name & State Abbreviation • Confidence Definition • 75% confident if all found within 300 chars • 65% confidence if all found (except keywords) within 300 chars Avoiding False Positives Looking for More Than Regular Expressions Full Definitions found here: https://support.office.com/en-ie/article/What-the-sensitive-information-types-in- SharePoint-Server-2016-look-for-ec9fdbe2-bb77-455f-a2f6-407a4f54fca5
DEMONSTRATION
Important Technical Notes • If its not in the search index DLP policies will not be enforced • Consider your crawl schedule • 4 Timer Jobs used to enforce policies • Policies not enforced on new documents until search crawl and timer jobs complete • Timeliness of policy enforcement depends on priority of policy template • Can take up to 24 hours • Cannot enforce policies on list items – only documents (not yet proven)
Final Thoughts • Data Loss Prevention just one critical part of securing sensitive data • Identifying sensitive data, monitoring its usage and enforcing policies • DLP requires regular management of policies – refine to avoid noise of false positives • SharePoint 2016 DLP is a great start! • Start learning and testing SharePoint 2016 DLP Today • Critical to have healthy search index • Test policies in Staging before deploying to Prod
Questions? Antonio Maio Antonio.Maio@protiviti.com @AntonioMaio2 ECM.Protiviti.com Julia Marple Julia.Marple@protiviti.com @ProtivitiECM
Thank You!

Recommended

SharePoint Saturday Ottawa - How secure is my data in office 365?
SharePoint Saturday Ottawa - How secure is my data in office 365?SharePoint Saturday Ottawa - How secure is my data in office 365?
SharePoint Saturday Ottawa - How secure is my data in office 365?AntonioMaio2
 
Real world SharePoint information governance a case study - published
Real world SharePoint information governance a case study - publishedReal world SharePoint information governance a case study - published
Real world SharePoint information governance a case study - publishedAntonioMaio2
 
Overcoming Security Threats and Vulnerabilities in SharePoint
Overcoming Security Threats and Vulnerabilities in SharePointOvercoming Security Threats and Vulnerabilities in SharePoint
Overcoming Security Threats and Vulnerabilities in SharePointAntonioMaio2
 
Unbreakable Sharepoint 2016 With SQL Server 2016 availability groups
Unbreakable Sharepoint 2016 With SQL Server 2016 availability groupsUnbreakable Sharepoint 2016 With SQL Server 2016 availability groups
Unbreakable Sharepoint 2016 With SQL Server 2016 availability groupsIsabelle Van Campenhoudt
 
SharePoint 2016 The Future is Hybrid, what you need to know about it
SharePoint 2016 The Future is Hybrid, what you need to know about itSharePoint 2016 The Future is Hybrid, what you need to know about it
SharePoint 2016 The Future is Hybrid, what you need to know about itKnut Relbe-Moe [MVP, MCT]
 
SQL 2014 AlwaysOn Availability Groups for SharePoint Farms - SPS Sydney 2014
SQL 2014 AlwaysOn Availability Groups for SharePoint Farms - SPS Sydney 2014SQL 2014 AlwaysOn Availability Groups for SharePoint Farms - SPS Sydney 2014
SQL 2014 AlwaysOn Availability Groups for SharePoint Farms - SPS Sydney 2014Michael Noel
 
MIcrosoft experiences - SharePoint 2016 : architecture, déploiement et topol...
MIcrosoft experiences - SharePoint 2016 : architecture, déploiement et topol...MIcrosoft experiences - SharePoint 2016 : architecture, déploiement et topol...
MIcrosoft experiences - SharePoint 2016 : architecture, déploiement et topol...Marius Constantinescu [MVP]
 
Ms Cloud Summit 2017 - Power Bi, le tour complet 2017
Ms Cloud Summit 2017 - Power Bi, le tour complet 2017Ms Cloud Summit 2017 - Power Bi, le tour complet 2017
Ms Cloud Summit 2017 - Power Bi, le tour complet 2017Isabelle Van Campenhoudt
 

Recommended

SharePoint Saturday Ottawa - How secure is my data in office 365?
SharePoint Saturday Ottawa - How secure is my data in office 365?SharePoint Saturday Ottawa - How secure is my data in office 365?
SharePoint Saturday Ottawa - How secure is my data in office 365?AntonioMaio2
 
Real world SharePoint information governance a case study - published
Real world SharePoint information governance a case study - publishedReal world SharePoint information governance a case study - published
Real world SharePoint information governance a case study - publishedAntonioMaio2
 
Overcoming Security Threats and Vulnerabilities in SharePoint
Overcoming Security Threats and Vulnerabilities in SharePointOvercoming Security Threats and Vulnerabilities in SharePoint
Overcoming Security Threats and Vulnerabilities in SharePointAntonioMaio2
 
Unbreakable Sharepoint 2016 With SQL Server 2016 availability groups
Unbreakable Sharepoint 2016 With SQL Server 2016 availability groupsUnbreakable Sharepoint 2016 With SQL Server 2016 availability groups
Unbreakable Sharepoint 2016 With SQL Server 2016 availability groupsIsabelle Van Campenhoudt
 
SharePoint 2016 The Future is Hybrid, what you need to know about it
SharePoint 2016 The Future is Hybrid, what you need to know about itSharePoint 2016 The Future is Hybrid, what you need to know about it
SharePoint 2016 The Future is Hybrid, what you need to know about itKnut Relbe-Moe [MVP, MCT]
 
SQL 2014 AlwaysOn Availability Groups for SharePoint Farms - SPS Sydney 2014
SQL 2014 AlwaysOn Availability Groups for SharePoint Farms - SPS Sydney 2014SQL 2014 AlwaysOn Availability Groups for SharePoint Farms - SPS Sydney 2014
SQL 2014 AlwaysOn Availability Groups for SharePoint Farms - SPS Sydney 2014Michael Noel
 
MIcrosoft experiences - SharePoint 2016 : architecture, déploiement et topol...
MIcrosoft experiences - SharePoint 2016 : architecture, déploiement et topol...MIcrosoft experiences - SharePoint 2016 : architecture, déploiement et topol...
MIcrosoft experiences - SharePoint 2016 : architecture, déploiement et topol...Marius Constantinescu [MVP]
 
Ms Cloud Summit 2017 - Power Bi, le tour complet 2017
Ms Cloud Summit 2017 - Power Bi, le tour complet 2017Ms Cloud Summit 2017 - Power Bi, le tour complet 2017
Ms Cloud Summit 2017 - Power Bi, le tour complet 2017Isabelle Van Campenhoudt
 
SharePoint 2016 for the Business: Top 10 New Features
SharePoint 2016 for the Business: Top 10 New FeaturesSharePoint 2016 for the Business: Top 10 New Features
SharePoint 2016 for the Business: Top 10 New FeaturesJoel Oleson
 
SharePoint 2016 Overview
SharePoint 2016 OverviewSharePoint 2016 Overview
SharePoint 2016 OverviewVignesh Ganesan I Microsoft MVP
 
A Deep Dive into SharePoint 2016 architecture and deployment
A Deep Dive into SharePoint 2016 architecture and deploymentA Deep Dive into SharePoint 2016 architecture and deployment
A Deep Dive into SharePoint 2016 architecture and deploymentSPC Adriatics
 
Beyond the Gig Economy
Beyond the Gig EconomyBeyond the Gig Economy
Beyond the Gig EconomyJon Lieber
 
8 Tips for Scaling Mobile Users in China by Edith Yeung
8 Tips for Scaling Mobile Users in China by Edith Yeung8 Tips for Scaling Mobile Users in China by Edith Yeung
8 Tips for Scaling Mobile Users in China by Edith YeungEdith Yeung
 
GAME ON! Integrating Games and Simulations in the Classroom
GAME ON! Integrating Games and Simulations in the Classroom GAME ON! Integrating Games and Simulations in the Classroom
GAME ON! Integrating Games and Simulations in the Classroom Brian Housand
 
Creative Traction Methodology - For Early Stage Startups
Creative Traction Methodology - For Early Stage StartupsCreative Traction Methodology - For Early Stage Startups
Creative Traction Methodology - For Early Stage StartupsTommaso Di Bartolo
 
IT in Healthcare
IT in HealthcareIT in Healthcare
IT in HealthcareNetApp
 
The Physical Interface
The Physical InterfaceThe Physical Interface
The Physical InterfaceJosh Clark
 
SQL 2016 Query Store: Et si mes queries m'étaient contées...
SQL 2016 Query Store: Et si mes queries m'étaient contées...SQL 2016 Query Store: Et si mes queries m'étaient contées...
SQL 2016 Query Store: Et si mes queries m'étaient contées...Isabelle Van Campenhoudt
 
Learn thai with pat orgirl 201307
Learn thai with pat orgirl 201307Learn thai with pat orgirl 201307
Learn thai with pat orgirl 201307Pat Orgirl
 
[Infographic] How will Internet of Things (IoT) change the world as we know it?
[Infographic] How will Internet of Things (IoT) change the world as we know it?[Infographic] How will Internet of Things (IoT) change the world as we know it?
[Infographic] How will Internet of Things (IoT) change the world as we know it?InterQuest Group
 
Cycle Power BI Part1
Cycle Power BI Part1Cycle Power BI Part1
Cycle Power BI Part1Isabelle Van Campenhoudt
 
QUALITY MANAGEMENT
QUALITY MANAGEMENTQUALITY MANAGEMENT
QUALITY MANAGEMENTsmcci
 
Introduction to Microsoft Enterprise Mobility + Security
Introduction to Microsoft Enterprise Mobility + SecurityIntroduction to Microsoft Enterprise Mobility + Security
Introduction to Microsoft Enterprise Mobility + SecurityAntonioMaio2
 
Learn how to protect against and recover from data breaches in Office 365
Learn how to protect against and recover from data breaches in Office 365Learn how to protect against and recover from data breaches in Office 365
Learn how to protect against and recover from data breaches in Office 365AntonioMaio2
 
A beginners guide to administering office 365 with power shell antonio maio
A beginners guide to administering office 365 with power shell antonio maioA beginners guide to administering office 365 with power shell antonio maio
A beginners guide to administering office 365 with power shell antonio maioAntonioMaio2
 
Office 365 Security - MacGyver, Ninja or Swat team
Office 365 Security - MacGyver, Ninja or Swat teamOffice 365 Security - MacGyver, Ninja or Swat team
Office 365 Security - MacGyver, Ninja or Swat teamAntonioMaio2
 
Information security in office 365 a shared responsibility - antonio maio
Information security in office 365 a shared responsibility - antonio maioInformation security in office 365 a shared responsibility - antonio maio
Information security in office 365 a shared responsibility - antonio maioAntonioMaio2
 
Office 365 security new innovations from microsoft ignite - antonio maio
Office 365 security new innovations from microsoft ignite - antonio maioOffice 365 security new innovations from microsoft ignite - antonio maio
Office 365 security new innovations from microsoft ignite - antonio maioAntonioMaio2
 
What’s new in SharePoint 2016!
What’s new in SharePoint 2016!What’s new in SharePoint 2016!
What’s new in SharePoint 2016!AntonioMaio2
 
Data Visualization in SharePoint and Office 365
Data Visualization in SharePoint and Office 365Data Visualization in SharePoint and Office 365
Data Visualization in SharePoint and Office 365AntonioMaio2
 

More Related Content

Viewers also liked

SharePoint 2016 for the Business: Top 10 New Features
SharePoint 2016 for the Business: Top 10 New FeaturesSharePoint 2016 for the Business: Top 10 New Features
SharePoint 2016 for the Business: Top 10 New FeaturesJoel Oleson
 
A Deep Dive into SharePoint 2016 architecture and deployment
A Deep Dive into SharePoint 2016 architecture and deploymentA Deep Dive into SharePoint 2016 architecture and deployment
A Deep Dive into SharePoint 2016 architecture and deploymentSPC Adriatics
 
Beyond the Gig Economy
Beyond the Gig EconomyBeyond the Gig Economy
Beyond the Gig EconomyJon Lieber
 
8 Tips for Scaling Mobile Users in China by Edith Yeung
8 Tips for Scaling Mobile Users in China by Edith Yeung8 Tips for Scaling Mobile Users in China by Edith Yeung
8 Tips for Scaling Mobile Users in China by Edith YeungEdith Yeung
 
GAME ON! Integrating Games and Simulations in the Classroom
GAME ON! Integrating Games and Simulations in the Classroom GAME ON! Integrating Games and Simulations in the Classroom
GAME ON! Integrating Games and Simulations in the Classroom Brian Housand
 
Creative Traction Methodology - For Early Stage Startups
Creative Traction Methodology - For Early Stage StartupsCreative Traction Methodology - For Early Stage Startups
Creative Traction Methodology - For Early Stage StartupsTommaso Di Bartolo
 
IT in Healthcare
IT in HealthcareIT in Healthcare
IT in HealthcareNetApp
 
The Physical Interface
The Physical InterfaceThe Physical Interface
The Physical InterfaceJosh Clark
 
SQL 2016 Query Store: Et si mes queries m'étaient contées...
SQL 2016 Query Store: Et si mes queries m'étaient contées...SQL 2016 Query Store: Et si mes queries m'étaient contées...
SQL 2016 Query Store: Et si mes queries m'étaient contées...Isabelle Van Campenhoudt
 
Learn thai with pat orgirl 201307
Learn thai with pat orgirl 201307Learn thai with pat orgirl 201307
Learn thai with pat orgirl 201307Pat Orgirl
 
[Infographic] How will Internet of Things (IoT) change the world as we know it?
[Infographic] How will Internet of Things (IoT) change the world as we know it?[Infographic] How will Internet of Things (IoT) change the world as we know it?
[Infographic] How will Internet of Things (IoT) change the world as we know it?InterQuest Group
 
QUALITY MANAGEMENT
QUALITY MANAGEMENTQUALITY MANAGEMENT
QUALITY MANAGEMENTsmcci
 

Viewers also liked (14)

SharePoint 2016 for the Business: Top 10 New Features
SharePoint 2016 for the Business: Top 10 New FeaturesSharePoint 2016 for the Business: Top 10 New Features
SharePoint 2016 for the Business: Top 10 New Features
 
SharePoint 2016 Overview
SharePoint 2016 OverviewSharePoint 2016 Overview
SharePoint 2016 Overview
 
A Deep Dive into SharePoint 2016 architecture and deployment
A Deep Dive into SharePoint 2016 architecture and deploymentA Deep Dive into SharePoint 2016 architecture and deployment
A Deep Dive into SharePoint 2016 architecture and deployment
 
Beyond the Gig Economy
Beyond the Gig EconomyBeyond the Gig Economy
Beyond the Gig Economy
 
8 Tips for Scaling Mobile Users in China by Edith Yeung
8 Tips for Scaling Mobile Users in China by Edith Yeung8 Tips for Scaling Mobile Users in China by Edith Yeung
8 Tips for Scaling Mobile Users in China by Edith Yeung
 
GAME ON! Integrating Games and Simulations in the Classroom
GAME ON! Integrating Games and Simulations in the Classroom GAME ON! Integrating Games and Simulations in the Classroom
GAME ON! Integrating Games and Simulations in the Classroom
 
Creative Traction Methodology - For Early Stage Startups
Creative Traction Methodology - For Early Stage StartupsCreative Traction Methodology - For Early Stage Startups
Creative Traction Methodology - For Early Stage Startups
 
IT in Healthcare
IT in HealthcareIT in Healthcare
IT in Healthcare
 
The Physical Interface
The Physical InterfaceThe Physical Interface
The Physical Interface
 
SQL 2016 Query Store: Et si mes queries m'étaient contées...
SQL 2016 Query Store: Et si mes queries m'étaient contées...SQL 2016 Query Store: Et si mes queries m'étaient contées...
SQL 2016 Query Store: Et si mes queries m'étaient contées...
 
Learn thai with pat orgirl 201307
Learn thai with pat orgirl 201307Learn thai with pat orgirl 201307
Learn thai with pat orgirl 201307
 
[Infographic] How will Internet of Things (IoT) change the world as we know it?
[Infographic] How will Internet of Things (IoT) change the world as we know it?[Infographic] How will Internet of Things (IoT) change the world as we know it?
[Infographic] How will Internet of Things (IoT) change the world as we know it?
 
Cycle Power BI Part1
Cycle Power BI Part1Cycle Power BI Part1
Cycle Power BI Part1
 
QUALITY MANAGEMENT
QUALITY MANAGEMENTQUALITY MANAGEMENT
QUALITY MANAGEMENT
 

More from AntonioMaio2

Introduction to Microsoft Enterprise Mobility + Security
Introduction to Microsoft Enterprise Mobility + SecurityIntroduction to Microsoft Enterprise Mobility + Security
Introduction to Microsoft Enterprise Mobility + SecurityAntonioMaio2
 
Learn how to protect against and recover from data breaches in Office 365
Learn how to protect against and recover from data breaches in Office 365Learn how to protect against and recover from data breaches in Office 365
Learn how to protect against and recover from data breaches in Office 365AntonioMaio2
 
A beginners guide to administering office 365 with power shell antonio maio
A beginners guide to administering office 365 with power shell antonio maioA beginners guide to administering office 365 with power shell antonio maio
A beginners guide to administering office 365 with power shell antonio maioAntonioMaio2
 
Office 365 Security - MacGyver, Ninja or Swat team
Office 365 Security - MacGyver, Ninja or Swat teamOffice 365 Security - MacGyver, Ninja or Swat team
Office 365 Security - MacGyver, Ninja or Swat teamAntonioMaio2
 
Information security in office 365 a shared responsibility - antonio maio
Information security in office 365 a shared responsibility - antonio maioInformation security in office 365 a shared responsibility - antonio maio
Information security in office 365 a shared responsibility - antonio maioAntonioMaio2
 
Office 365 security new innovations from microsoft ignite - antonio maio
Office 365 security new innovations from microsoft ignite - antonio maioOffice 365 security new innovations from microsoft ignite - antonio maio
Office 365 security new innovations from microsoft ignite - antonio maioAntonioMaio2
 
What’s new in SharePoint 2016!
What’s new in SharePoint 2016!What’s new in SharePoint 2016!
What’s new in SharePoint 2016!AntonioMaio2
 
Data Visualization in SharePoint and Office 365
Data Visualization in SharePoint and Office 365Data Visualization in SharePoint and Office 365
Data Visualization in SharePoint and Office 365AntonioMaio2
 
Hybrid Identity Management with SharePoint and Office 365 - Antonio Maio
Hybrid Identity Management with SharePoint and Office 365 - Antonio MaioHybrid Identity Management with SharePoint and Office 365 - Antonio Maio
Hybrid Identity Management with SharePoint and Office 365 - Antonio MaioAntonioMaio2
 
Developing custom claim providers to enable authorization in share point an...
Developing custom claim providers to enable authorization in share point an...Developing custom claim providers to enable authorization in share point an...
Developing custom claim providers to enable authorization in share point an...AntonioMaio2
 
Identity management challenges when moving share point to the cloud antonio...
Identity management challenges when moving share point to the cloud antonio...Identity management challenges when moving share point to the cloud antonio...
Identity management challenges when moving share point to the cloud antonio...AntonioMaio2
 
A Practical Guide Information Governance with Microsoft SharePoint 2013
A Practical Guide Information Governance with Microsoft SharePoint 2013A Practical Guide Information Governance with Microsoft SharePoint 2013
A Practical Guide Information Governance with Microsoft SharePoint 2013AntonioMaio2
 
Best practices for security and governance in share point 2013 published
Best practices for security and governance in share point 2013 publishedBest practices for security and governance in share point 2013 published
Best practices for security and governance in share point 2013 publishedAntonioMaio2
 
Keeping SharePoint Always On
Keeping SharePoint Always OnKeeping SharePoint Always On
Keeping SharePoint Always OnAntonioMaio2
 
How Claims is Changing the Way We Authenticate and Authorize in SharePoint
How Claims is Changing the Way We Authenticate and Authorize in SharePointHow Claims is Changing the Way We Authenticate and Authorize in SharePoint
How Claims is Changing the Way We Authenticate and Authorize in SharePointAntonioMaio2
 
Best practices for Security and Governance in SharePoint 2013
Best practices for Security and Governance in SharePoint 2013Best practices for Security and Governance in SharePoint 2013
Best practices for Security and Governance in SharePoint 2013AntonioMaio2
 
SPTechCon Boston 2013 - Introduction to Security in Microsoft Sharepoint 2013...
SPTechCon Boston 2013 - Introduction to Security in Microsoft Sharepoint 2013...SPTechCon Boston 2013 - Introduction to Security in Microsoft Sharepoint 2013...
SPTechCon Boston 2013 - Introduction to Security in Microsoft Sharepoint 2013...AntonioMaio2
 
Best Practices for Security in Microsoft SharePoint 2013
Best Practices for Security in Microsoft SharePoint 2013Best Practices for Security in Microsoft SharePoint 2013
Best Practices for Security in Microsoft SharePoint 2013AntonioMaio2
 
Intro to Develop and Deploy Apps for Microsoft SharePoint and Office 2013
Intro to Develop and Deploy Apps for Microsoft SharePoint and Office 2013Intro to Develop and Deploy Apps for Microsoft SharePoint and Office 2013
Intro to Develop and Deploy Apps for Microsoft SharePoint and Office 2013AntonioMaio2
 
SharePoint Governance: Impacts of Moving to the Cloud
SharePoint Governance: Impacts of Moving to the CloudSharePoint Governance: Impacts of Moving to the Cloud
SharePoint Governance: Impacts of Moving to the CloudAntonioMaio2
 

More from AntonioMaio2 (20)

Introduction to Microsoft Enterprise Mobility + Security
Introduction to Microsoft Enterprise Mobility + SecurityIntroduction to Microsoft Enterprise Mobility + Security
Introduction to Microsoft Enterprise Mobility + Security
 
Learn how to protect against and recover from data breaches in Office 365
Learn how to protect against and recover from data breaches in Office 365Learn how to protect against and recover from data breaches in Office 365
Learn how to protect against and recover from data breaches in Office 365
 
A beginners guide to administering office 365 with power shell antonio maio
A beginners guide to administering office 365 with power shell antonio maioA beginners guide to administering office 365 with power shell antonio maio
A beginners guide to administering office 365 with power shell antonio maio
 
Office 365 Security - MacGyver, Ninja or Swat team
Office 365 Security - MacGyver, Ninja or Swat teamOffice 365 Security - MacGyver, Ninja or Swat team
Office 365 Security - MacGyver, Ninja or Swat team
 
Information security in office 365 a shared responsibility - antonio maio
Information security in office 365 a shared responsibility - antonio maioInformation security in office 365 a shared responsibility - antonio maio
Information security in office 365 a shared responsibility - antonio maio
 
Office 365 security new innovations from microsoft ignite - antonio maio
Office 365 security new innovations from microsoft ignite - antonio maioOffice 365 security new innovations from microsoft ignite - antonio maio
Office 365 security new innovations from microsoft ignite - antonio maio
 
What’s new in SharePoint 2016!
What’s new in SharePoint 2016!What’s new in SharePoint 2016!
What’s new in SharePoint 2016!
 
Data Visualization in SharePoint and Office 365
Data Visualization in SharePoint and Office 365Data Visualization in SharePoint and Office 365
Data Visualization in SharePoint and Office 365
 
Hybrid Identity Management with SharePoint and Office 365 - Antonio Maio
Hybrid Identity Management with SharePoint and Office 365 - Antonio MaioHybrid Identity Management with SharePoint and Office 365 - Antonio Maio
Hybrid Identity Management with SharePoint and Office 365 - Antonio Maio
 
Developing custom claim providers to enable authorization in share point an...
Developing custom claim providers to enable authorization in share point an...Developing custom claim providers to enable authorization in share point an...
Developing custom claim providers to enable authorization in share point an...
 
Identity management challenges when moving share point to the cloud antonio...
Identity management challenges when moving share point to the cloud antonio...Identity management challenges when moving share point to the cloud antonio...
Identity management challenges when moving share point to the cloud antonio...
 
A Practical Guide Information Governance with Microsoft SharePoint 2013
A Practical Guide Information Governance with Microsoft SharePoint 2013A Practical Guide Information Governance with Microsoft SharePoint 2013
A Practical Guide Information Governance with Microsoft SharePoint 2013
 
Best practices for security and governance in share point 2013 published
Best practices for security and governance in share point 2013 publishedBest practices for security and governance in share point 2013 published
Best practices for security and governance in share point 2013 published
 
Keeping SharePoint Always On
Keeping SharePoint Always OnKeeping SharePoint Always On
Keeping SharePoint Always On
 
How Claims is Changing the Way We Authenticate and Authorize in SharePoint
How Claims is Changing the Way We Authenticate and Authorize in SharePointHow Claims is Changing the Way We Authenticate and Authorize in SharePoint
How Claims is Changing the Way We Authenticate and Authorize in SharePoint
 
Best practices for Security and Governance in SharePoint 2013
Best practices for Security and Governance in SharePoint 2013Best practices for Security and Governance in SharePoint 2013
Best practices for Security and Governance in SharePoint 2013
 
SPTechCon Boston 2013 - Introduction to Security in Microsoft Sharepoint 2013...
SPTechCon Boston 2013 - Introduction to Security in Microsoft Sharepoint 2013...SPTechCon Boston 2013 - Introduction to Security in Microsoft Sharepoint 2013...
SPTechCon Boston 2013 - Introduction to Security in Microsoft Sharepoint 2013...
 
Best Practices for Security in Microsoft SharePoint 2013
Best Practices for Security in Microsoft SharePoint 2013Best Practices for Security in Microsoft SharePoint 2013
Best Practices for Security in Microsoft SharePoint 2013
 
Intro to Develop and Deploy Apps for Microsoft SharePoint and Office 2013
Intro to Develop and Deploy Apps for Microsoft SharePoint and Office 2013Intro to Develop and Deploy Apps for Microsoft SharePoint and Office 2013
Intro to Develop and Deploy Apps for Microsoft SharePoint and Office 2013
 
SharePoint Governance: Impacts of Moving to the Cloud
SharePoint Governance: Impacts of Moving to the CloudSharePoint Governance: Impacts of Moving to the Cloud
SharePoint Governance: Impacts of Moving to the Cloud
 

Recently uploaded

New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxLoriGlavin3
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity PlanDatabarracks
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxDigital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxLoriGlavin3
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Mark Simos
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxLoriGlavin3
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 
Training state-of-the-art general text embedding
Training state-of-the-art general text embeddingTraining state-of-the-art general text embedding
Training state-of-the-art general text embeddingZilliz
 
Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rick Flair
 
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESSALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESmohitsingh558521
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .Alan Dix
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxA Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxLoriGlavin3
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxLoriGlavin3
 
What is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfWhat is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfMounikaPolabathina
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenHervé Boutemy
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxLoriGlavin3
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brandgvaughan
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.Curtis Poe
 

Recently uploaded (20)

New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity Plan
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxDigital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024
 
Training state-of-the-art general text embedding
Training state-of-the-art general text embeddingTraining state-of-the-art general text embedding
Training state-of-the-art general text embedding
 
Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...
 
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESSALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxA Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptx
 
What is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfWhat is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdf
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache Maven
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brand
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.
 

30 on Thursday - data loss prevention in SharePoint 2016 - protect your sensitive information - published

  • 1. Data Loss Prevention in SharePoint 2016: Protect Your Sensitive Information Thank you for joining our webinar!
  • 2. Who We Are 3,300 professionals Over 20 countries in the Americas, Europe, the Middle East and Asia-Pacific 70+ offices IT Consulting ► Enterprise Content Management Solutions Protiviti is a global consulting firm that helps companies solve problems in finance, technology, operations, governance, risk and internal audit, and has served more than 40 percent of FORTUNE 1000® and FORTUNE Global 500® companies. Protiviti serve clients through a network of more than 70 locations in over 20 countries. Protiviti is a wholly owned subsidiary of Robert Half (NYSE: RHI). Founded in 1948, Robert Half is a member of the S&P 500 index.
  • 3. Introduction • ‘30 on Thursday’ Webinar Series • 30 minute webinar series • All things SharePoint & Enterprise Content Management! • Upcoming Webinars: • June 9: “SharePoint 2016 and PowerApps Revealed!” • July 14: “Capacity Planning: An Introduction on How to Size and Architect a SharePoint Farm” • Full Schedule: ECM.Protiviti.com/Webinars
  • 4. Upcoming Roundtables: SharePoint Security Register Now at: ECM.Protiviti.com/Events! Date Time Location Tuesday, May 17 8:30-10:30 am Edina, MN Tuesday, May 17 12:00-2:00 pm McLean, VA Tuesday, May 17 12:00-2:00 pm Atlanta, GA Wednesday, May 25 8:30-10:30 am Chicago, IL Wednesday, May 25 12:00-2:00 pm Houston, TX
  • 5. Live Tweeting! Tweet us your questions & feedback during the webinar! Tweet @ProtivitiECM and use #30TDLP
  • 6. Today’s Webinar • Today’s session is being recorded • Archive of past sessions • YouTube.com/ProtivitiSP • Questions: Use the Question Window or tweet us your questions @ProtivitiECM using #30TDLP
  • 7. Today’s Presenter Antonio Maio Microsoft SharePoint MVP (5x) Senior Manager & Senior SharePoint Architect Protiviti
  • 9. Data Loss Prevention (DLP) Goals • Protect the business (legal action, sanctions, loss of reputation) • Comply with regulations and business standards DLP is about Finding and Protecting sensitive information • Personally Identifiable Information (PII) • Payment Credit Industry Data (PCI, PCI DSS) • Financial Data • Health Insurance Data etc…
  • 10. Data Loss Prevention in Office 365 Available through… • Exchange Admin Center • Compliance Center (Protection Center)
  • 11. Data Loss Prevention in SharePoint 2016 Available through… • Improved eDiscovery Site Collection • New Compliance Policy Center Site Collection
  • 12. SharePoint 2016 DLP Policies for eDiscovery eDiscovery Center • Create & run DLP Queries to identity sensitive data • Save Queries • Export Data • Highly dependent on SharePoint Search Index!
  • 13. SharePoint 2016 DLP Policies for Compliance Compliance Center • Create DLP Policies to monitor and enforce protection of sensitive information • Provide administrator notification (via email) • Provide policy tips to users and owners • Block access to files containing sensitive content • Assign policies to existing site collections • Highly dependent on SharePoint Search Index!
  • 14. SharePoint 2016 DLP Prerequisites • Create a Search Service Application (mandatory) • Start the search service, Define a crawl schedule, Perform a full crawl • Must have a healthy search index and crawl • Configure out-going email (recommended) • Turn on Usage reports (recommended) • Create the eDiscovery or Compliance Center site collections (mandatory– both not needed) • eDiscovery – for DLP Queries to identify where sensitive data exists • Compliance Policy Center – for DLP Policies to monitor or enforce policies • Assign permissions to Compliance team through the Site Collection Members group (recommended)
  • 15. Creating the Compliance Center • Create a new Site Collection • Site Template - Select the Enterprise tab • Select Compliance Policy Center template • Only One Compliance Center Site Collection per Web Application • Compliance Center cannot cross Web Application boundary (eDiscovery Center can query across Web Applications)
  • 16. Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • U.S. / U.K. Passport Number • U.S. Individual Taxpayer Identification Number (ITIN) • U.S. Social Security Number (SSN) • No health related data • Cannot customize policy templates or data types
  • 17. Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • Credit Card Number • U.S. Bank Account Number • U.S. Individual Taxpayer Identification Number (ITIN) • U.S. Social Security Number (SSN) • No health related data • Cannot customize policy templates or data types
  • 18. Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • Credit Card Number • No health related data • Cannot customize policy templates or data types
  • 19. Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • Credit Card Number • EU Debit Card Number • SWIFT Code • No health related data • Cannot customize policy templates or data types
  • 20. Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • ABA Routing Number • Credit Card Number • U.S. Bank Account Number • No health related data • Cannot customize policy templates or data types
  • 21. Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • U.K. National Insurance Number (NINO) • U.S. / U.K. Passport Number • No health related data • Cannot customize policy templates or data types
  • 22. Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • SWIFT Code • U.K. National Insurance Number (NINO) • U.S. / U.K. Passport Number • No health related data • Cannot customize policy templates or data types
  • 23. Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • SWIFT Code • No health related data • Cannot customize policy templates or data types
  • 24. Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • U.S. Social Security Number (SSN) • No health related data • Cannot customize policy templates or data types
  • 25. Create DLP Policies • Create DLP Policies using Policy Templates • 10 policy templates available • Looking for 10 sensitive data types • Credit Card Number • U.S. Bank Account Number • U.S. Driver's License Number • U.S. Social Security Number (SSN) • No health related data • Cannot customize policy templates or data types
  • 26. Create DLP Policies • Create New Policies • Provide Name • Select 1 of 10 templates (no customization) • Select # of instances of sensitive data • Email address to send incident reports • Select to Notify with Policy Tip • Select to Block Access • Assign Policies to site collections (one at time)
  • 27. Avoiding False Positives Looking for More Than Regular Expressions Finding Credit Card Numbers • Format • Pattern • Checksum (Luhn Algorithm) • 191 related keywords • Confidence Definition • 85% confident if all found within 300 chars • 65% confidence if number found & checksum passes Full Definitions found here: https://support.office.com/en-ie/article/What-the-sensitive-information-types-in- SharePoint-Server-2016-look-for-ec9fdbe2-bb77-455f-a2f6-407a4f54fca5
  • 28. Finding US Driver’s License Numbers • Format – State Dependent • Pattern • 16 related abbreviations & 75 keywords • State name & State Abbreviation • Confidence Definition • 75% confident if all found within 300 chars • 65% confidence if all found (except keywords) within 300 chars Avoiding False Positives Looking for More Than Regular Expressions Full Definitions found here: https://support.office.com/en-ie/article/What-the-sensitive-information-types-in- SharePoint-Server-2016-look-for-ec9fdbe2-bb77-455f-a2f6-407a4f54fca5
  • 30. Important Technical Notes • If its not in the search index DLP policies will not be enforced • Consider your crawl schedule • 4 Timer Jobs used to enforce policies • Policies not enforced on new documents until search crawl and timer jobs complete • Timeliness of policy enforcement depends on priority of policy template • Can take up to 24 hours • Cannot enforce policies on list items – only documents (not yet proven)
  • 31. Final Thoughts • Data Loss Prevention just one critical part of securing sensitive data • Identifying sensitive data, monitoring its usage and enforcing policies • DLP requires regular management of policies – refine to avoid noise of false positives • SharePoint 2016 DLP is a great start! • Start learning and testing SharePoint 2016 DLP Today • Critical to have healthy search index • Test policies in Staging before deploying to Prod