Blog Post

Microsoft Security Blog
6 MIN READ

Cybersecurity in a context that allows your organization to achieve more

Jon_Nordstrom's avatar
Jon_Nordstrom
Icon for Microsoft rankMicrosoft
Aug 21, 2024
You don't need us to tell you about the current Cyber Security threat landscape, if you are reading this blog post you already know. You are also aware that the absence of evidence for a breach is no...
Updated Aug 21, 2024
Version 1.0
cloud security
data loss prevention
microsoft 365 defender
microsoft defender xdr
microsoft purview
threat protection
GaryBonifaceMS's avatar
GaryBonifaceMS
Icon for Microsoft rankMicrosoft
Aug 22, 2024

Jon_Nordstrom Thank you for these blogs. Purview reporting is a hot topic with my customers.

 

You mention above "What about non-Microsoft systems, to see the types of cross-platform systems that can be visualized please see Connect apps to get visibility and control - Microsoft Defender for Cloud Apps | Microsoft Learn. We have not built visualizations for all these products but if you follow the existing patterns, you can do so for your key applications."

 

Q:

For third party, which 'feature column' would inform me if the 3rd party app was able to be reported on, and show (like above) "Data at Rest , SIT/Information type", or  "Sensitive data accessed by user" ...

Is it the [Users and activities -User activity] column or the [Information protection - DLP - Near real-time scan] column ? (These two have a big variance on which apps could be reported on, so trying to understand which 3rd party would apply to your statement)

 

ref:

https://learn.microsoft.com/en-us/defender-cloud-apps/enable-instant-visibility-protection-and-governance-actions-for-your-apps#users-and-activities 

https://learn.microsoft.com/en-us/defender-cloud-apps/enable-instant-visibility-protection-and-governance-actions-for-your-apps#information-protection