Microsoft 365 Copilot | Security Risks & How to Protect Your Data
Vložit
- čas přidán 7. 08. 2024
- In this video, I cover the security and data privacy concerns with Microsoft Copilot and provide a proposed step-by-step solution.
Comment below with how you are leveraging Copilot and the data privacy concerns you may have.
Blog Post: tminus365.com/microsoft-365-c...
00:00 -Intro
00:42 -Copilot Architecture
02:24 -Data Privacy Concerns
08:33 -CIS Controls
12:09 -Steps for Protecting your data
____________________
Give this video a thumbs up if you enjoyed watching 👍
#microsoft #copilot #microsoftcopilot #m365copilot #microsoft365copilot
Thanks for watching the video Microsoft 365 Copilot | Security Risks & How to Protect Your Data - Jak na to + styl
i really love your videos, this one is great. Especially i love the part (starting from 18:25) how you explained the access to the SharePoint doc library where "All members" have access but the confidential label has been applied. With this Microsoft and Microsoft partners have now a big chance to sell "higher" licenses to the customers so that they can use the Security and Compliance features like Sensitivity labels, DLP policies etc.
Brilliant presentation, Nick. Got yourself a new sub. Here's to the future!
Thanks for subbing!
This is great information and well presented! Thank you for sharing!
Thank you!
Thanks ,Nick ! Really good .
Glad you liked it!
Very good and informative video
thanks!
Great stuff Nick!
Thanks!
Microsoft 365 E5 Compliance is an add on to E3 to get you some of those E5 Labeling and classification features that you don't get with E3.
Thank you ❤😊
Interesting. Thanks!
So this could be applied in the company if we are using Copilot from Edge (not on the Office365 platform).
Amazing video, really well explained.
I have a question, around the minute 37:45 you mentioned that the account might have access to more data based on the SharePoint Administrator Role, can you explain a bit more on that point? I thought you would need access to the data itself to incorporate within your Copilot range and administrative roles will not change the scope that you have access to.
Hi Joilson,
I believe I know what he's referring to. A number of organisations I've seen have granted an elevated account or role (such as the SharePoint Service Administrator role) site collection admin over all site collections. This has its benefits and its drawbacks. It makes administration much easier at times (think trying to set an attribute across many or all sites simultaneously), but it also causes issues identified here where a single account or role (and consequently all accounts capable of elevating to that role) has the ability to see data across everything all at once - so a search or Copilot interaction will return far more information in this scenario. As mentioned, this would be a bad actors dream scenario, getting access to everything they could possibly want to inquire about. The use of copilot doesn't actually cause this scenario in any way, it's just potentially easier to extract data using Copilot given the nature of the interaction.
Hi, if you set permission on the payroll folder, can bruce still see it?
What equipment you are using in this presentation?
Excellent video, congratulations!!
Query: at minute 2:45 of the video, you say that “Copilot searches even in files that are locally on the hard drive”, so it accepts C:\Users\ paths, or am I wrong? Thanks.
He said OneDrive, not local drive (at least the version I was watching 😅 )
👍👍👍 there is no quality practical information
I have disabled the copilot in Office 365 and will never grant access to my emails, documents, etc. I only use external AI when needed, and I do not provide it with sensitive data.
External ai like?