CollabDays Bletchley Park 2024 - Compliance Manager
appie1701
52 views
25 slides
Sep 25, 2024
Slide 1 of 25
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
About This Presentation
Did you know that with your Microsoft 365 enterprise license, you get a complete Information Security Management System or ISMS? Yes, you do and it's known as Microsoft Purview Compliance Manager.
But the Compliance Manager goes beyond this. As an ISMS you are able to use the Compliance Manager...
Slide Content
A hidden gem: Microsoft Purview Compliance Manager Albert Hoitingh
Thank you to our sponsors!
Albert Hoitingh Principal Consultant Data Security & Compliance @ InSpark The Hague – The Netherlands @alberthoitingh https://alberthoitingh.com https://www.linkedin.com/in/appieh/
Microsoft Purview Compliance Manager
Microsoft Purview Compliance Manager Take inventory Implement controls and report Multi-cloud Stay current with regulation
Licensing All subscriptions: Data Protection Baseline Microsoft 365 E5: Three premium regulations free Premium regulations https://learn.microsoft.com/en-us/purview/compliance-manager-templates-list
Permission levels Azure/Entra ID Read only Global Reader | Security Reader Edit data only Compliance Administrator Edit data and create assessments Compliance Administrator Manage all Compliance Administrator Compliance Data Administrator Security Administrator
Permission levels Microsoft Purview Read only Compliance Manager Reader Edit data only Compliance Manager Assessor Edit data and create assessments Compliance Manager Contribution Manage all Compliance Manager Administrator Compliance Administrator Specific permissions, per regulation for example
Key elements Controls Assessments Regulations Improvement actions Technical Operational Documentation
Copilot…. Oh wait….
Shared Responsibility
Compliance Score Improvement actions Mandatory Discretionary Preventive | Detective | Corrective
S coring Preventive Detective Corrective Mandatory Discretionary Points +27 Points +9 Points +1 Points +3 Points +1 Points +3
Testing Manual | Automatic Automatic based on settings in Purview (Compliance Administrator) – based on assessment and activated (Defender) services – takes 24 hours Turn on/off per improvement (Compliance Manager Administrator) Modify an improvement action -> automatic testing is turned off
Testing
Run through DEMO
Microsoft Defender for Cloud
Multicloud support - regulations Microsoft Azure CIS Microsoft Azure Foundations Benchmark v1.1.0 CIS Microsoft Azure Foundations Benchmark v1.3.0 CIS Microsoft Azure Foundations Benchmark v1.4.0 FedRAMP High FedRAMP Moderate ISO 27001 NIST SP 800-171 Rev.2 NIST SP 800-53 Rev.4 NIST SP 800 53 Rev.5 PCI DSS v4.0 SOC 2 Type 2 SWIFT CSP-CDCF v2022 AWS AWS Foundational Security Best Practices CIS 1.2.0 NIST SP 800 53 Rev.5 PCI DSS 3.2.1 GCP CIS 1.1.0 CIS 1.2.0 ISO 27001 NIST SP 800 53 Rev.5 PCI DSS 3.2.1
Multicloud support - connectors https://learn.microsoft.com/en-us/purview/compliance-manager-cloud-settings
Run through DEMO
Some thoughts To end this session Some regional regulations are not (yet) supported Custom assessments are coming back Automatic testing will take some time Some improvement actions will increase your score, but not your compliance stance
Enter the raffle to win prizes! Visit each sponsor Decrypt the Morse code! Provide feedback through the Run.Events app!
Thank you to our sponsors!
Thank you! Albert Hoitingh
Categories
GeneralDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 52
- Slides 25
- Age 432 days
Related Slideshows
22
Pray For The Peace Of Jerusalem and You Will Prosper
RodolfoMoralesMarcuc
30 views
26
Don_t_Waste_Your_Life_God.....powerpoint
chalobrido8
32 views
31
VILLASUR_FACTORS_TO_CONSIDER_IN_PLATING_SALAD_10-13.pdf
JaiJai148317
30 views
14
Fertility awareness methods for women in the society
Isaiah47
29 views
35
Chapter 5 Arithmetic Functions Computer Organisation and Architecture
RitikSharma297999
26 views
5
syakira bhasa inggris (1) (1).pptx.......
ourcommunity56
28 views