Managing Microsoft 365 Copilot and Third-Party Generative AI: Securing Data, Monitoring Usage, and Mitigating Risks with Purview and Defender
NikkiChapple
0 views
49 slides
Sep 27, 2025
Slide 1 of 49
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
About This Presentation
Title | Managing Microsoft 365 Copilot and Third-Party Generative AI: Securing Data, Monitoring Usage, and Mitigating Risks with Purview and Defender
Presenter | Nikki Chapple, 2 x MVP and Principal Cloud Architect at CloudWay
Event | Commsverse 2025
Format | In person, Deep Dive Technical Sessio...
Slide Content
Managing Microsoft 365
Copilot & Third-Party
Generative AI Usage with
Purview and Defender
Nikki Chapple | MVP
Copilot & Third-Party
Generative AI Usage with
Purview and Defender
Nikki Chapple | MVP
About Me
Nikki Chapple
Expert in Microsoft 365 & Purview
NikkiChapple.com
All Things M365 Compliance Video
Podcast
Nikki Chapple
Expert in Microsoft 365 & Purview
NikkiChapple.com
All Things M365 Compliance Video
Podcast
Agenda
•How do we assess which Gen AI Apps are risky?
•How can we find out what Gen AI Apps are used?
•How can we block access to unwanted Gen AI apps?
•How do we keep track of new Gen AI Apps?
Part A Defender for Cloud Apps
•How can I track our Gen AI Usage?
•Can I see what sensitive data is shared with Gen AI Apps?
•Can I see who is using which Gen AI App and for what purpose?
Part B Data Security Management for AI
•How do we assess which Gen AI Apps are risky?
•How can we find out what Gen AI Apps are used?
•How can we block access to unwanted Gen AI apps?
•How do we keep track of new Gen AI Apps?
Part A Defender for Cloud Apps
•How can I track our Gen AI Usage?
•Can I see what sensitive data is shared with Gen AI Apps?
•Can I see who is using which Gen AI App and for what purpose?
Part B Data Security Management for AI
The Issue
of AI users are bringing their own AI tools to work
AI at Work Is Here. Now Comes the Hard Part - 2024 Work Trend Index Annual Report
of AI users are bringing their own AI tools to work
AI at Work Is Here. Now Comes the Hard Part - 2024 Work Trend Index Annual Report
Defender for Cloud
Apps
Apps
How do we assess
which Gen AI Apps
are risky?
Defender for Cloud Apps > Cloud App Catalog
which Gen AI Apps
are risky?
Defender for Cloud Apps > Cloud App Catalog
View Gen AI App Catalog 1123
Apps
Apps
Assess the risk of an App
How can we find out
what Gen AI Apps are
used?
Defender for Cloud Apps > Cloud Discovery
what Gen AI Apps are
used?
Defender for Cloud Apps > Cloud Discovery
Discover what Gen Ai Apps are
being used
being used
How can we block
access to unwanted
Gen AI apps?
access to unwanted
Gen AI apps?
Sync Unsanctioned Apps to
Defender for Endpoint
Defender for Endpoint
Block URLs on Managed Devices
Get Notified of New apps
How do we keep
track of new Gen AI
Apps?
Defender for Cloud Apps > Policy Management
track of new Gen AI
Apps?
Defender for Cloud Apps > Policy Management
Data Security
Posture Management
for AI
Posture Management
for AI
Prerequisites
Audit enabled
Devices
onboarded
Purview Extension
deployed
Licensing
E5 Compliance
Copilot licenses
not required
Configuration
eDLP Polices
IRM policies
(optional)
RBAC
Compliance
Admin – configure
policies
Security reader –
view
IRM – view Risky
user info
Set Up
Audit enabled
Devices
onboarded
Purview Extension
deployed
Licensing
E5 Compliance
Copilot licenses
not required
Configuration
eDLP Polices
IRM policies
(optional)
RBAC
Compliance
Admin – configure
policies
Security reader –
view
IRM – view Risky
user info
Set Up
How can I track our
Gen AI Usage?
Data Security Posture Management for AI
Gen AI Usage?
Data Security Posture Management for AI
View Copilot Usage
View 3
rd
Party Gen AI Usage
rd
Party Gen AI Usage
Current list
457 domains
457 domains
Can I see what sensitive
data is shared with Gen
AI Apps?
data is shared with Gen
AI Apps?
View your custom SITs
Track Sensitive data
Track Sensitive data
Track labelled data
Track Insider Risk
Can I see who is using
which Gen AI App and
for what purpose?
DSPM for AI > Activity Explorer
which Gen AI App and
for what purpose?
DSPM for AI > Activity Explorer
View Copilot Prompt & Response
Who is accessing which App
View DLP Triggers
Summary
Summary
•How to assess which Gen AI Apps are risky
•How to find out what Gen AI Apps are used
•How to block access to unwanted Gen AI apps
•How to keep track of new Gen AI Apps
Part A Defender for Cloud Apps
•How to track our Gen AI Usage
•See what sensitive data is shared with Gen AI Apps
•See who is using which Gen AI App and for what purpose
Part B Data Security Management for AI
•How to assess which Gen AI Apps are risky
•How to find out what Gen AI Apps are used
•How to block access to unwanted Gen AI apps
•How to keep track of new Gen AI Apps
Part A Defender for Cloud Apps
•How to track our Gen AI Usage
•See what sensitive data is shared with Gen AI Apps
•See who is using which Gen AI App and for what purpose
Part B Data Security Management for AI
Nikki Chapple
Thank you to this year’s Sponsors
Tags
microsoft 365 copilot
generative ai
data security
microsoft purview
microsoft defender
cloud apps
shadow ai
compliance management
endpoint protection
ai governance
sensitive data protection
dlp
cloud discovery
insider risk
activity explorer
e5 compliance
policy management
ai risk assessment
third-party ai
data loss prevention
Download
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 0
- Slides 49
- Age 68 days
Related Slideshows
11
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx
JeroenErne2
49 views
10
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx
JeroenErne2
48 views
13
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx
JeroenErne2
37 views
11
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx
JeroenErne2
35 views
21
Know for Certain
DaveSinNM
23 views
17
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx
novasedanayoga46
26 views