2021 Security Prognostication
The first technology that we predict will gain serious momentum is Azure Information Protection. Call it rights management, call it sensitivity labeling, call it black-eyed-pea salad: just know that it’s happening.
Quarantine is a big part of the timing. Folks are taking corporate data home and accessing our secrets in ways we never envisioned. Relying on VPN and email security isn’t useful once the data has been copied off the corporate network. With Azure Information Protection, we can establish persistent protections on files, provide simple sensitivity labels for users to classify documents, enable auto classification with no additional licensing requirements, and now even apply sensitivity to whole Teams channels and SharePoint libraries.
Speaking of sensitivity labeling, Microsoft Defender for Endpoint has always had a cursory tie-in with Azure Information Protection, but in H2 2020 that tie-in got a real purpose. MD4E can now report on the highest sensitivity label that’s been detected on a given machine, helping us understand the true severity of an attack. Defender for Endpoint now also supports Mac, Android, Linux, and pretty much any other OS you want to throw at it, while also enabling web content filtering.
Microsoft may have been late to the party with a SIEM, but they showed up with chips and brought friends. With zero infrastructure, free ingestion of Office 365 data, and incredibly low data retention costs, Azure Sentinel is becoming the go-to solution to get up and running with almost instantaneous results. Look for our webinar on January 28, and a further exploration of this in next month’s blog post, but if you’re trying to drive toward compliance and need to keep audit logs longer than 30 days, Sentinel is your ticket.
If you would like to learn more about these technologies, we’re ready to help. We’d be happy to set up a Security Immersion Workshop for your organization to learn more about how these Microsoft technologies can improve your security posture.