Gain enhanced visibility and control with Office 365 Advanced Security Management
How does it work?
Activity Policy and Anomaly Detection Policy
Policies are grouped into two categories Activity Policy and Anomaly Detection Policy. Activity Policies are simply alerts to important activities such as administrator activity from a new IP address, mass data downloads, new IP used to access corporate data, and more. Alerts can be sent via email or text message depending on their severity. Alerts can be used to understand behavior that is not malicious but also not routine. Activity Policies help admins understand resource misuse not necessarily malicious behavior. Your users could be using data in ways which puts stress on your network when there are better ways to get the job done.
Anomaly Detection Policies are more focused on strange behavior that could signal malicious behavior. For example, this could be a brute force login attempt, or distant geographic logins close together in time. Additionally, Anomaly Detection Policies can be configured to keep an eye on behavior outside your network to better understand the current state of activity. Automatic rules can be set up to suspend accounts depending on their risk score. Each alert is given a score which is calculated using over 70 different metrics.
Third-Party App Insights
On top of all these features Microsoft has included the ability to view uploaded network reports on a dashboard. This data rich view helps admins understand network activity such as how much data is being sent to different cloud storage providers. If your company uses OneDrive for Business you would expect lots of traffic to that domain. But maybe some employees are uploading data separately to Dropbox or Box. This tool helps identify behavior like this which could be impairing network health.
More in Office 365
M365 Changelog: (Updated) Loop components in Outlook Mail Preview
Oct 22, 2022 | Rabia Noureen
How to Schedule an Email in Outlook
Sep 14, 2022 | Siji Roy
ESPC22 Conference Discount for Petri Readers
Sep 6, 2022 | Russell Smith
Microsoft Defender for Office 365 Gets Differentiated Protection for Priority Accounts
Apr 14, 2022 | Rabia Noureen
Microsoft 365 Non-Profit Plans to Get a Price Hike in September
Apr 11, 2022 | Rabia Noureen
Microsoft to Launch Office 365 Government Secret Cloud in Mid-2022
Mar 29, 2022 | Rabia Noureen
Most popular on petri