Dynamics 365 Customer Insights - Data - Use Microsoft Fabric OneLake as a data source
🚨 The Signal: Dynamics 365 Customer Insights - Data can now use Microsoft Fabric OneLake as a direct data source. This eliminates data copying, enabling faster ingestion and integration of customer data, but expands the data attack surface.
The Impact
Security teams and data owners are affected by increased data exposure risk due to new integration points.
- Security teams: Increased attack surface for sensitive customer data.
- Data owners: New data flow paths require re-assessment of data classification and access policies.
- Compliance officers: Need to verify adherence to data residency and privacy regulations.
- Identity teams: Review access controls for OneLake data sources used by Dynamics 365.
The Action
- Review existing data classification and sensitivity labels for data stored in Microsoft Fabric OneLake.
- Audit access permissions for OneLake workspaces and items, ensuring least privilege for Dynamics 365 Customer Insights - Data integration.
- Implement or review data loss prevention (DLP) policies in Microsoft Purview to monitor data flows between OneLake and Dynamics 365.
- Document data lineage and data flow diagrams to include this new integration point for compliance and incident response.
- Assess the impact on data residency requirements and ensure compliance with Australian data sovereignty policies.
Domain: Purview · Impact: high · Workload: Microsoft Purview · Essential Eight: Restrict Administrative Privileges · ISM: ISM-0445, ISM-1175, ISM-1380, ISM-1507, ISM-1508, ISM-1509, ISM-1647, ISM-1648, ISM-1650, ISM-1686, ISM-1688, ISM-1689, ISM-1883, ISM-1897, ISM-1898