Microsoft Purview compliance portal: Insider Risk Management- Adaptive scopes

🚨 The Signal: Microsoft Purview Insider Risk Management policies can now use dynamic Adaptive Scopes based on Entra ID attributes. This enhances policy targeting for insider threat detection without manual group management, improving precision and reducing administrative overhead.

The Impact

Security teams are affected by improved policy targeting, reducing insider risk exposure.

• Security Teams: Reduced risk of data exfiltration from targeted user groups.
• Compliance Teams: Enhanced ability to demonstrate granular insider risk controls.
• Identity Teams: Less manual effort in managing security groups for Purview policies.

The Action

1. Navigate to Microsoft Purview compliance portal > Insider Risk Management > Policies.
2. Create or edit an Insider Risk Management policy.
3. Under 'Users and groups', select 'Add or edit adaptive scopes'.
4. Choose existing adaptive scopes or create new ones based on Entra ID attributes.
5. Review and publish the updated policy.

Domain: Purview · Impact: medium · Workload: Microsoft Purview