Microsoft 365: Multi-admin change notifications for Microsoft 365 Backup

🚨 The Signal: Microsoft 365 Backup now supports multi-admin change notifications. This allows designated administrators to receive email alerts for critical changes to backup settings or actions, enhancing oversight and reducing the risk of malicious or accidental data loss.

The Impact

Security teams and backup administrators are affected, reducing the risk of undetected malicious or accidental backup configuration changes.

• Security Teams: Reduced risk of undetected backup tampering.
• Backup Administrators: Improved oversight of backup settings and actions.
• Compliance Officers: Enhanced audit trail for backup integrity.
• Data Owners: Greater assurance of data recoverability.

The Action

1. Navigate to Microsoft 365 admin center > Settings > Org settings > Microsoft 365 Backup.
2. Configure notification settings to specify recipients for backup-related alerts.
3. Define a security group for backup notification recipients to centralise management.
4. Review existing backup policies to incorporate notification requirements.

Domain: Purview · Impact: medium · Workload: Microsoft Purview · Essential Eight: Regular Backups, Restrict Administrative Privileges · ISM: ISM-0445, ISM-1175, ISM-1380, ISM-1507, ISM-1508, ISM-1509, ISM-1511, ISM-1515, ISM-1647, ISM-1648, ISM-1650, ISM-1686, ISM-1688, ISM-1689, ISM-1705, ISM-1706, ISM-1707, ISM-1708, ISM-1810, ISM-1811, ISM-1812, ISM-1813, ISM-1814, ISM-1883, ISM-1897, ISM-1898