Microsoft Purview compliance portal: Insider Risk Management - Generative AI apps activities as triggers in IRM

🚨 The Signal: Microsoft Purview Insider Risk Management now uses generative AI app activity as triggers for 'Risky AI usage' policies. This allows organisations to detect and respond to potential insider risks related to employees' use of AI tools, enhancing data protection and compliance.

The Impact

Security teams are affected by new capabilities to detect and mitigate insider threats related to AI usage, reducing data leakage risk.

• Security teams gain new signals for detecting data exfiltration via AI apps.
• Compliance officers can better enforce policies around sensitive data and AI.
• Data owners have increased assurance against intellectual property theft.
• Legal teams can leverage audit trails for AI-related policy violations.

The Action

1. Navigate to Microsoft Purview compliance portal > Insider Risk Management > Policies.
2. Create a new policy or edit an existing 'Risky AI usage' policy.
3. Under 'Triggers', select 'Generative AI apps activities' as a condition.
4. Define the specific generative AI app activities to monitor.
5. Configure policy settings for detection, alerts, and response actions.

Domain: Purview · Impact: high · Workload: Microsoft Purview