We have updated ASD’s Blueprint for Secure Cloud (the Blueprint) to reflect Microsoft’s recent updates to Purview. The Blueprint supports the design, configuration and deployment of collaborative and secure cloud and hybrid workspaces, with a current focus on Microsoft 365.
Microsoft Purview helps organisations govern, protect, and manage data for systems built using the Blueprint. It encompasses a number of solutions which can protect organisational data and helps prevent data leakages, encrypt files in transit or at rest, apply labels to protect content, and respond to investigations.
The updates address changes to the Purview administration portal, including guidance on Sensitivity Labels and Data Loss Prevention (DLP) and address issues associated with character limits in Purview. We have also updated and simplified our guidance on DLP policies to improve security and simplify administration.
Guidance and advice in the Blueprint is informed by ASD’s experience responding to cyber security incidents, performing vulnerability assessments and penetration testing of Australian Government organisations. We will continue to update the Blueprint to ensure you can access the latest better-practice cyber security advice for your organisation. If you have any questions, or would like to contribute to the Blueprint, please email us at blueprint@asd.gov.au or contact us on GitHub or our new Slack (accessible to ASD Partners – please email us if you are interested in joining the conversation).
Learn more about the Microsoft Purview update to the Blueprint.