Category: Purview & Compliance
-

Designing an Enterprise AI Data Protection Architecture for Microsoft 365
Can Microsoft Purview protect Azure OpenAI, AI agents and custom AI applications on its own? Explore where Purview ends, where Presidio begins, and how both complement each other in enterprise AI architectures
-

AI Governance in Microsoft 365: A Practical Operating Model
Most organisations have an AI policy. Very few have AI governance. This article turns the policy into a working operating model for Microsoft 365, mapping six governance layers to Purview, Entra and Compliance Manager, with a Copilot governance starting point, a maturity model, and an up to date view on the EU AI Act.
-

Require Risk Remediation: The Game-Changer for Conditional Access Policies
Discover the game-changing ‘Require Risk Remediation’ control in Microsoft Entra Conditional Access. This preview feature simplifies risk management by handling both password and passwordless users in one policy, reducing complexity and misconfigurations. Get a step-by-step guide, real-world benefits, and pragmatic insights into its limitations for enhanced security.
-

Is Your Guest Access in Entra Putting Your Organisation at Risk?
Many organisations assume Microsoft Entra ID handles guest users securely by default—but it doesn’t. In this post, we uncover the top 5 common mistakes in guest access management, from excessive directory visibility to perpetual access without lifecycle controls. Learn how to lock down your tenant with practical fixes, ensuring secure B2B collaboration without the risks.
-

Unlocking Stronger Security: A 2025 Guide to Microsoft’s Baseline Security Mode for Microsoft 365
A practical look at Microsoft’s Baseline Security Mode: what it does, where it helps, and how it supports essential cyber hygiene under standards like Cyber Essentials and NIS2.
-

OneDrive File Picker Vulnerability: What You Need to Know
A critical flaw in Microsoft’s OneDrive File Picker could allow third-party apps to access files across Microsoft 365 tenants without user interaction. Learn what happened, the risks involved, and how your organisation can stay protected.
-

New Outlook Feature: Managing Shared Mailboxes as Accounts
Microsoft is enhancing shared mailbox management in Outlook for Windows, rolling out from May to August 2025. Users with Full Access can now add shared mailboxes as accounts to manage settings like Rules and Signatures directly. No admin action is needed, but preparation can ensure a smooth transition. Learn how this update impacts your organization…
-

New OneDrive Feature Poses Data Leak Risk for Businesses
Microsoft’s new OneDrive feature, launching in May 2025, lets users sync personal accounts on work devices—a convenience that could spell trouble for businesses. This opens the door to data leaks and compliance risks. Our post dives into these security concerns and offers IT administrators practical solutions using Group Policies and Intune. Learn how to lock…
-

AI Governance in 2025: Protecting Against Data Exfiltration
As Artificial Intelligence (AI) transforms industries with unparalleled innovation, it also brings serious security risks like data leaks and malicious attacks. A staggering 57% of organisations report rising AI-related incidents, yet 60% lack basic controls. This blog explores the top AI threats, including data exfiltration and malicious prompt injection, and outlines a Zero Trust framework…

