top of page

Microsoft Purview del 10: Compliance Manager

Writer's picture: Bjørnar AassveenBjørnar Aassveen

Do you feel like compliance management is like trying to keep track of all your socks after a round in the washing machine? Well, Microsoft Purview Compliance Manager is here to help you find that missing sock! 🧦


What is Compliance Manager?

Microsoft Purview Compliance Manager is a solution that helps organizations automatically assess and manage compliance across their multicloud environments. It simplifies compliance management by providing pre-built assessments for common industry and regional standards and regulations, as well as customized assessments for specific needs.


What lies within the different categories?

  • Solutions : This includes tools and features that help manage compliance, such as workflow features to efficiently complete risk assessments and detailed guidance for improvement actions.

  • Assessments : Assessments help organizations evaluate their compliance with industry and regional regulations. Compliance Manager offers over 360 pre-built assessment templates that can be customized

  • Regulations : Compliance Manager includes a comprehensive set of regulatory templates for creating assessments. These templates help organizations comply with national, regional, and industry-specific requirements

  • Policies : Policies in Compliance Manager help define and implement policies and procedures necessary to meet compliance requirements. The example shows a policy that alerts you to a change in your compliance score.

  • Alerts : Alerts can be created for activities that could impact compliance scores, allowing organizations to quickly respond to potential issues. Alerts are generated by policies as in the example above, whenever there is a change to the "compliance score" as defined in the policy above an alert will be generated.

  • Reports : Reports provide insight into compliance status and help document progress and fulfillment of compliance requirements


What is included in the Compliance score?

Compliance score is a risk-based score that measures progress in completing recommended improvement actions within controls. This score helps organizations understand their current compliance status and prioritize actions based on their potential to mitigate risk.



Examples of use

For organizations, Microsoft Purview Compliance Manager can be particularly useful for ensuring compliance with GDPR and other European regulations. For example, an organization can use Compliance Manager to:

  • Assess GDPR compliance : Using pre-built GDPR assessment templates, businesses can quickly identify areas that need improvement.


In the example below, I set up a GDPR assessment, here you get access to 385 predefined assessments.

During the setup, you select which sources/services you want to run the assessment on, here you can link up multiple sources. https://learn.microsoft.com/nb-no/purview/compliance-manager-assessments#create-an-assessment-using-a-guided-process

In my case, I only use M365 as a source. After the assessment is set up, you will receive a summary of the state of the realm, in addition to recommended actions to improve the state.


  • Implement security measures : Compliance Manager provides detailed guidance for implementing necessary security measures, such as multi-factor authentication and DLP rules.

Monitor compliance status : Using the reporting features, the organization can continuously monitor their compliance status and document progress for audits.


Note that this is from a demo tenant😷😎


Bjørnar&AI

0 comments

Recent Posts

See All

Comments


bottom of page