IT and security teams are struggling to keep up with the explosive growth of “free” Generative AI services. The growing sprawl of new AI tools coupled with their universal attractiveness to people across industries and roles makes it difficult to build guardrails to direct business users to do their work with authorized tools and services.
At the same time, ungoverned use of consumer GenAI services exposes business data (including personal data, financial information and intellectual property) to unsustainable data security and compliance risks, while limiting the adoption of authorized enterprise services like Microsoft’s Copilot offering.
Still, the goal of security teams is not to simply say “no.” Rather, it is to sustainably enable business productivity by understanding underlying user requirements and providing secure and authorized tools to get the job done.
Seems like a tough challenge to accomplish at scale! Luckily, there are now proven strategies to do just that. Intelligently combining capabilities from Microsoft Purview (Data Loss Prevention) and Defender (Defender for Cloud Apps, Defender for Endpoint) product families can help create technical guardrails that stay current with minimal ongoing manual admin effort while putting organizational policy to practice and keeping users aware of what’s expected of them when it comes to utilizing AI services at work.
During the session, we’ll cover and demo technical topics like:
– How to identify and manage ongoing use of GenAI services with Defender for Cloud Apps (MDA) and Defender for Endpoint (MDE)
– How to monitor and curtail exfiltration of sensitive business data to consumer GenAI services with Purview Endpoint DLP
– How to use Defender capabilities like Advanced Hunting coupled with data from Purview, MDA & MDE to build a granular understanding of the use of GenAI services across roles and departments
You will take home easy and clear patterns and practices you can put to use immediately to start getting a grip on GenAI at work.
This practical session is especially useful for security responsibles as well IT Pros and admins. It is valuable for anyone with a technical background in Microsoft cloud services.
