Monday, March 16, 2020

A deeper dive into protecting your information in the cloud - Part 2

As we talked about in the first post, we have several ways to protect our information in the cloud. I thought it would be fitting to start with AIP. Azure Information Protection or MIP (Microsoft Information Protection) as some call it these days. But a lot has changed here, and we will start by describing what has happened lately. A fairytale from the real world . Feel free to ignore the history chapter if you want to go to the technical stuff. Fair warning: In this, our first post about AIP/MIP we will look at the basics of things, and how it all looks from the portal.

Thursday, March 5, 2020

A deeper dive into protecting your information in the cloud - Part 1

During the years I have done a lot of information protection projects and set up solutions with labeling for both small and larger organizations. For customers who want to protect their data, there really are no reasons to wait to get started. Know that a lot of time will (should) go into planning the label settings and protections settings. And also know that this is not a perfect system. It will require a lot of thinking on your part to get this right. I will write a series of blogposts describing the different ways to protect data in the cloud and my experiences with the different solutions. This is part 1 in this series and will serve as a kind of introduction.

Thursday, February 6, 2020

A short guide to internet safety (for beginners).

Things to expect when you start using a computer for the first time. (You can print out this to give to anyone who may need it.) And let's be honest. It is not just for the newbies. Many get scammed every day, even if they know a thing or two about computers and the web. As computer professionals we often think that guides like this isn’t necessary anymore, but people are being scammed every day, so if this can save even a couple of people, it has done its job. This is info that doesn't take into account what kind of security software you are using, and basically is just common sense. 

I have always thought something like this should be given to first-time PC-users/buyers. (Here is the computer, and here is the guide. Read this before you start doing anything at all on your computer. If it is too technical get help going through this from a family member/friend that knows about this stuff.)

Monday, December 9, 2019

For norwegian readers: Modern Workplace mini conference in Bergen.

For my norwegian readers, I wanted to mention that we will have a mini conference about security and user experiences in the cloud, right here in Bergen in february. 

Wednesday, November 20, 2019

What happens to a file that is labeled, but not protected, if we add encryption to the label at a later date?

Yes, this is another question that I have heard a few times, and I see why it sometimes can seem confusing. And today I was asked again: So, what does happens to a file that has been labeled, but not protected if we add protection to the label later. The answer is that label settings that were applied at the time will not be changed because the label has been changed, I said, and felt pretty sure about this, but I still wanted to make certain. So, to the lab I went.

Thursday, November 14, 2019

Things to consider when you want to get started with information protection (MIP/AIP)

Information Protection gives us the opportunity to classify, label, protect and monitor our (sensitive) information. A lot of improvements has happened over the past years, and it is maturing into a solution I feel everyone should care about. 

Ignite 2019 - News in the Information Protection world

When I set my feet on the ground back in norway 25 hours after checking out of my hotel in Orlando, I felt tired, but happy. Happy to be home in -4 degrees (24,8 F), but also happy because I had the opportunity to meet a lot of great and skilled people, gain insight into new technology and to be part of a great event.

Wednesday, October 16, 2019

The pre-Microsoft Ignite 2019 blogpost about Information Protection - Part 2

Welcome to part 2 of my pre-Ignite 2019 blog posts. Here I continue my recommendations for Ignite 2019 for those of you who want to learn more about Information Protection. 

Monday, October 14, 2019

The pre-Microsoft Ignite 2019 blogpost about Information Protection - Part 1

Some of you may be attending Ignite 2019, and like me, want to use this oportunity to see what is happening in the Information Protection world. I have been trying to find a list of sessions I want to see, and I thought I could share them with you.

Tuesday, October 8, 2019

For norwegian readers. New podcast series in norwegian about information protection and more.

Since many of the people reading my blog are from outside of Norway, I always try to keep most of my stuff in english, but I wanted to mention the new podcast series I am doing with the two MVP's Olav Tvedt and Alexander Rødland.

Tuesday, September 17, 2019

Requirements to use Information Protection (AIP, MIP, RMS) in your organization

Sometimes, when you work with something over time, and then want to explain some of the functionality to others, it is easy to jump some steps. I have gotten some feedback from readers that has made me realize that there are a few things that should be added to many of my posts. 

Tuesday, September 10, 2019

How to use Sensitivity sublabels to protect information between groups inside a tenant.

Some companies have pretty strict boundaries that should make it possible for individual groups to secure information from the other groups. In my example we have 4 project groups that lives in the same tenant, and they can share quite a bit, but they also have certain types of information they want to keep from the others. This could for instance be used for internal projects where information is confidential etc.

Monday, September 9, 2019

Protecting Exchange Online email with mail flow rules (Office 365 Message Encryption).

You may not have setup AIP, but still want to protect some of your emails automatically. If you have an Office 365 E3 (or higher) license you can use Encrypt and Do Not Forward rules to protect your emails.

Monday, August 12, 2019

Things you may want to consider as you “migrate” your AIP labels to sensitivity labels.

I have done a few posts on Unified labeling, and after reading this amazing blog post from Microsoft, I was left with a feeling that there was nothing more to say about Unified labeling. This post covered so much. Still, there are a couple of things you might want to consider before migrating your labels to sensitivity labels.

Wednesday, June 26, 2019

The user-friendly Information Protection blog post.

The other day I had a thought: How about a blog post about Information Protection for people who are completely new to it? I sometimes hear that one of the things people like about blogs is that they take complicated information and makes it easier to understand and that has always been my ambition with this blog. I’m not claiming to have done that, but points for trying right? 

Tuesday, June 25, 2019

Enterprise Mobility + Security. A licensing blog post.

“If you have built castles in the air, your work need not be lost; that is where they should be. Now put the foundations under them.”

The great Henry David Thoreau released Walden in 1854 about something completely different of course, but I am taking the liberty to use this quote in a cloud computing context.

In almost every project I am in, I get this one question: Should we choose EM+S E3 or EM+S E5? And it really is a good question. The license cost is almost double in E5, and yet, the two licenses seems to contain a lot of the same stuff. Most of the time I can tell the customer what is gained by going for E5, but let’s look at some of the important differences here. Licensing can be extremely confusing, and Microsoft is in no way the worst company here. 

Tuesday, June 18, 2019

An interview about security

In this interview I try to answer some questions about security. As you can probably see, the term cyber security is used here, although I have tried to be clear that I mostly work with information Security and not cyber security. 

Wednesday, April 24, 2019

How Microsoft Information Protection (AIP) protects data

Most of these blog posts are created from questions I receive from customers and participants in my Information Protection workshops, and this is no different. There are always questions on how data is protected, what kind of encryption is used, if Microsoft can read the data and so on, so I wanted to try to clarify some of these things here. This is intended for those of you who are new to AIP and encryption, and for deep dives into cryptography there are way better sources out there.

Tuesday, April 23, 2019

Azure Information Protection and Unified labeling

If you are working with Microsoft Information Protection (MIP) chances are you have heard the term Unified labeling. If you have been working with AIP, you have probably heard or seen references to activating unified labeling. 

Wednesday, April 10, 2019

What is MIP? (Microsoft Information Protection)

I think most of us who have been working with Microsoft cloud (Azure) have heard about MIP, but not everyone knows what it is, because this question comes up more often than one should think, based on how much information has been released about it since last Ignite. Some have asked me if MIP is just AIP (Azure Information Protection) renamed, but this is not the case. 

Tuesday, March 12, 2019

Monday, March 11, 2019

Add your own sensitive info types to use in sensitivity labels

As you probably know Microsoft has provided us with a list of predefined sensitivity types that follows us around wherever we can configure labels etc. It is getting better and better as more types are added, but we may not find all the types we would need for a setup, and that's why I want to show you how you can add your own sensitivity types.

Wednesday, March 6, 2019

How to work with a mix of AIP P1 and P2 licenses

Just to get this out of the way: Yes, there are several ways to license AIP. You can get it through AIP license (Plan 1(P1)/Plan 2(P2)), Enterprise Mobility + Security license (E3/E5), the rather new Information and Compliance policy and also some Office 365 licenses. Just think of my references to P2 as the “upgraded basic” (P2/E5 etc.)

Tuesday, March 5, 2019

What happens to protected content if I delete an AIP label?

Just a short blog post today. What happens to protected content if you delete a label? Yes, that is a question I have been asked a few times. Will I lose access to the protected content if the label that has protected it is deleted? That would be pretty bad right?

Monday, March 4, 2019

Azure Information Protection client and portal confusion

As many of you know there are now two places to create labels (Azure Portal and Office 365 Security portal) and we also have two different AIP clients. One client for each portal really, one of them is the good old AIP client that we know from earlier, and then there is another: The AIP client with Unified Labeling.

Wednesday, January 2, 2019

AIP in the Azure portal

One of my first (and most read) blog posts was AIP – Policies, Labels, templates and protection explained.

The thing is, AIP has changed so much, it really isn't as useful as it once was back in the day (close to a year ago). Not only have the views changed, but it has become (as I see it at least) easier. I thought we should just take a quick look at how things look in the Azure portal these days.

A deeper dive into protecting your information in the cloud - Part 2

As we talked about in the first post, we have several ways to protect our information in the cloud. I thought it would be fitting to start w...