How to protect the most important data

There is a bunch of different tools out there to create all sorts of data security, but I go with the obvious one - M365. Just a couple of years a go I had a hunch that M365 is in the path to be something great and today it starts to be there.

Device management, Windows, Entra ID and M365 together makes so strong solution that you can finally build something end to end.

1. We of course need to start from the foundation, Devices need to be encrypted and managed along with the definition of what is a compliant device in our environment.
2. We need to define where we will keep the most sensitive data and build correct settings for those locations - Sharepoint site or Teams site being the easiest ones to create and manage of course.
3. Define Sensitivity labels for the most important data along with tight enough access controls
4. Create DLP policies to guide and force users to use the protected locations for that data.

Now we have a location that allows only certain types devices that are managed by organization and in good enough shape to access the data.

For the impossible to manage on screen image captions we can even use features like Dynamic watermarking to get details of the user opening a document visible in those images.

How about that! A secure place to use and store your most sensitive or important data.