IRM
Microsoft 365 contains a set of policy tools to allow organizations to identify risky behaviors and activities as well as act on those alerts. IRM is located inside the Microsoft 365 Compliance portal at https://compliance.microsoft.com/insiderriskmgmt. IRM combines components from data loss prevention (DLP), sensitivity labels, natural language processing (NLP), sentiment analysis, access-control signals, and triggering events to quickly alert organizations to risks such as potential data theft by a departing employee or sensitive information leaks.
Microsoft 365 IRM is designed to help mitigate various internal risks, such as the following:
- Data theft by a terminated or departing employee
- Intentional or unintentional leaking of sensitive information
- Violations of internal corporate policy, such as offensive language, cyber-bullying, harassment, and threats
These risks (along with others) can be identified and investigated through the IRM process and...