Changelog of 483485
Microsoft Purview compliance portal: Enhancements to global exclusions in IRM settings
In this update, we are making the below enhancements to Insider Risk Management (IRM) exclusions to reduce alert noise. 1. Keyword logic update for email - An email will be excluded from scoring only when all the attachments match the keyword exclusions or email subject matches the keyword exclusions. This will be helpful to reduce the email signature noise which commonly contains keyword "image". 2. Keyword exclusions on both target and source file paths - For signals like file copied to removable media, keyword exclusions apply on both target and source file paths. 3. File path exclusions for removable media - We will start supporting file path exclusions for removable media. 4. Exclusion support for browser - Domain exclusions are now supported for browsing indicators. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, data leakage, and security violations. Insider Risk Management enables customers to create policies based on their own internal policies, governance, and organizational requirements. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to help ensure user-level privacy.Feature ID: 483485
Added to roadmap: Wed Mar 26 2025
Last modified: Wed Mar 26 2025
Product(s): Microsoft Purview compliance portal
Cloud instance(s): Worldwide (Standard Multi-Tenant)
Platform(s): Web
Release phase(s): General AvailabilityPreview
Status: In development
Preview Available: April CY2025
Rollout Start: June CY2025