Introducing Cloud DLP for Microsoft Teams

We're thrilled to announce the industry’s first AI-native cloud DLP solution for Microsoft Teams. Customers can now prevent sensitive data such as PHI, PII, PCI, secrets, and keys from leaking into private, public, and shared Teams channels. Furthermore, Nightfall’s detection engine is powered by AI, which can be fine-tuned over time to enforce custom policies and minimize security teams' total cost of ownership. 

How does DLP for Teams work?

Nightfall for Teams empowers security teams and employees to collaborate seamlessly to prevent sensitive data leaks. Our latest integration provides flexible, holistic coverage that helps security teams to:

• Discover PII, PHI, PCI, secrets, and credentials in private, public, and shared Teams channels
• Scan attachments and messages (including updated messages)
• Receive near-real time alerts of violations via email as well as the Nightfall console
• Send automated emails to notify employees about violations and request them to self-remediate
• Fine-tune detection to streamline workflows and implement custom policies

Read on for an end-to-end product overview, from installation to sensitive data remediation.

What does installation look like?

Nightfall for Teams works similarly to other Nightfall for SaaS integrations like Slack, Jira, Notion, and Confluence. Like the other SaaS integrations, Nightfall connects directly over Team’s Graph APIs—with no additional set up, tuning, or endpoint agents required. 

Once you register and onboard the Microsoft 365 tenant and enable support for MS Teams, you’ll be able to scan for PII, PHI, PCI, secrets, and credentials using Nightfall’s Machine Learning (ML) detectors. The best part? Nightfall’s detection engine works right out of the box.

Once Nightfall detects sensitive data in a public, private, or shared Teams channel, an alert will pop up in the Nightfall violations dashboard in near-real time. Then, it's time to move on to remediation.

How does Nightfall help remediate sensitive data?

The remediation process starts with near-real time alerting via email as well as a user-friendly list of violations in the Nightfall console. Security teams have the following options available to them:

• Notify end users via email: Send an automated email to notify employees about precisely when and how company policy was violated. In this email, employees can choose among a link to self-remediate the sensitive data from their Teams message, a link to provide a business justification, or a link to report a false positive.
  
• Review violations in the Nightfall console: Security teams can keep track of violations and employee remediations in the Nightfall console. After a violation is remediated by the employee, it automatically shows as 'Resolved.’

What's next at Nightfall?

Teams is the first integration in Nightfall’s Microsoft 365 product suite. However, we’re excited to announce that support for other applications including OneDrive for Business, Exchange Online, and Sharepoint Online will be coming in the near future. 

Reach out to sales@nightfall.ai to start protecting your data in Teams today!