You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
dlp triage
About this tag
The dlp triage tag covers discussions about prioritizing Data Loss Prevention alerts, particularly within Microsoft Purview. Content focuses on the DLP Triage Agent, which ranks alerts by content risk, exfiltration risk, and policy risk, providing a rationale for prioritization. This transforms DLP triage from a simple queue into a governed decision point where security teams can verify alert classifications. Topics include risk-based prioritization, reviewable rationale, and practical workflows for administrators and analysts managing DLP alerts in enterprise environments.
Microsoft Purview’s Data Security Triage Agent for Data Loss Prevention now gives security teams a more inspectable way to prioritize DLP alerts: it ranks alerts using content risk, exfiltration risk, and policy risk, then emits a rationale that administrators and analysts can review inside the...