Microsoft 365 Fundamentals MS-900 Practice Question

Insider Risk Management in Microsoft Purview is specifically designed to help organizations detect, investigate, and respond to potential insider threats, such as employees mishandling or improperly accessing sensitive data. This tool uses machine learning to analyze user behavior and identify risks related to data leakage, intellectual property theft, and other internal threats, providing actionable insights to mitigate risks.

eDiscovery is used for searching and retrieving data relevant to legal or compliance cases. It supports investigations but is not intended for proactive monitoring or detection of internal threats related to data misuse.

Data Loss Prevention (DLP) policies prevent unauthorized sharing or transmission of sensitive data and are useful for protecting information. However, DLP is more focused on preventing data leaks than on detecting broader insider threats or behavioral risks.

The Audit solution in Microsoft Purview logs user and admin activities, providing a record of events for compliance and investigation purposes. While useful for retrospective analysis, it does not provide proactive monitoring or detection of insider risks.