https://store-images.s-microsoft.com/image/apps.8664.af35b430-de86-457e-a34b-937abce0bb4d.b270bc23-5af4-4cea-b19e-828bad5eb61d.2c43b575-d554-4b10-ae98-f5475f5ee757

Data Security Triage Agent in Data Loss Prevention

by Microsoft Security

The Data Security Triage Agent streamlines alert triage by identifying & prioritizing data loss risk

The Data Security Triage Agent helps security teams focus on the most important data loss alerts by automatically analyzing and prioritizing them. It assesses the risk level of each alert using organizational settings and provides a transparent rationale for its categorization. Embedded within the Microsoft Data Loss Prevention alert queue, the agent significantly reduces the time required for manual triage, allowing teams to improve their response time and operational efficiency.
Agent tasks: Alert triage, data risk scoring, policy violation detection, incident prioritization, contextual analysis
  • Agent workflow
  • Input: DLP policy alerts, user activity metadata, content classification, organizational risk thresholds
  • Output: Prioritized DLP alert queue with risk-based categorization and rationale for recommended response actions

    • At a glance

    https://store-images.s-microsoft.com/image/apps.18924.af35b430-de86-457e-a34b-937abce0bb4d.fa6edc71-9e41-43bf-b174-2f967bcd1a24.15ae367b-0aff-421c-8acd-adddba341157