Updating DLP Policy to Common Controls #469
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
* Fixed numbering issue in instruction for 5.3 * Update baselines/gmail.md End with a period for automation processing reasons. Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> --------- Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com>
* Added Policy Group 18 * Added Drift Rule for Policy Group 18 * Fixed Table of Contents * Apply suggestions from code review Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> * Fixed Implementation * Added Policy Under Policy Group 16 * Fixed Policy Group 16 Intro * Changed Security to Secure in header * Fixed TOC * Apply suggestions from code review Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> * Fixed drift rule files * Update baselines/commoncontrols.md Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> --------- Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: mdueltgen <148897369+mdueltgen@users.noreply.github.com>
* Updated location of setting in instructions and fixed bolding * Update baselines/drive.md Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> --------- Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com>
* updated location of setting in implementation instructions * adding in periods * Update baselines/commoncontrols.md Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> * Update baselines/commoncontrols.md removed extra period Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> * Remove double period in overview --------- Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com>
* Updated location for takeout admin control based on update to data tab in admin console * Update baselines/commoncontrols.md Fixes capitalization of import/export per admin console Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> * removing unnecessary save step --------- Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com>
* udpated location of setting for data regions in instructions * Update baselines/commoncontrols.md removed S in compliances Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> --------- Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com>
* Added Policy 15.2 and renamed previous 15.2 to 15.3 * adding drift rule for 15.2 * Added TTP Mappings * Apply suggestions from code review Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> * Update drift-rules/GWS Drift Monitoring Rules - Common Controls as of 11-14-23.csv Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> --------- Co-authored-by: mdueltgen <148897369+mdueltgen@users.noreply.github.com> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com>
* Updated Resource Link for DriveDocs 3.1 (#400) * Fixes Numbering Issue in GMAIL 5.3 Instructions (#399) * Fixed numbering issue in instruction for 5.3 * Update baselines/gmail.md End with a period for automation processing reasons. Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> --------- Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> * Updating Classroom 1.2 Instructions (#407) * New Common Controls policy for Early Access App Access controls (#371) * Added Policy Group 18 * Added Drift Rule for Policy Group 18 * Fixed Table of Contents * Apply suggestions from code review Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> * Fixed Implementation * Added Policy Under Policy Group 16 * Fixed Policy Group 16 Intro * Changed Security to Secure in header * Fixed TOC * Apply suggestions from code review Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> * Fixed drift rule files * Update baselines/commoncontrols.md Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> --------- Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: mdueltgen <148897369+mdueltgen@users.noreply.github.com> * Updated Location of Setting in DriveDocs 6.1 Instructions (#404) * Updated location of setting in instructions and fixed bolding * Update baselines/drive.md Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> --------- Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> * Updating Common Controls 11.2 Implementation Instructions #375 (#411) * updated location of setting in implementation instructions * adding in periods * Update baselines/commoncontrols.md Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> * Update baselines/commoncontrols.md removed extra period Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> * Remove double period in overview --------- Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> * Updating Common Controls 12.1 Implementation Steps (#414) * Updated location for takeout admin control based on update to data tab in admin console * Update baselines/commoncontrols.md Fixes capitalization of import/export per admin console Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> * removing unnecessary save step --------- Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> * Update location of rules setting in admin console in implementation steps. (#418) * Updating Common Controls 15.1 Implementation Steps (#420) * udpated location of setting for data regions in instructions * Update baselines/commoncontrols.md removed S in compliances Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> --------- Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> * Fixed backslashes/forwardslashes bug in Common Controls Baseline (#426) * Changed Early Access to Early Access Apps (#428) * Add Data at Rest processing policy to Common Controls baseline (#434) * Added Policy 15.2 and renamed previous 15.2 to 15.3 * adding drift rule for 15.2 * Added TTP Mappings * Apply suggestions from code review Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> * Update drift-rules/GWS Drift Monitoring Rules - Common Controls as of 11-14-23.csv Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> --------- Co-authored-by: mdueltgen <148897369+mdueltgen@users.noreply.github.com> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> * updating implementation steps for 13.1 to clarify editting rules * fixed numbering and removed old language about having to click show more which doesn't exist anymore in the admin consle. * Apply suggestions from code review Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> * Update baselines/commoncontrols.md Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> --------- Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: jkaufman-mitre <135844572+jkaufman-mitre@users.noreply.github.com> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com>
mdueltgen
requested review from
buidav,
adhilto,
jkaufman-mitre,
prodjom and
mitchelbaker-cisa
jkaufman-mitre
approved these changes
Oct 10, 2024
mitchelbaker-cisa
requested changes
Oct 10, 2024
|
One other thing -- the smoke tests are failing because we've added the new policies to the markdown but not in the rego. Can we create issues to track the rego implementation of common controls 18.1, 18.2, and 18.3 and mark them as follow-up todos after driftwood is merged into main? |
|
@mdueltgen don't forget to update the table of contents entries. |
Issue #473 for tracking code changes. |
|
Added in changes for table of contents, policy group description, and clarification of manage rules button. I would like to discuss on Thursday the group's thoughts on implementation steps based on comments above. |
adhilto
requested changes
Oct 24, 2024
Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com>
buidav
requested changes
Oct 29, 2024
adhilto
requested changes
Oct 29, 2024
Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com>
jkaufman-mitre
approved these changes
Oct 29, 2024
buidav
requested changes
Oct 29, 2024
Parity w/ m365 and scubagear 3rd party DLP options license info Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com>
buidav
requested changes
Oct 29, 2024
buidav
requested changes
Oct 29, 2024
Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com>
buidav
approved these changes
Oct 29, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
🗣 Description
Now that DLP exists for Chat, Gmail, and DriveDocs we are looking to move all three to common controls.
Would appreciate feedback on implementation steps about how detailed we should be for creating DLP policies
Removed existing sections for DLP from Chat and DriveDocs and added to Common Controls
💭 Motivation and context
Closes #454
🧪 Testing
✅ Pre-approval checklist
✅ Pre-merge Checklist
Squash and mergebutton.✅ Post-merge Checklist