Insider Risk Management Forensic Evidence

Microsoft Purview Insider Risk Management – Forensic Evidence
Forensic Evidence is an opt-in add-on for Microsoft Purview Insider Risk Management that equips security teams with richer visual context for potential insider data security incidents. When enabled, it securely captures privacy-preserving screenshots and activity snapshots tied to policy alerts, helping analysts understand user actions, timelines, and intent while maintaining built-in privacy controls and role-based access. This add-on streamlines investigations, reduces time to triage, and strengthens evidence quality for remediation or escalation. Forensic Evidence integrates with existing Insider Risk signals and policies, adheres to Microsoft’s compliance and auditing standards, and supports least-privilege workflows. Add this capability to enhance visibility, bolster case documentation, and make informed, defensible decisions across your insider risk program.
Source: Microsoft Purview Insider Risk Management documentation

Plans (2)

Compare license packages - choose the right option with confidence

Insider Risk Management Forensic Evidence 100GB Add-on

Commercial

Insider Risk Management Forensic Evidence 100GB Add-on (Trial)

Commercial
Min: 25
Max: 25
Trial

Subscriptions (6)

Flexible terms - subscribe for 1 month, 1 year, or more

Insider Risk Management Forensic Evidence 100GB Add-on

Commercial
GB(s)
Subscription Period: 3 YearsBilling Period: 1 Year
€842.40
/ 1 Year

Insider Risk Management Forensic Evidence 100GB Add-on

Commercial
GB(s)
Subscription Period: 1 MonthBilling Period: 1 Month
€84.24
/ 1 Month

Insider Risk Management Forensic Evidence 100GB Add-on

Commercial
GB(s)
Subscription Period: 3 YearsBilling Period: 3 Years
€2,527.20
/ 3 Years

Insider Risk Management Forensic Evidence 100GB Add-on

Commercial
GB(s)
Subscription Period: 1 YearBilling Period: 1 Year
€842.40
/ 1 Year

Insider Risk Management Forensic Evidence 100GB Add-on

Commercial
GB(s)
Subscription Period: 1 YearBilling Period: 1 Month
€73.71
/ 1 Month

Insider Risk Management Forensic Evidence 100GB Add-on (Trial)

Commercial
Min: 25
Max: 25
Trial
GB(s)
Subscription Period: 1 MonthBilling Period: 1 Month
Free / 1 Month

Addons (0)

Expandable modules to customize your system

Selected plans don't have any addons.

Attaches (0)

Cost-effective add-on licenses for additional features

Selected plans don't have any attaches.