The 5 key steps to safely prepare for Microsoft Copilot

27/09/24 Wavenet
Young focused man wearing eyeglasses working on laptop while sitting at desk in a modern coworking space

Is your business Copilot-ready? In a bid to take advantage of the advanced productivity and automation benefits that Microsoft Copilot offers, businesses have rushed the implementation of Copilot without considering wider repercussions, which might after the security of their infrastructure.

Without taking the necessary preparation steps, businesses weaken their security posture, putting their data and systems at risk of a cyber-attack. Before you dive into using the tool, follow our quick steps to ensure you create a safe environment for using AI technology.

The importance of preparing for AI

Microsoft Copilot respects any current security policies and controls you have in place, with your existing permissions determining which content and files are relevant to share with each employee. So, before you integrate Copilot with your apps and systems, it’s crucial that you ensure your security practices are in place and up to date.

By missing out fundamental security principles and content management practices, such as multi-factor authentication, selectivity labelling and access permissions, you could open your business and data up to internal and external threats.

5 key preparation steps to ensure a safe Copilot implementation: 

1.  Make sure you have all the foundations in place 

While Copilot is free to use on the web, to get the full integrated experience you’ll need to have a Microsoft 365 or Dynamics 365 license. Since the AI solution works within Microsoft’s apps, you’ll need to have these set up with desktop settings turned on to take advantage of its full potential.

2.  Secure & classify files with Microsoft Purview 

Make sure any sensitive data is secure and classified to ensure it’s always in safe hands. Within Microsoft Purview, you can use sensitivity labels to classify and protect data within your Microsoft ecosystem, while Purview’s Information Protection can be set up to automatically classify a document.

3.  Set up permissions and content management practices 

A key internal security vulnerability is oversharing content due to incorrect team and user permissions being in place. By taking a ‘just enough access’ approach to your SharePoint permissions, you can ensure employees only have access to data and files that are relevant to their department or role.

You can use SharePoint Advanced Management to help govern this. The system will provide reports that identifies any data or file sharing and where your sensitive data is located within your Microsoft ecosystem. Plus, Microsoft Entra ID can help IT teams manage user access on a personal or department basis.

4.  Clean up your SharePoint folders

Part of the oversharing problem within organisations is that they don’t have a clear filing system in place. Due to this, it’s a good idea to have a clean up of your folders and outdated files, ensuring everything follows a clear filing structure that makes it easier for IT teams to manage user permissions.

Microsoft Purview’s Data Lifecycle feature is a great tool to help with this. The system can be set up with a retention policy to help remove outdated data from your folders.

5.  Train up your teams 

Once your systems are prepped for Copilot, it’s important to make sure your teams are too. Microsoft recommends creating a centre of excellence forum, where employees can ask questions and share tips and experiences while they use Copilot. On top of this, you can also provide training around writing effective prompts and checking Copilot’s responses, with business experts on hand to support with any queries.

Are you ready for Microsoft Copilot?

Whether you’re looking to rollout Copilot across your business, or just one of your departments, we can help you assess what preparation steps you need to take to ensure you’re ready for implementation. Get in touch with our team to set up a detailed Copilot readiness assessment.

Microsoft, AI, Microsoft Copilot

Latest blogs

See all posts
wavenet IT support
How we support our customers | Managed IT services UK

We support organisations by bringing together the core building blocks of modern IT - secure, resilient networking; flexible cloud and data platforms; and collaboration tools that help people work from anywhere. As the UK’s most trusted managed service and security provider, we combine a broad portfolio across connectivity, cloud, communications and cyber security with deep technical expertise to design solutions that fit each customer’s goals, not a one-size-fits-all template. From connecting people and places to applications and data, to optimising Microsoft services and costs, enabling AI-driven productivity, and protecting environments with proactive security and incident response, We help customers stay secure, agile and focused - while building the operational resilience needed to anticipate, respond to, and recover from disruption. Watch this video to find out more Transcript: 0:05 Wavenet is the UK's most trusted managed service and security provider with a broad portfolio in connectivity, cloud, communications and cybersecurity. 0:15 We employ 1700 brilliant people with over 950 of those being highly skilled technologists. 0:22 So how do we use our broad portfolio, market leading partnerships and deep technical expertise to support our customers? 0:30 Intelligent networks are the foundation upon which everything else is built. 0:34 If the network is not robust, secure and scalable then anything that's connected to it will be affected. 0:40 From supplying broadband to designing networks from scratch, we connect people and places to data and applications. 0:46 As an ISP, we know there is no one-size-fits-all when it comes to network connectivity, so we take the time to assess the situation and goals before making a recommendation. 0:56 With the intelligent network in place, we make applications and data accessible. 1:00 These can reside anywhere within the Wavenet cloud, whether that be public, private, community or SAS based services unique to the market on demand. 1:09 Azure provides you with access to technical change and run squads for transformation, engineering and support, aligned with your own initiatives and priorities and as scalable as you need. 1:21 In public services such as Azure and Microsoft 365, financial management is a critical component and we have the tools that can effectively review consumption and make recommendations to streamline costs by effective use of licences, application of Azure services and 365 subscriptions. 1:39 Modern Workplace provides secure access for colleagues to the applications and data they need, regardless of location, whether they're in the office, at home, or working remotely. 1:49 They can access their apps and data from the Wavenet cloud, or they can be delivered as SAS services over the Intelligent network. 1:56 Our Copilot adoption and readiness packages unlock productivity, making your people more efficient. 2:02 Our Desktop as a service offering manages the full life cycle of consumer devices from provision, iMac management, recovery and recycle. 2:10 Bundled with complementary services such as End User Service Desk and Customer Site Tech Desk to support your staff and colleagues, ensuring that they're able to use the technology efficiently. 2:20 Our mobile services offer cost effective connectivity and airtime plans from all the UK's mobile network providers. 2:28 IoT services can be described as modern workplace with cameras, sensors, scanners and other devices providing data and insight over the foundation network. 2:37 Once we have connected users to your business applications and data, we help them communicate and collaborate with colleagues, suppliers and customers. 2:45 We empower sales and contact centre users with generative and agentic AI tools, pulling real time data information from your systems before, during and after customer interactions to deliver outstanding customer experiences. 2:59 We protect your environment with a range of proactive security services including security testing, managed detection and response. 3:06 Seem security awareness training and cyber certifications. 3:10 Providing reassurance in the event of an attack through fast and effective cyber incident response. 3:16 Underpinned by our highly skilled people, modern platforms and ITIL aligned processes. 3:22 Our advisory, monitoring, support and manage services simplify technology management, enhance user experience and control complex environments. 3:31 Helping you stay secure, agile and focused. 3:35 From supporting your in house IT teams to fully outsourced infrastructure and end user support across connectivity, cloud, communications and cybersecurity, we scale our services to support your business needs. 3:48 Wavenet has a long heritage in delivering operational resilience services and business continuity management consultancy. 3:54 With services that have evolved to meet the growing demands of UK organisations and new technology, we deliver the ability to anticipate, prepare for, respond to and recover from disruptive events or challenges that could impact your operations. 4:09 The goal is not just to survive disruptions, but to be able to maintain critical operations and recover quickly when things go wrong. 4:16 This is especially important in a fast-paced, interconnected world where businesses faced increased vulnerabilities. 4:23 As you can see, using our economies of scale, diverse vendor relationships and cutting edge expertise, we empower customers to make their technology work smarter.

Read more
Did your cyber defences hold up during Black Friday and Cyber Monday?
Did your cyber defences hold up during Black Friday and Cyber Monday?

Cyber Monday and Black Friday have come and gone, with the UK consistently ranking second in global participation to what is the biggest online shopping event. Each year continues to set new records, Barclay’s predicted that UK shoppers would spend a whopping £10.2bn this Black Friday1.

Read more
building cyber resilience
Building cyber resilience with modern backup & DRaaS

Wavenet and Assured Data Protection experts come together for a practical, data-driven webinar exploring the critical importance of proactive backup and disaster recovery strategies. Demonstrating how immutable backups and instant recovery can protect your organisation from ransomware, outages, and compliance risks.

Read more
API Security
Mobile app security - a pen tester’s view

The real threat to mobile apps isn’t the app, it’s API security. Chris Watt, an experienced Wavenet penetration tester, discusses mobile security…

Read more
Ddos attack protection
DDoS protection services explained: types, tools, and best practices

Ensuring the security and availability of your online services is paramount. Distributed Denial of Service (DDoS) attacks pose a significant threat to businesses of all sizes, making robust DDoS protection and mitigation services crucial. This article will guide you through the essentials of DDoS protection services, how they work, and why they are vital for safeguarding your digital assets.

Read more
Cloud IT provider
How do I choose the best cloud IT provider for my company's needs?

Choosing the best cloud IT provider for your company is a critical decision that can significantly impact your operations and growth. With a plethora of options available, understanding how to evaluate and select the right provider is essential. This article will guide you through a comprehensive evaluation process to help you make an informed choice.

Read more

Stay service-savvy

Get all the latest news and insights straight to your inbox.