Blog Details

Why Microsoft Purview and Priva make Data Protection Simpler

Posted by Marbenz Antonio on October 20, 2022

At Microsoft Security, they are aware of the difficulties in protecting your data, which is your most valuable asset, in the current threat environment. You must address a variety of issues, such as enabling staff to be more productive and closing infrastructure gaps, all while attempting to protect your data in a hybrid work environment. Also, getting the most out of your present security assets is important given the economic situation. To better meet your needs, they’ve improved our data protection and data governance products during the past year. Microsoft Purview and Microsoft Priva are two integrated and potent solutions that are among the outcomes.

Having co-hosted a special session on how your security and compliance teams can better manage risk, administer your data (wherever it lives), and maintain compliance at this year’s Microsoft Ignite event. We also revealed an interesting new capability that combines Microsoft Purview seamlessly within Adobe Acrobat, as well as new product upgrades and insights to help your team get the most out of your Microsoft security investments. You can get more use out of the tools you already have with this kind of extendable, multi-cloud, and multiplatform protection. In this blog article, we’ll take a closer look at a few of the situations in which Microsoft Purview and Priva can help to streamline data governance in your business right now.

Want to know more about Microsoft? Visit our course now.

A new interface between Adobe and Microsoft Purview provides seamless security

The goal of Microsoft Purview and Priva is to assist customers in protecting their entire data estate, which includes non-Microsoft settings. They presented a new feature at Ignite this year that allows Microsoft Purview Information Protection to be accessed directly from the Protect tool in Adobe Acrobat’s desktop edition. Users can now apply and amend information-protection labels and policies directly to PDF documents, so to speak. The classification, labeling, and protection features that are previously present in Microsoft Office file formats are now available in PDF thanks to this integration.

They’ll keep introducing new features that improve support for PDFs in Acrobat add-ins, as well as for Acrobat Export PDF and mobile editions, over the coming few months.

Streamlining data protection

Your business depends on data to function. It offers important insight that gives your company a competitive edge and inspires your staff to work harder. Because of this, it’s crucial to protect your data from internal and external threats at every stage—from creation through storage. That requires creating a multi-layered defense plan.

Discover and understand the sensitive data within your organization as the first line of security. You must be aware of your data’s location, who is using it, how it is shared and stored, and where it is going. Gaining total visibility over your data estate is essential because data storage is estimated to increase at a compound annual growth rate of 19.2 percent from 2020 to 2025. Microsoft Purview and Priva Information Protection assists you in classifying and labeling your data throughout your entire data estate, both on-premises and in multi-cloud scenarios, as the first line of defense. Microsoft Purview increases team productivity while improving data security by offering a single point of access to track and manage your data.

Microsoft Purview Information Protection:

• The sensitivity label bar in Microsoft Word, Excel, PowerPoint, and Outlook; additionally, PDFs created in Office now inherit the sensitivity, encryption, and content marks from the source file. Improvements to built-in features for Office that increase visibility and encourage user adoption of sensitivity labels.
• Availability: Word, Excel, PowerPoint, and Office Mobile programs for Android and iOS devices now support co-authoring documents protected by Microsoft Purview Information Protection.
• Preview: 42 new sensitive information credentials for Microsoft Azure, Amazon Web Services (AWS), and Google cloud resources that enable organizations to identify a variety of digital authentication types (also referred to as “secrets”), including user credentials, pre-configured passwords, and API and token access keys.
• Preview: More than 24 new pre-trained, out-of-the-box classifiers with server-side auto-labeling support can be used to quickly find and classify more than 100 different types of sensitive content in areas like intellectual property (IP) and trade secrets, operations, healthcare, financial information, and HR-related data.

Lowering insider risk

Businesses are expected to lose an average of USD7.5 million years as a result of insider data breaches. Understanding all data access and usage data in your organization is very important for this reason. What does routine activity imply? Which activities should be labeled as risky? Knowing how internal data is used can assist prevent compliance infringements and worse, such as intellectual property theft, insider trading, confidentiality violations, and other negative outcomes.

Manage data security threats within your business as the second line of defense. Microsoft Purview Insider Risk Management helps security teams quickly react to threats by identifying potential risks and integrating them with a comprehensive strategy for controlling internal risk. Organizations that address insider risk holistically are more likely to prioritize user privacy, create collaboration, and employ positive deterrents like training and feedback loops as part of their data-protection strategy by collecting the appropriate people, procedures, training, and tools.

Before you’ve even created your first policy, you may generate aggregated, de-identified insights on risky conduct over the last 48 hours with the one-click analytics report. The percentage of users who have engaged in exfiltration activities, such as downloading personal data, is one of the insights, and there is also a breakdown by activity type.

Insider risk alerts by default use fake identities for all names. This enables your data security team to prioritize privacy. You can view a list of all the risk variables by clicking on a certain alert. You can correlate across tasks that use the same files thanks to sequencing. The security team can better understand the motivation behind the actions by using this correlation, which will speed up the response time. For instance, you might notice that a user downloaded and exfiltrated confidential materials immediately before submitting their resignation, then deleted the files from their device to hide their tracks. Your security team can make more informed decisions about when and how to take action by understanding this series of events.

The signal quality of your alerts is better when you use sequences as policy triggers because it focuses policy detection on users who have executed multi-stage sequences. Your team has the ability to concentrate policy detection on the most sensitive information thanks to Priority Content Only Scoring, which is adjustable in the policy wizard. All of these insights aid in your understanding of potential risks, allowing you to create policies that are tailored to your organization’s special needs. With this knowledge, analysts in your company can take the necessary steps to ensure users continue to comply.

Microsoft Purview and Priva Insider Risk Management:

• Enhancements to triage and detection capabilities, including the ability to create policies with sequences without any other necessary underlying policy indicator selections, to fine-tune security policies directly from the alert review experience, and to customize a security trigger in the “data leaks” policy to surface when a user performs a sequence.
• Information type and trainable classifier exclusions, which means that actions related to file activities on the endpoint, SharePoint, Microsoft Teams, OneDrive, or Exchange won’t generate alerts if the excluded sensitive information type or trainable classifier matches the content of the user’s activity.
• New risk booster score features allow you the ability to prioritize alerts for possible high-impact users. Using the frequency with which they access content with a higher level of sensitivity, such as sensitive information types, labels, or priority content, compared to other users in the organization, and if they are designated as a leader in the organization based on Microsoft Azure Active Directory (Azure AD) configurations, alerts for users with a potentially higher impact will have a higher priority alert in the dashboard.

Protecting against data loss

The third layer of defense is to use a complete, integrated strategy to stop data loss or unauthorized use. Microsoft Purview Data Loss Prevention (DLP) strikes a balance between protection and productivity by ensuring the proper access controls are in place and policies are set to prevent actions like improperly saving, storing, or printing sensitive data. This is in line with the 62% of business leaders who responded to a 2021 survey who felt that their companies should do more to protect customer data.

Microsoft Purview and Priva Data Loss Prevention:

• Creating groups of printers, removable storage, network share paths, and sensitive sites is possible. Each group can then be given access to distinct restriction activities. For example, you will be able to permit printing on your business printers while preventing the publication of sensitive information on all printer groups.
• Possibility to set up layered groups and build sophisticated policy rules using “AND/OR/NOT” associations.
• A DLP policy match on endpoint devices provides visibility into contextual evidence, such as sensitive material, nearby characters, and other metadata.
• To follow DLP policies, sensitive content shared on Teams chat and channel messages will now be detected and classified more quickly.
• Identifying and configuring specific limits for password-protected files that are present on endpoint devices is usually available.

Information Protection, Insider Risk Management, and Data Loss Prevention work together to provide an integrated, all-encompassing data protection plan that helps keep your organization’s data secure, no matter where it is located.

Automating privacy

Consumers are demanding better control over their data as more nations follow laws related to the General Data Protection Regulation (GDPR). This has pushed more organizations to change their privacy policies from being compliance-driven to being more human-centric. Microsoft Priva now provides two privacy management products to help with that goal:

Privacy Risk Management allows people to make informed decisions about the handling of data, and assists enterprises in identifying important privacy issues and personal data threats. Priva admins can set up a data minimization policy that will automatically send the data owner an email so they can examine and delete unnecessary files from their Outlook inbox.

Subject Rights Requests help businesses in managing large requests and securely respond. Admins may rapidly create a data export request for a former employee using the new pre-configured templates. Priva can automatically identify files containing mixed personal and confidential information once the data has been gathered. Admins can then analyze and redact the data to prevent leakage. Since the most recent update, admins can now import files from sources other than Microsoft 365 to benefit from this potent review experience.

Additional product updates

Also, they are integrating new features and capabilities into our Microsoft Purview and Priva portfolio’s other product categories. Your organization will gain from these new features and improvements thanks to granular eDiscovery, thorough audit controls, more efficient data lifecycle management, and easier compliance.

Enhanced eDiscovery for the cloud

• Microsoft Purview eDiscovery (Premium) now provides the capability to discover the specific version of a needed document, even when first shared as a cloud attachment, which helps organizations meet their regulatory obligations for discovery. This feature is currently available in the preview.
• With better usability and workflows, eDiscovery operations can be made more efficient.

New security features and search capabilities for Microsoft Purview Audit

• Microsoft Purview Audit’simproved search feature is now generally accessible and offers the following significant enhancements:
  • Even if you close the browser, search jobs keep running.
  • Organizations can now refer to and reuse previous audit searches because completed search jobs are now stored for 30 days.
  • You can export up to 500,000 records from each search.
  • 10 concurrent search jobs can be launched by each Purview Audit user at once.
• Many organizations seek to add additional levels of protection to their data because of the sensitivity of Audit log data. With Customer Key, which will soon be available in preview, businesses can use their data encryption keys, giving them total control over who has access to their data.

Microsoft Graph APIs and Power Automate workflows for Data Lifecycle Management

Organizations may manage the lifecycle of data with the use of Microsoft Purview Data Lifecycle Management. Data and records can be obediently stored, removed, and maintained automatically. The protection and management of data wherever it lives is now possible thanks to this solution. They have four major releases to discuss with you today:

• The integration of Power Automate enables you to modify lifecycle management workflows to meet the unique requirements of your business.
• Users can apply retention and deletion settings where they work—in the Files tab of a Teams channel—thanks to Microsoft Teams’ ability to add retention labels to files.
• In addition to assisting admins in doing investigations and helping to comply with financial services sector rules, our new feature is to discover and retain cloud attachments. For future retrieval using eDiscovery, this feature stores and associates the version of a file shared in a Teams message or email.
• Organizations can manage event-based retention and establish new retention labels with the use of Microsoft Graph APIs for Records Management. The first batch of APIs is available now; additional versions will follow in 2023.

Advantages in compliance and data residency

Organizations may decrease risk and simplify compliance with the help of Microsoft Purview Compliance Manager. Organizations are able to continuously assess, monitor, and improve their compliance posture while also saving time and money thanks to this technology, which turns difficult regulatory requirements into accurate controls. What has happened in Compliance Manager, then?

• New templates: For your organization to improve its compliance posture, it is simple to translate more than 350 rules into action strategies.
• Continuous assessments: Microsoft announced last year that by adding continuous testing for technical controls, blind spots might be removed.

Here at CourseMonster, we know how hard it may be to find the right time and funds for training. We provide effective training programs that enable you to select the training option that best meets the demands of your company.

For more information, please get in touch with one of our course advisers today or contact us at training@coursemonster.com