Skip to content

Are you ready for HIPAA 2.0? Find out…

Close
  • Products
    • Products

      • Governance Suite Use Spirion’s suite to enhance data security posture management
      • Sensitive Data Platform Scan, classify, remediate using SaaS solution
      • Sensitive Data Finder Automate Subject Rights Request processing
      • Sensitive Data Watcher Actively monitor and understand your data
      • Sensitive Data Manager Scan, classify, remediate using on-premise solution
    • Learn more

      • Data Security Posture Management Identify security and privacy risks wherever data lives and secure where it travels.
      • Data Risk Assessment Proactive audit – discover how your org protects its sensitive data before a data breach occurs
      • Data Impact Assessment Reactive audit – respond to an incident for swift and accurate data breach mitigation
      • Privacy-Grade™ Compliance and privacy standards that set the bar for sensitive data protection.
    • Technology

      • CADIA Advanced ML/AI to accurately discover and classify sensitive data
      • AnyFinds™ Minimize false positives and deliver accurate matches
      • Interrogated Platforms More data sources than anyone including both unstructured and structured data
      • Marketplace Integrate with security tools and explore resources to boost data protection
      • Governance Framework Outlines key stages of readiness to safeguard sensitive data and maintain compliance.
    • WHITE PAPER

      Complete Your Microsoft 365 Data Protection Stack
  • Solutions
    • Industry Solutions

      • eCommerce
      • Finance
      • Healthcare
      • Higher Education
      • Manufacturing
      • Telecommunications
    • Security & Privacy Use Cases

      • Data Security Posture Management (DSPM)
      • Microsoft Purview Integration
      • DISCOVER: Sensitive data-at-rest is data-at-risk
      • CLASSIFY: Unify data governance efforts with context-rich classification
      • CONTROL: Reduce the risk and cost of a data breach
      • COMPLY: Accelerate PCI-DSS compliance
    • Compliance

      • Overview
      • GDPR
      • CCPA
      • CMMC
      • CPRA
      • GLBA
      • HIPAA
      • The New York SHIELD Act
      • PCI DSS
      • Other
    • WHITE PAPER

      Complete Your Microsoft 365 Data Protection Stack
  • Resources
    • Resources

      • Blog
      • Case Studies
      • Data Sheet
      • Events
      • MS Purview Calculator
      • Podcast
      • Whitepapers & Research
    • Core Expertise

      • How to take a data-centric approach to security
      • What are cyber insurance requirements?
      • What is data lifecycle management?
      • What is data loss prevention?
      • What is a data risk assessment?
      • What is endpoint security?
      • What is a sensitive data governance framework?
    • Core Capabilities

      • Data Discovery Software Tools: Capabilities and Benefits
      • What is sensitive data discovery?
      • What is semantic data discovery?
      • What is data classification?
      • What is data remediation?
    • WHITE PAPER

      Complete Your Microsoft 365 Data Protection Stack
  • Partners
  • Customers
    • Customers

    • Customer Services
    • Customer Portal
    • Premium Support
  • Company
    • Company

    • About Us
    • Careers
    • Leadership
    • News
    • Our History
  • Search
  • Contact
 Build your own demo
Build your own demo
  • Products
    • Governance Suite
    • Sensitive Data Platform
    • Sensitive Data Finder
    • Sensitive Data Watcher
    • Sensitive Data Manager
    • Learn more
      • Data Security Posture Management
      • Data Risk Assessment
      • Data Impact Assessment
      • Privacy-Grade™
    • Technology
      • CADIA
      • AnyFInds™
      • Interrogated Platforms
      • Marketplace
      • Governance Framework
  • Solutions
    • Industry Solutions
      • eCommerce
      • Finance
      • Healthcare
      • Higher Education
      • Manufacturing
      • Telecommunications
    • Security & Privacy Use Cases
      • Data Security Posture Management (DSPM)
      • Microsoft Purview Integration
      • DISCOVER: Sensitive data-at-rest is data-at-risk
      • CLASSIFY: Unify data governance efforts with context-rich classification
      • CONTROL: Reduce the risk and cost of a data breach
      • COMPLY: Accelerate PCI-DSS compliance
    • Compliance
      • Overview
      • GDPR
      • CCPA
      • CMMC
      • CPRA
      • GLBA
      • HIPPA
      • The New York SHIELD Act
      • PCI DSS
      • Other
  • Resources
    • Resources
      • Blog
      • Case Studies
      • Data Sheet
      • Events
      • MS Purview Calculator
      • Podcast
      • Whitepapers & Research
    • Core Expertise
      • How to take a data-centric approach to security
      • What are cyber insurance requirements?
      • What is data lifecycle management
      • What is data loss prevention?
      • What is a data risk assessment?
      • What is endpoint security?
      • What is a sensitive data governance framework?
    • Core Capabilities
      • Data Discovery Software Tools: Capabilities and Benefits
      • What is sensitive data discovery?
      • What is semantic data discovery?
      • What is data classification?
      • What is data remediation?
  • Partners
  • Customers
    • Customer Services
    • Customer Portal
    • Premium Support
  • Company
    • About Us
    • Careers
    • Leadership
    • News
    • Our History
  • Contact
Build your own demo
  • Resources
  • Blog
  • Webinar
Solutions Overview

Azure Information Protection: Optimized for Risk Management and Data Loss Prevention

ALL RESOURCES

“My biggest concern is the full optimization of my current AIP/MIP solution within and outside of the Azure platform for the protection and management of our sensitive data.”

CISO, Pharmaceutical Wholesaler

Customer Challenge

With a rapidly growing network of distributors and offices, a leading pharmaceutical supplier was in desperate need to find a unified solution for the protection of their HIPAA and other sensitive data. The demands of their customers for rapid digital transformation of business services was putting added pressure on an already understaffed and overworked information security office. Without readily available money or qualified personnel, and a limited budget, the CISO required an integrated solution that would optimize his current Microsoft Azure Information Protection (AIP) platform.

The Mission: Optimized Data Management Solution

With federally mandated HIPAA and HITECH compliance requirements compounded by their ever‑growing database of structured and unstructured sensitive data, the CISO of this pharmaceutical wholesale distributor needed a viable and thorough solutions that would seamlessly optimize the efforts that his team had already made using the Microsoft AIP application. The following list was presented to Spirion by the CISO on behalf of his information security team.

  • The solution should strengthen the existing AIP process with greater data discovery and classification accuracy.
  • The solution must keep and apply the existing AIP/MIP document and email labels.
  • The solution must classify current AIP/MIP documents based on their existing labels.
  • The solution must automatically reclassify as well as report on updated files as well as bulk re‑label files based on policy changes.
  • The solution must seamlessly work in not only and Azure cloud, but on-premise databases and shared solutions as well as endpoints including non-Microsoft applications.

Effective Command and Control of Sensitive Data

With over 800 endpoints to manage and over 150 TB of data on an array of server farms, the Spirion solution was able to fully satisfy all of the above requirements. As a risk management solution Spirion easily achieved rapid discovery of all structured and unstructured sensitive data while supporting classification rates of under 2% in false positives, saving the CISO’s team both time and money.

Managing a global footprint, Spirion provided worldwide tracking of asset usage including access permissions and document protection for not only all Microsoft 360 applications and collateral but all other operating systems and applications. This global presence allowed the CISO’s team to revoke document access on a worldwide basis as well as a broad suit of automated remediation actions based on applied policies.

From a data loss prevention perspective, Spirion provided the automatic classification of newly created sensitive data including accurately classifying or reclassifying sensitive data with the appropriate AIP/MIP labels on a global basis. All DLP actions were supported with in-depth and real time analysis and reporting via an intuitive dashboard providing for a single pain of glass approach.

After a full review by the CISO’s staff, including interviews with various departments worldwide as well as conducting their own audits, the areas of their current AIP/MIP solution that were in need of optimization were clearly defined. By implementing a broad scale proof of concept (POC), the organization was able to create a through analysis and review comparing the Spirion solution against each of the areas that AIP/MIP presented a challenge.

The results were summarized in the following table.

Download PDF
AIP/MIP CHALLENGESpirion Solution
AIP/MIP designed for MS Cloud.Available on premise, at endpoints, MS cloud, and third party storage like Box, Dropbox, & AWS.
Ad-hoc One Drive & external share using AIP label not possible.Solution is applicable and scalable to all users & apps including file sharing apps.
AIP Viewer currently supported on Mac OS but AIP client is not. AIP viewer cannot view Office files.Applicable for all OS while seamlessly optimizing your existing & future DLP solutions.
AIP protection setting are only encryption and rights enforcement permissions.Remediation/protection offering is broad, applied by user or policy based.
Inspects only some file types using well-known sensitive info types (Windows IFilter) or user defined regular expressions.Discovery uses branching algorithms with leading‑edge recognition techniques for false positives below 2%.
AIP does not currently support public domains (Gmail & Hotmail accounts for instance).Applicable to all type of email & doc repositories using AIP/MIP labels.

Related Resources

resource
Securing What Matters: How a Credit Union Strengthened Data Protection with Spirion + Microsoft Purview
resource
Securing the Expanding Universe of Higher Ed Data with Spirion
resource
Spirion Helps Public Utility Gain Control and Confidence by Scaling Data Protection
resource
CMMC: Protecting DoD Data in 2025 and Beyond
resource
How Spirion Supports CMMC 2.0 Control SC.L2-3.13.16
resource
New State Privacy Laws Enforceable in 2025-2026

Ready to get started?

Schedule a personalized demo with one of our data security experts to see Spirion data protection solutions in action.

Watch demo now
Discover, protect and comply.

Protect sensitive information with a solution that is customizable to your organizational needs. When your job is to protect sensitive data, you need the flexibility to choose solutions that support your security and privacy initiatives.

Governance Suite →

social icon
Industry Solutions

Not knowing where sensitive client financial data resides and failing to take the right security precautions can be a costly mistake for your organization. Find out how Data privacy is treated in your sector.

Read more →

  • Products
    • Sensitive Data Platform
    • Sensitive Data Finder
    • Sensitive Data Watcher
  • Solutions
    • What is sensitive data discovery?
    • What is data loss prevention?
    • What is data classification?
    • Security Use Cases
  • Compliance
    • News
    • Services
  • Need Help?
    • Customer Portal
    • 646-863-8301​​​​​​​​​​​​​​​​​​​​​
    • 3030 North Rocky Point Drive West,
      Suite 470
      Tampa, FL 33607
LATEST BLOG POSTS
  • Navigating DOJ’s New Data Security Program (DSP): How Spirion’s DSPM Solution Safeguards National Security Data
  • Accelerate Sensitive Data Discovery with Spirion’s Differential Scanning Technology 
  • Why Data Classification is the Unsung Hero of Financial Data Security

© 2024 Spirion, LLC. All Rights Reserved

  • Legal
  • Privacy
  • Sitemap