• Products
    • Products

      • Governance Suite Combine all Spirion products to build a proactive privacy and security posture.
      • Sensitive Data Platform Scan, classify, remediate using SaaS solution
      • Sensitive Data Finder Automate Subject Rights Request processing
      • Sensitive Data Watcher Actively monitor and understand your data
    • Placeholder

      • Sensitive Data Manager Scan, classify, remediate using on-premise solution
    • Learn more

      • Sensitive Data Governance Framework Our framework outlines key stages of readiness to safeguard sensitive data and sustain compliance.
      • Spirion Data Risk Assessment If you don’t know where your sensitive data is located or where it is stored, you’re at risk for a data breach.
      • Integrated Platforms
      • Integrated Solutions Explore how Spirion connects with other security apps and tools.
      • Spirion Marketplace Integrate with other security tools and check out resources that enhance your data protection program.
    • Sensitive data needs one clear protector.

      Discover. Protect. Comply. Spirion has all your sensitive data needs covered.
      See Governance Suite
  • Solutions
    • Industry Solutions

      • eCommerce
      • Finance
      • Healthcare
      • Higher Education
      • Manufacturing
      • Public Sector
      • Telecommunications
    • Security & Privacy Use Cases

      • DISCOVER: Sensitive data-at-rest is data-at-risk
      • CLASSIFY: Unify data governance efforts with context-rich classification
      • UNDERSTAND: Prioritize your data protection efforts with a DRA
      • CONTROL: Reduce the risk and cost of a data breach
      • COMPLY: Accelerate PCI-DSS compliance
      • COMPLY: Safeguard PII data to pass GLBA audits
    • Compliance

      • Overview
      • GDPR
      • CCPA
      • CMMC
      • CPRA
      • GLBA
      • HIPAA
      • The New York SHIELD Act
      • PCI DSS
      • Other
    • Cloud, servers, endpoints - wherever sensitive data lives, Spirion protects it.

      Everywhere is our territory.
  • Resources
    • Insights

      • Blog
      • Case Studies, White Papers, & Research
      • Podcast
      • Upcoming Events
    • Core Expertise

      • How to take a data-centric approach to security
      • What are cyber insurance requirements?
      • What is data lifecycle management?
      • What is data loss prevention?
      • What is a data risk assessment?
      • What is a data breach and how can it be prevented?
      • What is endpoint security?
      • What is a sensitive data governance framework?
    • Core Capabilities

      • Data Discovery Software Tools: Capabilities and Benefits
      • What is sensitive data discovery?
      • What is semantic data discovery?
      • What is data classification?
      • What is data remediation?
    • Cloud, servers, endpoints - wherever sensitive data lives, Spirion protects it.

      Everywhere is our territory.
  • Partners
  • Support
    • Support

    • Customer Success
    • Professional Services
    • Technical Support
    • Service Level Addendum (SLA)
    • Customer Support Policy
  • Company
    • Company

    • About Us
    • Become a Partner
    • Careers
    • Newsroom
    • Our approach
    • Privacy at Spirion
    • Our History
  • Search
  • Customer Portal
  • Contact
Watch demo now
Watch demo now
  • Products
    • Governance Suite
    • Sensitive Data Platform
    • Sensitive Data Finder
    • Sensitive Data Manager
    • Sensitive Data Watcher
    • Learn more
      • Sensitive Data Governance Framework
      • Spirion Data Risk Assessment
      • Platforms Interrogated
      • Integrated Solutions
      • Spirion Marketplace
  • Solutions
    • Industry Solutions
      • eCommerce
      • Finance
      • Healthcare
      • Higher Education
      • Manufacturing
      • Public Sector
      • Telecommunications
    • Security Use Cases
      • DISCOVER: Sensitive data-at-rest is data-at-risk
      • CLASSIFY: Unify data governance efforts with context-rich classification
      • UNDERSTAND: Prioritize your data protection efforts with a DRA
      • CONTROL: Reduce the risk and cost of a data breach
      • COMPLY: Accelerate PCI-DSS compliance
      • COMPLY: Safeguard PII data to pass GLBA audits
    • Compliance
      • Overview
      • GDPR
      • CCPA
      • CMMC
      • CPRA
      • GLBA
      • HIPPA
      • The New York SHIELD Act
      • PCI DSS
      • Other
  • Resources
    • Insights
      • Blog
      • Case Studies, White Papers, & Research
      • Podcast
      • Upcoming Events
    • Core Expertise
      • How to take a data-centric approach to security
      • What are cyber insurance requirements?
      • What is data lifecycle management
      • What is data loss prevention?
      • What is a data risk assessment?
      • What is a data breach and how can it be prevented?
      • What is endpoint security?
      • What is a sensitive data governance framework?
    • Core Capabilities
      • Data Discovery Software Tools: Capabilities and Benefits
      • What is sensitive data discovery?
      • What is semantic data discovery?
      • What is data classification?
      • What is data remediation?
  • Partners
  • Support
    • Customer Success
    • Professional Services
    • Technical Support
    • Service Level Addendum (SLA)
    • Customer Support Policy
  • Company
    • About Us
    • Become a Partner
    • Careers
    • Newsroom
    • Our approach
    • Privacy at Spirion
    • Our History
  • Customer Portal
  • Contact
Watch demo now
  • Resources
  • Blog
  • Webinar
Spirion Resource Product Discovery Icon
Solutions Overview

Azure Information Protection: Optimized for Risk Management and Data Loss Prevention

ALL RESOURCES

“My biggest concern is the full optimization of my current AIP/MIP solution within and outside of the Azure platform for the protection and management of our sensitive data.”

CISO, Pharmaceutical Wholesaler

Customer Challenge

With a rapidly growing network of distributors and offices, a leading pharmaceutical supplier was in desperate need to find a unified solution for the protection of their HIPAA and other sensitive data. The demands of their customers for rapid digital transformation of business services was putting added pressure on an already understaffed and overworked information security office. Without readily available money or qualified personnel, and a limited budget, the CISO required an integrated solution that would optimize his current Microsoft Azure Information Protection (AIP) platform.

The Mission: Optimized Data Management Solution

With federally mandated HIPAA and HITECH compliance requirements compounded by their ever‑growing database of structured and unstructured sensitive data, the CISO of this pharmaceutical wholesale distributor needed a viable and thorough solutions that would seamlessly optimize the efforts that his team had already made using the Microsoft AIP application. The following list was presented to Spirion by the CISO on behalf of his information security team.

  • The solution should strengthen the existing AIP process with greater data discovery and classification accuracy.
  • The solution must keep and apply the existing AIP/MIP document and email labels.
  • The solution must classify current AIP/MIP documents based on their existing labels.
  • The solution must automatically reclassify as well as report on updated files as well as bulk re‑label files based on policy changes.
  • The solution must seamlessly work in not only and Azure cloud, but on-premise databases and shared solutions as well as endpoints including non-Microsoft applications.

Effective Command and Control of Sensitive Data

With over 800 endpoints to manage and over 150 TB of data on an array of server farms, the Spirion solution was able to fully satisfy all of the above requirements. As a risk management solution Spirion easily achieved rapid discovery of all structured and unstructured sensitive data while supporting classification rates of under 2% in false positives, saving the CISO’s team both time and money.

Managing a global footprint, Spirion provided worldwide tracking of asset usage including access permissions and document protection for not only all Microsoft 360 applications and collateral but all other operating systems and applications. This global presence allowed the CISO’s team to revoke document access on a worldwide basis as well as a broad suit of automated remediation actions based on applied policies.

From a data loss prevention perspective, Spirion provided the automatic classification of newly created sensitive data including accurately classifying or reclassifying sensitive data with the appropriate AIP/MIP labels on a global basis. All DLP actions were supported with in-depth and real time analysis and reporting via an intuitive dashboard providing for a single pain of glass approach.

After a full review by the CISO’s staff, including interviews with various departments worldwide as well as conducting their own audits, the areas of their current AIP/MIP solution that were in need of optimization were clearly defined. By implementing a broad scale proof of concept (POC), the organization was able to create a through analysis and review comparing the Spirion solution against each of the areas that AIP/MIP presented a challenge.

The results were summarized in the following table.

Download PDF
AIP/MIP CHALLENGESpirion Solution
AIP/MIP designed for MS Cloud.Available on premise, at endpoints, MS cloud, and third party storage like Box, Dropbox, & AWS.
Ad-hoc One Drive & external share using AIP label not possible.Solution is applicable and scalable to all users & apps including file sharing apps.
AIP Viewer currently supported on Mac OS but AIP client is not. AIP viewer cannot view Office files.Applicable for all OS while seamlessly optimizing your existing & future DLP solutions.
AIP protection setting are only encryption and rights enforcement permissions.Remediation/protection offering is broad, applied by user or policy based.
Inspects only some file types using well-known sensitive info types (Windows IFilter) or user defined regular expressions.Discovery uses branching algorithms with leading‑edge recognition techniques for false positives below 2%.
AIP does not currently support public domains (Gmail & Hotmail accounts for instance).Applicable to all type of email & doc repositories using AIP/MIP labels.

Related Resources

resource
The essential guide to detecting and protecting sensitive data-at-rest
resource
Supercharge Your DLP Security Program
resource
Supercharge your DLP investment with accurate and automated data classification
resource
Complimentary Forrester report: “The Zero Trust eXtended Ecosystem: Data”
resource
Practitioner’s Guide to Meeting PCI DSS Audit Deadlines at Rapid Speed
resource
Automate Your NIST Security Framework with Context-Rich Data Classification

Ready to get started?

Schedule a personalized demo with one of our data security experts to see Spirion data protection solutions in action.

Watch demo now
Discover, protect and comply.

Protect sensitive information with a solution that is customizable to your organizational needs. When your job is to protect sensitive data, you need the flexibility to choose solutions that support your security and privacy initiatives.

Governance Suite →

Industry Solutions

Not knowing where sensitive client financial data resides and failing to take the right security precautions can be a costly mistake for your organization. Find out how Data privacy is treated in your sector.

Read more →

  • Products
    • Sensitive Data Platform
    • Sensitive Data Finder
    • Sensitive Data Watcher
  • Solutions
    • Industry Solutions
    • Security Use Cases
    • What is sensitive data discovery?
    • What is data loss prevention?
    • What is data classification?
  • More
    • Insights
    • Services
    • Company
    • Newsroom
  • Need Help?
    • Contact Us
    • Customer Portal
    • 646-863-8301​​​​​​​​​​​​​​​​​​​​​
    • 3030 North Rocky Point Drive West,
      Suite 470
      Tampa, FL 33607
LATEST BLOG POSTS
  • Navigating uncertainty part 3: Data loss prevention predictions for 2023
  • Navigating uncertainty part 2: Privacy law predictions for 2023
  • Navigating uncertainty part 1: Data breach predictions for 2023

© 2023 Spirion, LLC. All Rights Reserved

  • Legal
  • Privacy
  • Sitemap