Data was classified by templates that, when used properly, provided visual cues about file classification. However, the naming convention was Microsoft-centric and not intuitive. In the past, we used a data classification framework with four main labels that were based on the possible business impact if information was leaked or mishandled. For example, identifying our data and controlling access to it are critical requirements of General Data Protection Regulation (GDPR) compliance.
Complex data governance, retention, and encryption controls can be very difficult to enforce without tooling and automation. Different regions of the world have different data requirements. Microsoft is a global organization, which makes security compliance more complex. To apply the appropriate levels of security control in our environment, we need to identify the data we are protecting, and how much we need to protect it-based on its sensitivity and business value.
Not all data is equal, nor does it require equal levels of protection. Classification labels offer persistent protection because they travel with the data, regardless of where it’s stored, sent, or shared.Īs described in the video embedded above, information protection at Microsoft is supported by device health, identity management, and data telemetry. Layers of data security and protection measures, which align to corporate data security and compliance standards, help protect our information.Īt Microsoft Digital, when we needed to modernize our information protection strategy, we upgraded our data classification framework and deployed Azure Information Protection (AIP), a data classification labeling and protection tool. In this evolving environment, protecting corporate and customer data is of the utmost importance to Microsoft. Corporate network perimeters are dissolving as the modern workplace moves to the cloud. As the speed of business increases, employees are more mobile-often bringing their personal devices to work.
0 kommentar(er)
