Microsoft Purview Data Loss Prevention is used to provide intelligent detection and control of sensitive information across Office 365, OneDrive, SharePoint, Microsoft Teams, and on the endpoint. It also helps prevent data loss through identifying and preventing risky or inappropriate sharing, transfer, or use of sensitive data on endpoints, apps, and services.
Practice Lead | Microsoft 365 Security & Compliance
Chose Microsoft Purview Data Loss Prevention
We are a complete Microsoft shop. Competitors, we have come across Symantec DLP, that's one. We've come across Nexscope DLP. I've personally migrated customers from Nextscope DLP to Microsoft Purview Data Loss Prevention. There is McAfee DLP as well, which we have worked with. …
I don't think anything that Microsoft does, I've tried to conversate. We haven't even discussed another option. It does it well. So for us, it's pretty much going to stay where it is for now.
Microsoft Purview Data Loss Prevention is included in the E5 license as part of other purchases, so we've done what we can to get the best functionality from it. We are actively investigating implementing Veronas or Cyera just simply because the on-prem capabilities are not …
The licensing is maybe the biggest reason. Purview Data Loss Prevention is included in the Microsoft 365 SKU we already have, so if the functionality is equivalent, it makes sense to save money. We also appreciate how Purview automatically integrates with other Microsoft 365 …
Varonis provided great visibility into file permissions and audit records. It did not provide DLP controls for things like email, and endpoints therefore making it incomplete to provide proactive controls against DLP threats.
Symantec or now? Brocom. Forcepoint, GPV. I'm trying to think of, there's a couple more. I can't think of the top of my head. I would say closer to the bottom then rather than the top. So because of the fact that yes, it integrates well. But in terms of the actual …
Not used any product other than Microsoft Purview Data Loss Prevention. As I mentioned in my earlier point that we did all the researches for the best suitable product for our environment, but Microsoft Purview Data Loss Prevention proved to be best and is working as per our …
There are much more comprehensive and granular DLP solutions out there like Trellix and Sophos but ultimately they are expensive and require significant administrative oversight for implementation and deployment. For a company of our size, they are just not economically …
The DLP in Exchange Online and Purview by proxy is okay, but fails to catch a lot of HIPAA-specific information. We supplemented with Barracuda to make up for it. Purview is still better at identification across the entire tenant though, Barracuda is just doing our email DLP.
The DLP was already part of our tenant so we saved money by using it. With others, we would have to built/implement VMs to connect to the tenant, which we were not willing do. Since we had access to it, we decided to stick with it and we are happy with that result
As the customer already had Microsoft Office 365 E5 license, it made sense to implement Microsoft Purview Data Loss Prevention instead of other products.
It's definitely best for customers. If your main collaboration tools are hosted on Microsoft 365, and your company uses M365, this is a no-brainer. So this integrates pretty nicely with all Microsoft applications. So it becomes a no-brainer to go with this. Less appropriate would be like if you already are using another solution to do classification, I would still stick to Microsoft Purview Data Loss Prevention being that classification, but if you want to use it in the scenarios where you already have a tool and you're classifying documents, data, using that tool and you want Microsoft Purview Data Loss Prevention just to label and apply protection documents that is also supported, but the comprehensiveness, the end-to-end story would still be missing if you're investigating an incident.
The ability to create groups of people that would access a certain label, having been able to organize the data access to the document access, and protecting repositories with the same level of criticality, regardless of where they're located in the company. That's quite good because we had a lot of document distribution, and it helped provide the same layer of protection regardless of where they're stored.
The other good thing is that it provided traceability of what was going on with the label. So I could understand how many people were trying to access a document that weren't meant to. So it gave me an idea of how well protection was working, not only because people who did have access accessed it, but also I could trace that people who didn't have access couldn't do it.
I'd say over the last couple of years, there have been some great advancements in Microsoft Purview Data Loss Prevention, so I really do like that. I think some of the challenges I see with Microsoft Purview Data Loss Prevention today are in the first-party world; it does provide some real-time capabilities, but the alerting on DLP has a big lag. And some of our customers, actually, one of my customers in particular, whom I advise heavily, ran into a situation where they were getting hours of delays when they were getting critical, sensitive alerts. So being able to provide that in a more real-time way for both internal use within Microsoft and for third-party products, I think, would be significantly impactful. E-share, as a platform, also uses DLP in order to automate our policy, as I mentioned before. And some of that is a challenge because some of the capabilities we do need real-time information for aren't exposed to us based on the current capabilities that Firmy provides.
Just because it's so easy to navigate and, for the most part, even areas that I don't know about, the support channels are very clear and concise, and they respond very quickly to whatever I need. They'll guide me through whatever I don't understand, and sometimes there are a lot of things added in there.
Symantec or now? Brocom. Forcepoint, GPV. I'm trying to think of, there's a couple more. I can't think of the top of my head. I would say closer to the bottom then rather than the top. So because of the fact that yes, it integrates well. But in terms of the actual functionality of DLP, there are other requirements that they just don't have the features for yet.
Microsoft Purview Data Loss Prevention is included within the E5 license suite providing value to organizations who are using Microsoft technologies for their organization.
Provides the most extensive integration for Microsoft technologies.
Highly effective for building out a Data Security program and reducing risk exposure associated with data exfiltration.
Provides cross collaboration between assurance functions in a company (Security, Privacy, Risk, Audit)
