Excellent, adaptable and scalable Microsoft Purview Data Loss Prevention for Microsoft 365 E5 and Azure users
February 12, 2024
Excellent, adaptable and scalable Microsoft Purview Data Loss Prevention for Microsoft 365 E5 and Azure users
Score 7 out of 10
Vetted Review
Verified User
Overall Satisfaction with Microsoft Purview Data Loss Prevention
We use Microsoft Purview Data Loss Prevention in a several different ways across multiple departments. Firstly, we are involved in contact center operations for DoD recruiting, lead nurturing, social outreach etc. As such, contact agents and management often have sensitive PII that has to be handled within defined DoD parameters. Pureview allows us to integrate policies that can scan comms, OneDrive, etc etc. for potentially mishandled PII and allow us to act on it before it becomes an issue (eg. shared outsie the company via email, shared files etc.). Because we work with government contracts and entities, we are often held to very specific security policies and have to demonstrate compliance (CIS levels and FedRamp etc.). PureView DLP lets us export reporting to show our scan activity and compliance conformity. Additionally, we use Preview DLP policies to monitor agency level SharePoints, emails, etc to monitor and coach for potentially sensitive information leaks which can contribute to phishing attacks and the like (eg. employees emailing SSN or other PII for personal use.
- Excellent pre-defined policies across a variety of content and regions
- Variable scope of policy enforcement, delineation by groups and departments
- Excellent reporting and dashboard interfaces.
- Various alerting and intervention settings depending on which data we are restricting.
- Advanced or specific policies have a high learning curve.
- We have to rely on our reseller partner to implement some of the policies that we were looking for.
- Microsoft is constantly trying to upsell the PureView suite and hides some features included in E5 Enterprise to try and upsell.
- Allows us to be in compliance with a number of DoD contract obligations without resorting to 3rd party data access or additional product purchases.
- Policy deployment from policy templates is relatively easy and quick. Allows a small 3 person IT team to deploy DLP policies and changes quickly.
- Single pane of glass dashboard and policy monitoring make administration straight fowled
Since moving from Google Workspace and DropBox to MS365 with Microsoft Purview Data Loss Prevention, we now have a single interface and console for administrering and monitoring DLP policies and compliance across communications, file sharing and file storage which is considerably more efficient than using multiple tools from multiple vendors. This of course assumes that your are using SharePoint and ONeDrive as your sole file repositories and you aren't in need of additional DLP functions for things like on prem storage or 3rd party cloud systems.
Our reseller RapidScale handled creating most of the Purview DLP policies from the templates that Microsoft provides based on our contractual security policy obligations and best practices. We exported our reports from Google Workspace and matched or enhanced what we used with Google to integrate into 365. As we used the platform, we added additional policies to prevent internal sharing of PII, restrict sharing proprietary files externally and prevent/curb phishing attacks due to leakage.
Primarily industry standard DLP policies to prevent the sharing and storing or PII via email, shared file links, OneDrive, SharePoint etc. We created alerts to allow supervisors etc to handle coaching for certain violations and created hard blocks for anything that violates our contractual obligations.
Microsoft does offer paid enhancements but the price/feature ratio is skewed towards large enterprise organizations. If there was scalable integration with more 3rd party solutions (eg. AWS cloud storage, other 3rd party conferencing apps like Slack/Zoom, onsite repositories or secure FTP/SecNas) that would give us the ability to handle our entire orgs DLP from a single interface.
There are much more comprehensive and granular DLP solutions out there like Trellix and Sophos but ultimately they are expensive and require significant administrative oversight for implementation and deployment. For a company of our size, they are just not economically feasible. We purchased out 365 E5 tenant with Purview DLP integration from a reseller at a price that we couldn't compete with vs a standalone enterprise product.
Do you think Microsoft Purview Data Loss Prevention delivers good value for the price?
Yes
Are you happy with Microsoft Purview Data Loss Prevention's feature set?
Yes
Did Microsoft Purview Data Loss Prevention live up to sales and marketing promises?
Yes
Did implementation of Microsoft Purview Data Loss Prevention go as expected?
Yes
Would you buy Microsoft Purview Data Loss Prevention again?
Yes