Success Story: US Commercial Airline M365 / Azure Information Protection Executive Summary Design and implement a proof of concept solution which improves the client's ability to protect and manage sensitive data. This solution provides the necessary tools to manually or automatically apply protection policies to corporate data as well as provide monitoring and remediation tools.

This solution will better position the client's ability to comply with General Data Protection Regulation (GDPR) requirements. Leveraged Tools Microsoft Information Protection Suite
Azure Information Protection
Unified Labeling
 Success Story: US Commercial Airline M365 / Azure Information Protection Executive Summary Design and implement a proof of concept solution which improves the client's ability to protect and manage sensitive data. This solution provides the necessary tools to manually or automatically apply protection policies to corporate data as well as provide monitoring and remediation tools.

This solution will better position the client's ability to comply with General Data Protection Regulation (GDPR) requirements. Leveraged Tools Microsoft Information Protection Suite
Azure Information Protection
Unified Labeling

Client’s Challenges

This commercial airline operator was seeking to expand its security posture and regulatory compliance by implementing Microsoft’s Information Protection suite, which includes Azure Information Protection and Unified Labeling. In order to properly implement Microsoft Information Protection, the client needed the expertise of a qualified Microsoft consultant, and as a proof of concept, and once implementation was completed, the client needed to field test the design on a limited scope of users.

This Microsoft Information Protection success story describes how ActiveIdM used Microsoft technology to meet the client’s challenges.

Client’s Requirements

  • Design and implement Azure Information Protection and Unified Labeling as a proof of concept
  • Utilize client investment funding from Microsoft to assist with design and implementation costs
  • Analyze the client’s existing security landscape and provide recommendations to improve security
  • Pilot test the solution with a limited set of users

ActiveIdM’s Solution

ActiveIdM analyzed the client’s environment to determine what labels were currently in use and determined that four new labels should be implemented publicrestrictedconfidential, and highly confidential.

Public is applied to data that the client has designated to be available to the public at large. Restricted is for data with reduced sensitivity and intended for internal and external business-related consumption. Confidential is applied to data which is proprietary, business-sensitive, or subject to regulatory protections, and is intended for authorized recipients only. Highly Confidential is the most sensitive data to be accessible only by authorized internal client personnel.

With labels defined, ActiveIdM created an Azure policy for the initial pilot deployment. The policy defined the default label, public, to be used for new content. Care was also taken to ensure that the general user community would not have access to Unified Labeling until an official program launch.

ActiveIdM also installed and configured Azure Information Protection Scanner to assist the client with discovery of sensitive data that is already present on the network. The AIP Scanner inspects any file that Windows can index and determines if labeling should be applied to the file and applies to local folders, network folders, SharePoint, etc.

This Microsoft Information Protection success story provided the client with ability to explore features of Microsoft Information Protection in a real world environment. The client also has the tools necessary to expand the users which are participating in the pilot evaluation.

Have an information protection challenge? Let us know!