NVISO Data Defense Blueprint: Crafting Your Microsoft Purview Roadmap

Our Microsoft Purview Roadmap Development program is designed to harmonize governance with technical security challenges, and is intended for all medium and big size companies managing sensitive data in their environment, whether this is intellectual property, personal identifiable information, or other kinds of confidential data. The main goal of the exercise is to provide the customer with a thorough planning with technical configuration and governance activities, defined and placed in time to consistently lead you towards your Data Management maturity through the utilization of Microsoft Purview.

Prerequisite

While this activity is preliminary to an actual test of Purview features, it is heavily recommended to already be in possession of Microsoft 365 E5 licenses, that would enable the customer to already test Microsoft Purview features before taking decisions regarding Data Governance and Security configuration via Microsoft Purview.

Technical coverage

Elements such as data inventory, data mapping, Sensitivity Labels, Insider Risk scenarios, Governance frameworks, data flows and repositories will be discussed with your team and be the foundation of the Purview deployment action plan. By addressing these elements we can move forward with the next stage in your data protection which is Data Loss Prevention (DLP) policies.

Goal of the exercise

By building this plan, NVISO aims to be your trusted long-term partner in the journey to build a custom and advanced Data Management strategy, using the power of Microsoft Purview and its integration with the Microsoft 365 Security stack.

The Roadmap Development plan consists of 5 main phases:

Planning

Project stakeholders and business representatives are identified, roles and responsibilities are defined, and a workshops calendar is planned.

Investigation

The scope is to gather as much information possible about the customer's environment, its security, governance and compliance challenges. On the other hand, NVISO will provide a thorough descriptions of all Purview's features in scope of the engagement, their benefits and their impact.

Report

Based on what discussed and analyzed during the planning and the investigation phase, NVISO will elaborate findings related to data security and governance, and will define how Microsoft Purview's functionalities can bridge the gap between the current status and an optimal coverage of data management.

Plan

Following the Report validation, NVISO will produce a roadmap with analysis and rational of each decision taken against data security and governance findings. This will include a range of time between 12 and 24 months, depending on the number of activities to be included and their complexities.

Validate

The proposed planning will be presented to all stakeholders, making sure that it is clear and approved by all parties. Finally, next steps and implementation phase will be discussed and approved.

Deliverables

Roadmap Overview: a strategic and high-level representation of the action plan that can be easily shared with the Executive level. Roadmap documentation: a detailed explanation of each item in the roadmap, with rationale and design decisions already taken, and next steps to move towards their implementation.

Interested in knowing more? Reach out to us for more details!