Microsoft Purview is a comprehensive, unified platform that delivers end-to-end data security, governance, risk, and compliance capabilities in the era of artificial intelligence. It provides a single, intelligent solution to discover, classify, protect, and govern data across on-premises, multicloud, SaaS, and Microsoft 365 environments (including structured and unstructured data). This offering encompasses implementation activities as a rapid launchpad for ensuring your organization’s data compliance and risk preparedness.
Areas to Cover:
Microsoft 365 E5, Purview Suite
Benefits:
- Total Visibility: Gain a "single pane of glass" view of your sensitive data across Microsoft 365, AI, Copilot, Thrid-Party AI Applications and on-premises environments.
- AI‑Powered Proactive Risk Mitigation: Automatically detect unseen vulnerabilities—including covert data flows and “shadow data” growth—so you can stop potential breaches long before they become real problems.
- Automated Compliance: Reduce manual workloads by using automated labeling and retention policies that align with regulatory requirements.
- Seamless User Experience: Protect data without hindering productivity; security follows the file, whether it's in an email, a chat, or a downloaded document.
- Cost Efficiency: Consolidate multiple point solutions (DLP, Governance, eDiscovery) into one integrated Microsoft ecosystem.
Scope of Work:
Phase 1: Discovery & Assessment
- Assessment existing data landscape and identify key compliance gaps (e.g., PDPA readiness).
Phase 2: Information Protection
- Configuration of Sensitivity Labels, Data Classification (SITs), and Auto-labeling policies.
- Default Sensitity labels and policy
- Customize 5 Data Classification (SITs) and use Thai ID Card and Credit card
- Create and Configure Auto-labeling 2 policies.
Phase 3: Data Loss Prevention (DLP)
- Implementation of 5 DLP policies for Exchange, SharePoint, OneDrive, and Teams.
- Configure Endpoint DLP Setting
- Create and configure of Endpoint DLP 2 Policy
- Optimize and tuning of Data classification and Policy (Period 1 Month)
Phase 4: Insider Risk & Governance & Communication & Audit
- Setting up Data Lifecycle Management (Retention) and Insider Risk Management triggers.
- Create and configure communication compliance policy for human and AI
- Create and configure audit retention policy up to 10 years
Phase 5: Compliance Manager
- Assessment Configuration for PDPA or AI Template
- Add and Configure alert policy for compliance manager
Phase 6: Pilot & Testing (10 - 20 Users)
- Deploy in controlled scope (e.g., IT or key departments), test policies, and validate effectiveness.
- Visibility to DSPM for AI and Dashboard
Phase 7: Training & Handover
- Knowledge transfer for IT admins and Systems Document
Deliverables
- Assessment Reports
- Specification Documents
- Configuration Documents
- Admin Manuals
Metro Systems Corporation PCL is a leading systems integrator in Thailand. We are dedicated to delivering comprehensive service and system consulting that meets the evolving digital needs of our customers.