According to my understanding, Microsoft Information Protection is a unified solution which consists and collaborates with the information protection solutions which are already available in the Microsoft market such as Azure Information protection, Windows Information Protection, and Office 365 Information protection. Microsoft Information Protection is a complete suite to protect sensitive data throughout the lifecycle – inside and outside the organization. My objective of this post is to identify the Microsoft strategy behind information protection and how we can leverage that to protect our organization's sensitive data and data leakage.
Microsoft Information Protection helps to discover the data and classify according to its sensitivity level. This data then tagged according to its sensitivity using labeling. According to the label, Information protection can protect your sensitive information wherever it lives or travels.
You can keep track of your data, monitor it who have accessed and when required, revoke the access. And doesn't depend on a device, app or location. It supports the protection across all these areas.
Following image expresses how Microsoft solutions such as Bit locker, WIP, AIP and Office 365 protection aligns with Information protection concepts.
Microsoft Information Protection is a Unified solution where it integrates Information protection solutions Microsoft already has in the market, such as Office 365 Information Protection, Windows Information Protection, and Azure Information Protection. It brings these solutions into one surface where you can manage, monitor and apply policies using a single console. I found this nice slide from Microsoft Ignite which describes it all.
Information Protection life cycle consists of Discover, Classify, Protect and Monitor. After Classifying the data, it needs to be labeled to apply protection policies. Unified Classification and Labeling enable a single point of the label when shared across these other applications so you don’t need to classify data on other solutions. This can be applied from the Office 365 console when shared with other services. In an example, these protection policies can be used in Windows Information Protection and Azure Information Protection.
Configure and manage labels across apps and services in Office, Azure, and Windows – all from the Security & Compliance Center
Uniform content classification to protect and preserve data across Office, Azure, Windows
Consistent across M365 & extensible to 3rd party
Consistent integration and experience across M365 apps & services. Extensible to 3rd party apps & solutions.
Additionally, you can refer the following table where Microsoft released in a whitepaper to demonstrate the capabilities on how Microsoft products help to protect information across devices, applications, and locations.
Hope this post is useful
Microsoft Ignite Sessions 2018
Microsoft Whitepaper – Information Protection