Government
Australia
DTEX and Microsoft for early, actionable detections
- Enhanced Protection
- Transitioning to Proactive Insider Risk Management
- Customized Cyber Education
Company profile
A government authority and regulator located in Australia was focused on being able to prevent data loss, critical to meeting regulatory compliance and maintaining business continuity and integrity. This case study highlights how a government agency transitioned from a box-ticking approach to proactive insider risk management by leveraging the power of The DTEX Platform and integrating with Microsoft Purview (Microsoft Information Protection).
The need
The agency’s existing technology stack was pulling a high rate of false positives and hurting their ability to detect and mitigate insider risks early. On top of this, being able to understand risk holistically was proving impossible due to a distinct lack of context behind the data.
The solution
To address these challenges, the government agency adopted a multi-pronged approach, combining Microsoft Purview and the DTEX Platform to advance data governance and produce actionable detections.
The results — robust insider risk management
The agency’s journey from box checking to proactive insider risk management exemplifies the power of having a formal cybersecurity program underpinned by people, processes, technology, and governance. By partnering with DTEX and Microsoft, and investing in education, the company transformed its security program from mere regulatory compliance to robust risk management. Where Microsoft provided advanced data governance capabilities, DTEX provided advanced detection rules, out of the box, and use cases to produce actionable detections. The organization’s holistic approach to data protection, privacy, and cybersecurity serves as a model for others aiming to converge these critical aspects successfully.
Benefits
- Enhanced protection: The agency implemented data leakage monitoring rules guided by classification to improve governance and strengthen security.
- They adopted DTEX to proactively monitor data leakage scenarios and user behavior, using out‑of‑the‑box detection rules that provided actionable insights and significantly reduced alert fatigue.
- The integration between DTEX and Microsoft also allowed the company to address data leakage more comprehensively, including specific scenarios and user actions, further mitigating potential risks.
- Transitioning to proactive insider risk management: In addition to selecting DTEX and Microsoft, the government entity also adopted a risk-based cybersecurity program which involved advancing staff education, and fortifying security controls in cloud environments and end-user systems. The company understood that while regulatory standards provide a baseline, true security requires constant improvement. The risk-based approach involved identifying vulnerabilities, measuring control gaps, and prioritizing strategic actions to address them.
- Customized cyber education: Recognizing that cybersecurity education is not one-size-fits-all, the company took a tailored approach to its security training efforts. Building upon existing information security training, the organization introduced phishing simulations and ‘tabletop exercises’ across different levels of the workforce. This approach ensured that employees with varying cyber knowledge received targeted education Simulating breach scenarios empowered teams to strategize their response, addressing business issues relevant to their roles.
Related Case Studies
Ready to Learn More?
For further insights on how the DTEX Platform secures critical infrastructure, request a demo.