The Azure Purview team is excited to announce three new capabilities that are going into public preview starting today:
Public Preview of Amazon Relational Database Service (RDS) support
Public Preview of Data Lake Data Asset Access Governance with Azure Purview
Public Preview of Microsoft Defender for Cloud integration with Azure Purview
Explore your Amazon RDS data in Azure Purview
Azure Purview expands its multi-cloud coverage with support for Amazon RDS (Microsoft SQL Server & PostgreSQL engines). You can now scan, explore your RDS structured data, and discover columns storing sensitive data in one centralized place in Azure Purview alongside your organizational data stored in other services.
The key benefits of this new feature include:
Govern your data centrally: Azure Purview offers a holistic solution for your entire data estate across on-premises, SaaS, and multi-cloud sources. Now, you can populate the Data Map with your AWS data from PostgreSQL and Microsoft SQL Server.
Consistently classify data across clouds: Discovery of sensitive data across clouds is based on the same M365 sensitive information types. This means your sensitive data stored in Azure, AWS or Microsoft 365 will be classified the same way.
Simple Configuration: Purview data scanning for AWS is a fully managed service. Getting started is simple – no deployment required.
Note: To allow Azure Purview data scanning to access your RDS data in a private network (VPC), AWS PrivateLink setup is required. A tool is provided to allow you to configure this automatically.
Get started today!
Read the documentation for Azure Purview data scanning for AWS RDS
Simplify data access governance using Azure Purview - starting with the data lake
Data-driven enterprises support everybody in the organization, irrespective of their technical know-how, to make data-informed decisions. Yet most employees are not able to easily find and access the data they need without having to ask someone else for help or access.
Azure Purview already makes it easy for anyone to find data of interest across the enterprise data estate with self-service search. The next barrier to enable data democratization is seamless data access. We are now working to simplify how users go from finding a dataset to accessing it in a way that’s compliant with data governance standards and policies, starting with the enterprise data lake.
Organizations often use data lakes built on cloud storage to accelerate data projects by having a large amount of an organization’s information in one place yet the time taken to identify and get appropriate access to data can still be on the order of weeks. With Azure Purview, Data engineers and owners can now provision access to data assets using a simple, intuitive authoring experience. Data access policies authored in Purview are then published to data lakes that opt into centralized management.
Simplified provisioning of access to data lake assets is one of many policy-compliant data use scenarios that we are working to enable. Interested to learn more -- opt-in to upcoming previews of Purview data use policies.
Azure Purview is built from the ground up as an open platform to govern your data estate. As we progress in this area, we will extend Purview’s data access governance capabilities to all data assets in the Purview Data Map as well as provide extensibility enabling any data system to integrate with and enforce Purview data use policies. Interested to learn more? Sign up here to participate in the ecosystem program for Purview data use policies.
Get started today!
Check out a demo on data lake asset governance using Azure Purview
Read documentation on data lake asset governance using Azure Purview
Prioritize sensitive data using Azure Purview’s Integration with Microsoft Defender for Cloud
Azure Purview provides rich insights into the sensitivity of your data. This makes it valuable to security teams using Microsoft Defender for Cloud to manage the organization’s security posture and protect against threats. Data resources remain a popular target, making it crucial for security teams to identify, prioritize, and secure sensitive data resources across their cloud environments.
To address this challenge, we’re excited to announce the integration between Microsoft Defender for Cloud and Azure Purview in public preview. The integration with Azure Purview extends security visibility in Defender for Cloud from infrastructure resources down into the data, enabling security teams to prioritize resources that contain sensitive data. The new information protection tile in Defender for Cloud shows current scan coverage and a graph with the number of recommendations and alerts by classified resource types.
Image: The new Information protection tile in Defender for Cloud, integrated with Azure Purview
In addition, we created two new filters in the Defender for Cloud Inventory experience and within Security alerts called Data sensitivity classifications and Data sensitivity labels. These new options allow security teams to filter specifically for sensitive data and more effectively prioritize the enforcement of security policies and the investigation of alerts across the most sensitive data resources.
Lastly, the Resource Health blade now provides additional metadata classification details at the resource level, providing an easy way to view the number of assets that contain sensitive information across the environment.
Image: A view of unhealthy resources that have been identified as containing sensitive information
Get started today!
Read release notes for the latest product updates for Microsoft Defender for Cloud