A Data Governance Approach to Microsoft Purview
Why Microsoft Purview with Bridewell?
- Implementing Microsoft Purview for Effective Data Governance and Compliance: Our approach to implementing and deploying Microsoft Purview is driven by data governance, with a focus on ensuring your organization is compliant with relevant data privacy regulations. Our Microsoft, Cloud, and Data Privacy experts will work alongside you to understand regulatory risks within your environments and remediate them through Purview’s data, compliance, and governance capabilities.
- Expertise in Cloud Security and Threat Protection with Microsoft Purview: As one of Microsoft’s leading cybersecurity partners, our team are designated solution partners for Security. We hold specialisms in Cloud Security and Threat Protection and have extensive experience in deploying Purview for some of the UK’s largest and most highly regulated organizations.
The Benefits of Purview
Our team will help you deploy Microsoft Purview quickly and effectively, so you enjoy the following benefits.
Identify Risks to Your Data
Assess your current data privacy programme for any ongoing risks.
Identify Risky User Behaviour
Identify any user behaviour that risks non-compliance or a data breach.
.svg?sfvrsn=428a1942_1){kind=icon}
Achieve Best Practice for Data Protection
Meet relevant requirements for regulatory compliance and industry best practice.
Ease the Pressure on Your Security Team
Our SOC team will take on responsibilities from your in-house security team, allowing them to dedicate time and resources to other activities.
TrustQuay has been serving the wealth management market for over 30 years and has more than 450 customers in over 30 countries. A world-leading software provider, TrustQuay builds and manages integrated software to digitize corporate services, trust and fund administrators, and the company’s customers range from smaller independent organizations with a single office to some of the world’s largest organizations with multiple global offices.
The Challenge
Serving organizations in the trust, fund and corporate services sectors, TrustQuay’s customers operate in a fast-changing environment in which there is a continually growing focus on security and regulation. Additionally, these organizations' clients range from high net-worth individuals to corporations and trust funds. As such, the provision of highly personalized and private services means ultra-robust security is a basic expectation for the types of clients they serve.
High customer expectations and increasing regulation have driven consolidation and modernization of services across the industry which is where TrustQuay’s integrated software and wealth management solutions come into play. “The industry has been ripe for modernization and underserved by technology” says Joe Sefton Jenkins, Global Head of Technology & Development at TrustQuay. Its solutions, such as its NavOne and 5Series trust and fund administration platforms drive efficiency and automation for these organizations.
In order to first engage with and then retain clients, TrustQuay must be able to demonstrate the most robust levels of security possible within its products. TrustQuay’s own software and internal practices need to undergo serious scrutiny to ensure the levels of security expected by its clients can be continually met.
The Solution
TrustQuay set out to find a security and risk assurance partner that it could build a long term relationship with, that could provide ongoing support and consultancy around the security of its software and internal practices. The right partner would need to be at the forefront of information security and able to provide expertise and guidance on the latest security issues as they develop.
The Results
As security concern has grown globally in recent times, so did interest in the issue from TrustQuay’s customer base, particularly in what work was being carried out around product security. Bridewell has worked with TrustQuay through events and webinars that educate and inform the customer base around the threats that they’re exposed to and what TrustQuay do to mitigate those threats.
“We now get regular requests from customers asking us to share details of our security practices and results of penetration testing,” says Sefton Jenkins. “Working with Bridewell has helped to instill customers and ourselves with the confidence that we’re building our applications securely.”
The partnership has also helped TrustQuay to raise internal awareness of security practices. For Sefton Jenkins, this is an absolutely critical benefit. “The depth of expertise from Bridewell has helped my team think about the security risks of the things they’re working on in a much more astute way.”
“Having a partner like Bridewell standing shoulder to shoulder with us not only enhances our credibility but helps our customer base understand the necessary levels of investment to improve their practices through our services.”
TrustQuay continues to demonstrate its commitment to cyber security and protecting its customers and are also working with Bridewell on implementing an Information Security Management System in preparation for ISO27001 certification.
TrustQuay chose to partner with Bridewell based on the depth of its expertise and the strength of the work it does with government and large financial institutions. To test the security resilience of TrustQuay’s products, Bridewell regularly performs penetration testing on the software and reports back the results with insights into where and how any improvements can be made.
Start your Microsoft Purview Journey with Bridewell
Speak with one of our consultants to see how we can support your organization with Microsoft Purview.
How it Works
Data governance isn’t just about technology, but how organizations use, process and secure data. Our Purview deployments prioritize understanding how your employees handle data so we can implement policies that support their ways of working.
Data Discovery
Our cloud security and data privacy teams will hold discovery workshops to understand:
- Your current approach to data classification, retention and data loss
- Any challenges with how your users access and share data
- Your goals with Purview
Our team will review your current approach against applicable data protection legislation and best practice standards.
Any areas of non-compliance or data risk will be highlighted immediately.
Design and Implementation
Based on our findings, we will recommend updates to relevant policies and provide a test deployment of our proposed labelling solution to address these shortcomings.
This test deployment ensures there is no risk to your current operations and allows our team to optimize your Purview deployment before it is moved to a live environment.
Why Us?
180+ Security Specialists
Our team have diverse experience across sectors and disciplines, and hold accreditations from numerous industry bodies.
Certifications
Our people and services are highly accredited by leading industry bodies including CREST, the NCSC, and more. Our SOC holds extensive accreditations from CREST (including for CSIR and SOC2) and works closely with our cyber consultancy services.
Partnerships
As a Microsoft Partner, we also hold advanced specialisms in Cloud Security and Threat Protection. We’ve also implemented some of the UK’s largest deployments of the Microsoft Security stack, inc. Sentinel, Defender, Purview and more.
