Enhancing Data Security Investigations with Microsoft Purview and AI

Microsoft Events present an advanced session on using AI-powered Microsoft Purview Data Security Investigations, featuring insights from Katerina Athanasiou, Christophe Fiessinger, Daniel Gawarecki, and Caroline Lee.

Enhancing Data Security Investigations with Microsoft Purview and AI

Session Overview

This advanced breakout from Microsoft Ignite 2025 introduces how Microsoft Purview Data Security Investigations (DSI) leverages AI technologies to improve data security for organizations.

Key Topics Covered

• Emerging Trends in Data Security: Examines current workforce and data protection challenges facing security teams.
• AI-Powered Investigations: Demonstrates how Purview uses AI for deep content analysis, both proactively and reactively, utilizing concepts like embeddings and intent mapping for precise risk identification.
• Vector Search Use Case: Shows how AI enables security teams to discover relationships and similar meanings in data (e.g., ‘cat’ and ‘dog’), facilitating faster and more accurate investigations.
• Observability & Validation: Discusses how Purview provides observability into AI-detected risks and validates findings to support SOC operations.
• Purview-Defender Integration: Details the native connection between Data Security Investigations (DSI) and Data Security Posture Management (DSPM), helping bridge the gap between SOC and data security teams through streamlined workflows.
• Risk Assessment using AI: Explains the process of applying AI-suggested and custom risk categories to data, enabling more nuanced and effective security analysis.
• Customer Story: Features Toyota Motor North America’s experience implementing these advanced capabilities.

Speakers

• Katerina Athanasiou
• Christophe Fiessinger
• Daniel Gawarecki
• Caroline Lee

Resources

• Manage Insider Risk
• Microsoft Ignite On-Demand

Technical Highlights

• Integration with Microsoft Defender for advanced threat detection
• Use of embeddings and vector searches for identifying hidden risks
• AI-driven risk categorization and custom policy application
• Enhanced observability for validation and response

Conclusion

This session empowers technical teams to use Microsoft Purview and Defender with AI enhancements for more scalable, effective, and collaborative data security investigations across the enterprise.