We will [objective] as measured by [key result]
Objective
Desired outcomes
Key results
How we'll measure them
- Establish Robust Data Governance and Compliance
- Implement 10 custom classifiers to improve identification of high-risk caches of unstructured data EOFY 24-25
- Achieve 100% coverage of data discovery and classification for critical data assets by EOY 2025
- Implement Purview's data governance policies across all relevant data stores by EOY 2025
- Train and enfranchise at least 5 GCP risk and compliance staff to use Microsoft Purview by EOY 2025
- Enhance Data Security and Risk Management
- Implement 10 Data Loss Prevention (DLP)policies in 'audit-only' mode
- Use findings from 'audit-only' DLP to change end user behaviou and then implement 'block' mode to mitigate risk by EOFY 25-26
- Conduct quarterly reviews to update data protection policies, ensuring alignment with evolving regulations
- Integrate Microsoft Purview with existing security tools for unified risk assessment
- Foster a Culture of Data Responsibility and Cooperation
- Steadily improve rates of end user participation in labelling efforts
- Provide GCP stakeholders actionable insights they can use to launch an internal communication campaign to raise data protection awarenes