A typical manufacturing supply chain involves the movement of sensitive and valuable data between multiple parties, including manufacturers and their suppliers. Ensuring the security of the data is essential to prevent unauthorized access, theft, or manipulation of information.
The organization can implement Microsoft Purview Information Protection to discover, classify, and protect sensitive data wherever it lives or travels. These information protection capabilities give you the tools to know your data, protect your data, and prevent data loss.
The supply chain for the suppliers can be multi-level and the organization sharing the data most likely will not know their entire supply chain hierarchy. If the highly sensitive data is protected only for the direct tier, their sub-tiers will not be able to consume the protected data, adversely affecting the sourcing of the parts. In lieu of today’s supply chain woes, the organization cannot afford to negatively impact the supply chain.
To balance the need of securing sensitive data and not negatively impacting supply chain, the organization will need to build a sub-tier management system that would allow the direct suppliers to input the domains of their sub-tiers.
The organization can create Microsoft 365 (M365) Groups based on the direct suppliers and use the sub-tier domains to maintain the dynamic memberships.
The Microsoft 365 Groups can be used in securing sensitive data for a particular supplier or several suppliers. Since the Groups already have the sub-tier suppliers’ domains part of dynamic membership, the direct supplier can securely share the data with their sub-tiers.
Netwoven built a sub-tier management application for a large manufacturer. The application had these key features –
- Self-service sub-tier management for direct supplier. Supplier can add, edit, block, and delete their own sub-tier data including domains.
- Administrators can globally block supplier domains.
- Auto-sync the direct suppliers and sub-tiers additions, updates, and deletions to Azure AD portal as M365 Groups and dynamic rules.
- Power BI reports to analyze the sub-tier data.
As mentioned earlier, the M365 Groups were used in securing the sensitive data using Microsoft Purview Information Protection Sensitivity Labels.
As an additional benefit, the client got an insight into who in their extended supply chain is consuming the sensitive data.
Netwoven’s solution thus uses Microsoft technology components most adroitly creating a holistic business model adding significant value to the supply chain management process.