Who’s Minding the Unstructured Data Store?
Digital transformation means more: more devices, more users and ultimately more data.
But not all data is created equal: unstructured data (information stored in file shares, collaboration sites, SharePoint, network drives, and essentially anything that isn’t organized in a database, application, or somehow tabulated) accounts for 80% of enterprise data.
If data is the new oil of the digital economy, then unstructured data is the biggest reservoir—and the one that’s hardest to get to, own and use.
Given the fact that unstructured data far outpaces any other enterprise data, governing access to it is a growing challenge, as there is no easy way to provide insight into where the data resides, who has ownership to it and who is entitled to access the data. In my last blog, I talked about the Business Role management capability of SecurID Governance and Lifecycle (SecurID G&L). Today we’re going to explore the Data Access Governance (DAG) capability of the SecurID G&L solution.
Get the right data to the right teams
Gaining control of the massive volumes of unstructured data is a critical IT and business objective given the nature and sensitivity of what can reside in your unstructured data stores. Moreover, getting the right unstructured data to the right teams can unlock new ideas, reduce business risk, and stop the exfiltration of sensitive financial data, PII and IP. It can help you finally know what you don’t know.
The Data Access Governance module of SecurID G&L empowers data owners to control access, map data users, owners and access permissions to eliminate the exfiltration of sensitive data, reduce threats and improve your digital risk posture. Delivered with a next-generation open framework, DAG provides the visibility, monitoring, certification, remediation and reporting of user access permissions of all your unstructured data.
The DAG architecture is a proven, scalable solution designed to meet the performance requirements of any size environment across tens of thousands of file shares and millions of files, protecting even the largest of enterprises. With a risk-based access certification capability, DAG provides an end-to-end solution for data access certification that enables a repeatable, auditable and business-oriented process. Business and IT teams can easily define data access business rules that automate the monitoring of inappropriate access permissions, including Segregation of Duty violations.
To address inappropriate access to unstructured data stores, automated remediation of user access permissions is supported by email, ticket system integration and task notification through SecurID Lifecycle. A closed-loop validation process ensures an accurate revocation occurs within target data resources.
By implementing a robust data access governance process, you can help your organization maintain a strong security posture, protect critical data such as intellectual property, meet regulatory requirements and reduce risk to the business all while getting a better sense of the information already at your disposal.
To help understand how well you are managing your identity risk, try our IAM Risk Intelligence calculator.