Cloud Security Authors: Pat Romanski, Zakia Bouachraoui, Elizabeth White, Yeshim Deniz, Liz McMillan

Related Topics: @CloudExpo, Cloud Security, @DXWorldExpo

@CloudExpo: Blog Feed Post

Data Security Platform Should Be Priority By @Vormetric | @CloudExpo [#Cloud]

Identifying what you consider your crown jewels is the first step in the data security recovery program

Why a Data Security Platform Should Be a Priority for Your Enterprise
by Derek Tumulak

When it comes to data security, identifying what you consider your crown jewels is the first step in the data security recovery program. Legacy products can be expensive and negatively impact performance. Organizations need to realize that the complexity and fear of access control is a thing of the past.

Before we get started on recovery, here are a few things you need to ask yourself:

  • How much privacy do employees warrant?
  • What level of control do I need to monitor activity?

Organizations’ scope and goals come down to one thing:

Simplify the data breach strategy. While seemingly simple, IT environments are complicated, sophisticated and frankly, just all over the place. On top of that, it’s usually a very large organization that needs protecting and IT infrastructure is not always as clean as you would think.


Fear not, there are three ways to tackle this problem:

  1. Invest in a platform that gives you the most coverage.
  2. Simplify your infrastructure.
  3. Educate yourself – Optimized solutions can be multiple vendors across the environment.

Another major problem is that organizations are continuing to focus on the perimeter. Usually encryption boils down to self-encrypting drives. With that, comes full access to the system. If you remove admins from the equation, this type of security can be very successful. But there are techniques and tools out there to mitigate that risk.

Give the least amount of visibility needed to do the job. It really comes down to reducing the risk (the attack surface that the adversary can attack and pursue). I typically see three types of accounts: HR where security professionals understand necessary IT privileges, third parties like cloud providers and admins. Quite often, by default admins get access to everything because that is the nature of the beast. But everyone does not need that elevated level of privilege.

In a bank vault, employees have to come in and clean the floors, so they have access. If you are going to let them in the bank vault you don’t want them to have access to secure systems. In this instance, the employee should only have access to what’s needed for their job. It works similarly with IT departments: admins should only have access to certain information. Eduard Snowden is a perfect example. He had broad administrative privileges but someone should never be able to have access to all data.

An insider traditionally is well obfuscated. They are hard to find and are touching all your sensitive data which in turn means that they have the opportunity to expose all your information. They have a lot of risk that comes with them. We’ve identified a few data security best practices to help eliminate that risk:

  1. Identify what runs your data, i.e., what are the crown jewels?
  2. Once you identify those assets, find out where they are. Is it data that is actually collaborated on through multiple end users? Identify where it is.
  3. What controls will I put in place to mitigate the risk? Am I going to use controls like encryption, tokenization and the PCI use-case?

Individuals can’t steal what they don’t have access to. Once you understand the information you mitigate that risk from potential advisories. Data security platforms that offer encryption and tokenization are all great techniques to help mitigate that risk.

The post Why a Data Security Platform Should be a Priority for Your Enterprise appeared first on Data Security Blog | Vormetric.

Read the original blog entry...

More Stories By Vormetric Blog

Vormetric (@Vormetric) is the industry leader in data security solutions that span physical, big data and cloud environments. Data is the new currency and Vormetric helps over 1400 customers, including 17 of the Fortune 30 and many of the world’s most security conscious government organizations, to meet compliance requirements and protect what matters — their sensitive data — from both internal and external threats. The company’s scalable Vormetric Data Security Platform protects any file, any database and any application’s data —anywhere it resides — with a high performance, market-leading data security platform that incorporates application transparent encryption, privileged user access controls, automation and security intelligence.

IoT & Smart Cities Stories
Andrew Keys is Co-Founder of ConsenSys Enterprise. He comes to ConsenSys Enterprise with capital markets, technology and entrepreneurial experience. Previously, he worked for UBS investment bank in equities analysis. Later, he was responsible for the creation and distribution of life settlement products to hedge funds and investment banks. After, he co-founded a revenue cycle management company where he learned about Bitcoin and eventually Ethereal. Andrew's role at ConsenSys Enterprise is a mul...
Whenever a new technology hits the high points of hype, everyone starts talking about it like it will solve all their business problems. Blockchain is one of those technologies. According to Gartner's latest report on the hype cycle of emerging technologies, blockchain has just passed the peak of their hype cycle curve. If you read the news articles about it, one would think it has taken over the technology world. No disruptive technology is without its challenges and potential impediments t...
Nicolas Fierro is CEO of MIMIR Blockchain Solutions. He is a programmer, technologist, and operations dev who has worked with Ethereum and blockchain since 2014. His knowledge in blockchain dates to when he performed dev ops services to the Ethereum Foundation as one the privileged few developers to work with the original core team in Switzerland.
René Bostic is the Technical VP of the IBM Cloud Unit in North America. Enjoying her career with IBM during the modern millennial technological era, she is an expert in cloud computing, DevOps and emerging cloud technologies such as Blockchain. Her strengths and core competencies include a proven record of accomplishments in consensus building at all levels to assess, plan, and implement enterprise and cloud computing solutions. René is a member of the Society of Women Engineers (SWE) and a m...
If a machine can invent, does this mean the end of the patent system as we know it? The patent system, both in the US and Europe, allows companies to protect their inventions and helps foster innovation. However, Artificial Intelligence (AI) could be set to disrupt the patent system as we know it. This talk will examine how AI may change the patent landscape in the years to come. Furthermore, ways in which companies can best protect their AI related inventions will be examined from both a US and...
In his general session at 19th Cloud Expo, Manish Dixit, VP of Product and Engineering at Dice, discussed how Dice leverages data insights and tools to help both tech professionals and recruiters better understand how skills relate to each other and which skills are in high demand using interactive visualizations and salary indicator tools to maximize earning potential. Manish Dixit is VP of Product and Engineering at Dice. As the leader of the Product, Engineering and Data Sciences team at D...
Bill Schmarzo, Tech Chair of "Big Data | Analytics" of upcoming CloudEXPO | DXWorldEXPO New York (November 12-13, 2018, New York City) today announced the outline and schedule of the track. "The track has been designed in experience/degree order," said Schmarzo. "So, that folks who attend the entire track can leave the conference with some of the skills necessary to get their work done when they get back to their offices. It actually ties back to some work that I'm doing at the University of San...
When talking IoT we often focus on the devices, the sensors, the hardware itself. The new smart appliances, the new smart or self-driving cars (which are amalgamations of many ‘things'). When we are looking at the world of IoT, we should take a step back, look at the big picture. What value are these devices providing. IoT is not about the devices, its about the data consumed and generated. The devices are tools, mechanisms, conduits. This paper discusses the considerations when dealing with the...
Bill Schmarzo, author of "Big Data: Understanding How Data Powers Big Business" and "Big Data MBA: Driving Business Strategies with Data Science," is responsible for setting the strategy and defining the Big Data service offerings and capabilities for EMC Global Services Big Data Practice. As the CTO for the Big Data Practice, he is responsible for working with organizations to help them identify where and how to start their big data journeys. He's written several white papers, is an avid blogge...
Dynatrace is an application performance management software company with products for the information technology departments and digital business owners of medium and large businesses. Building the Future of Monitoring with Artificial Intelligence. Today we can collect lots and lots of performance data. We build beautiful dashboards and even have fancy query languages to access and transform the data. Still performance data is a secret language only a couple of people understand. The more busine...