February 2, 2016 By Lynne Murray 2 min read

I’m pleased to post this article on behalf of Stacey Gregerson, data security engineer at Westfield Group.

Those of us in data security and database management are entrusted with extremely valuable assets: our organization’s data. We work in a world in which we continually assess and manage risk. We must be constantly vigilant against attacks from the inside and out.

I’ve been doing this work for 20 years, and I am in constant communication with my data security peers. I was one of the early adopters of IBM Security Guardium, and it has been an extremely valuable tool to achieve a higher level of data security.

With my experience and my talks to many other organizations that are initiating new data security programs using Guardium, I think I have a good feel for the practices that can help organizations succeed. All of us have been in the same boat — Guardium beginners — and to be honest, getting started with any new security tool is not easy.

Three Stages of Data Security

Not surprisingly, I’ve discovered that some organizations that bite off more than they can chew run into problems that can affect the success of the project. I know because I did the same thing with my first deployment. Since then, I have learned that a data security strategy should be handled in three stages: crawl, walk and run.

1. Crawl

First, crawl by collecting basic monitoring information that will satisfy initial audit requirements for the most high-priority databases. This is easily done using the default security policy with perhaps a few modifications.

2. Walk

Next, you walk by adding such things as privileged user monitoring and reporting. You can build advanced monitoring that is project- and database-specific.

3. Run

Finally, you can run. That may include using features such as data classification, blocking use of the S-GATE functionality or making the whole environment more efficient by leveraging workflow capabilities.

Learn More at InterConnect 2016

Setting priorities and realistic goals is critical to the ongoing success of any data security project. In my session at IBM InterConnect 2016, I will share examples of specific things to add to your communication checklist when working with other groups, from audit reporting requirements to showing database administrators (DBAs) how database activity insights can help them improve performance. It’s also critical to show value right away, and I’ll have examples of how you can demonstrate to management and other groups instantaneous value for the investment.

Join me on Tuesday, Feb. 23, at 8:30 a.m. in the Mandalay Bay South Lagoon B in Las Vegas for “Three Guardium Deployments: Westfield Group Shares Lessons Learned.”

More from Data Protection

Why safeguarding sensitive data is so crucial

4 min read - A data breach at virtual medical provider Confidant Health lays bare the vast difference between personally identifiable information (PII) on the one hand and sensitive data on the other.The story began when security researcher Jeremiah Fowler discovered an unsecured database containing 5.3 terabytes of exposed data linked to Confidant Health. The company provides addiction recovery help and mental health treatment in Connecticut, Florida, Texas and other states.The breach, first reported by WIRED, involved PII, such as patient names and addresses,…

Addressing growing concerns about cybersecurity in manufacturing

4 min read - Manufacturing has become increasingly reliant on modern technology, including industrial control systems (ICS), Internet of Things (IoT) devices and operational technology (OT). While these innovations boost productivity and streamline operations, they’ve vastly expanded the cyberattack surface.According to the 2024 IBM Cost of a Data Breach report, the average total cost of a data breach in the industrial sector was $5.56 million. This reflects an 18% increase for the sector compared to 2023.Apparently, the data being stored in industrial control systems is…

3 proven use cases for AI in preventative cybersecurity

3 min read - IBM’s Cost of a Data Breach Report 2024 highlights a ground-breaking finding: The application of AI-powered automation in prevention has saved organizations an average of $2.2 million.Enterprises have been using AI for years in detection, investigation and response. However, as attack surfaces expand, security leaders must adopt a more proactive stance.Here are three ways how AI is helping to make that possible:1. Attack surface management: Proactive defense with AIIncreased complexity and interconnectedness are a growing headache for security teams, and…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today