January 19, 2016 By Kathryn Zeidenstein 2 min read

We’ve heard the phrase crown jewels a lot lately. We aren’t talking about royalty and alarmed glass enclosures, though. We’re talking about data classification — specifically, the most valuable data in the enterprise. This is the data that, if it falls into the wrong hands, could mean significant damage to a company, government, health care provider or educational institution.

Protect Critical Data

Organizations must prioritize the protection of crown jewels, but any organization worth its salt realizes that data classification will make abundantly clear that there are massive volumes of data that could still cause pain if lost, even though it might be a level or two below crown jewels. This pain could come financially, in terms of regulatory fines and paying for breach protection, and can cause terrible distress to an organization’s clients and customers, such as fraud resulting from stolen health care data or payment information.

The problem is that it can be hard to know such data exists and identify where it is. Even with a stringent governance and privacy policy, can you really say with confidence that there isn’t a team testing with production data or a new application that requires personally identifiable information to register?

It’s not really a strategy to say “if we don’t know it’s there, it doesn’t exist.” You might get lucky and auditors won’t find the violation, but there are those who are much more diligent in probing for your soft spots. That, of course, would be the relentless army of cybercriminals.

Learn more about securing the data that powers your business

The Steps to Classification

Of course, data breaches are part of the risk equation you calculate every day. You might have limited staff working on other high-priority tasks. But isn’t data discovery and classification partly the job of automation? Not always. Here are some considerations to keep in mind as you approach the data classification process:

  • Make a plan and use tools and automated processes to make the job easier. Don’t forget to look at structured data, files and documents.
  • Consider bringing in trusted services to help you create a plan and even do the initial classification work for you. They can also help you become self-sufficient moving forward by putting the correct automation in place.
  • Don’t forget to take the next step and protect valuable data using encryption, monitoring and rigorous authorization and authentication mechanisms. Monitor those entitlements, as well.
  • One more thing! Make sure the applications that access that data are not inadvertently opening the door using a very common attack method, SQL injection.

The important thing is to get started. You might be surprised what you find.

More from Data Protection

Why safeguarding sensitive data is so crucial

4 min read - A data breach at virtual medical provider Confidant Health lays bare the vast difference between personally identifiable information (PII) on the one hand and sensitive data on the other.The story began when security researcher Jeremiah Fowler discovered an unsecured database containing 5.3 terabytes of exposed data linked to Confidant Health. The company provides addiction recovery help and mental health treatment in Connecticut, Florida, Texas and other states.The breach, first reported by WIRED, involved PII, such as patient names and addresses,…

Addressing growing concerns about cybersecurity in manufacturing

4 min read - Manufacturing has become increasingly reliant on modern technology, including industrial control systems (ICS), Internet of Things (IoT) devices and operational technology (OT). While these innovations boost productivity and streamline operations, they’ve vastly expanded the cyberattack surface.According to the 2024 IBM Cost of a Data Breach report, the average total cost of a data breach in the industrial sector was $5.56 million. This reflects an 18% increase for the sector compared to 2023.Apparently, the data being stored in industrial control systems is…

3 proven use cases for AI in preventative cybersecurity

3 min read - IBM’s Cost of a Data Breach Report 2024 highlights a ground-breaking finding: The application of AI-powered automation in prevention has saved organizations an average of $2.2 million.Enterprises have been using AI for years in detection, investigation and response. However, as attack surfaces expand, security leaders must adopt a more proactive stance.Here are three ways how AI is helping to make that possible:1. Attack surface management: Proactive defense with AIIncreased complexity and interconnectedness are a growing headache for security teams, and…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today