The transition to a remote workforce has happened so quickly that many security teams have not had an opportunity to apply desired controls. Organizations are dealing with remote access and execution privileges that were unplanned even a couple of months ago. The use of personal devices and home workspaces has increased potential risks.

Typical controls such as encryption, data loss prevention (DLP), access controls, tokenization and configuration checks may not have been applied in every case. The current situation has placed a greater focus on the need to reduce risks to the organization’s data assets due to the expanded attack surface.

Addressing New Cybersecurity Risks

Given this scenario, one component in the data security arsenal, monitoring of data access and activity, has become vital in helping to protect sensitive data. Data activity monitoring (DAM) can identify and prevent potential malicious activity across operating environments, providing real-time alerts and notifications. Managed data activity monitoring services address skill shortages and allow organizations to realign resources to focus on other business needs.

Managed DAM services are available 24/7, helping to protect structured and unstructured data within applications, files, databases and data warehouses as well as big data and hybrid multicloud environments. Managed DAM can observe the integrity of critical information across these domains, in real time, and can automate the appropriate compliance controls. Organizations gain the ability to report who is accessing specific types of data and whether any unauthorized attempts have been detected.

Data activity monitoring services also include real-time monitoring and audits of data activity, using cognitive analytics and threat detection analytics to identify potential security breaches. DAM can generate alerts and exceptions and facilitate the escalation of security incidents (policy violations) to the security operations center (SOC).

There are many benefits to using managed DAM services, but one key benefit is the 24/7 coverage and ability to identify new threats sooner due to a broader view of industry events by service providers. These services are a key component of enhanced security measures within a data protection program.

Choosing the Right Managed DAM Services

Organizations seeking to implement managed DAM services should consider the following when making their service provider selection:

  • Environment coverage of the solution
  • Platforms monitored
  • Provider expertise
  • Coverage options
  • Speed of alert notifications
  • Regular device health monitoring
  • Solution integration with the SOC
  • Reporting capabilities
  • Compliance supporting reports
  • Policy management
  • Patch management and upgrades
  • Steady-state solution optimization and tuning

Remote work has become the new norm, necessitating that organizations implement better defenses. Data activity monitoring should be given strong consideration to help thwart potential data breaches and enhance security. Managed data activity monitoring services are a key component within a data protection program and one that will complement existing cybersecurity measures.

Learn more about IBM Security’s COVID-19 response and the most important considerations and actions to take now.

Learn more about IBM Security Database Activity Monitoring Services

More from Data Protection

Vulnerability resolution enhanced by integrations

2 min read - Why speed is of the essence in today's cybersecurity landscape? How are you quickly achieving vulnerability resolution?Identifying vulnerabilities should be part of the daily process within an organization. It's an important piece of maintaining an organization’s security posture. However, the complicated nature of modern technologies — and the pace of change — often make vulnerability management a challenging task.In the past, many organizations had to support manual integration work to get different security systems to ‘talk’ to each other. As…

Cost of a data breach 2023: Geographical breakdowns

4 min read - Data breaches can occur anywhere in the world, but they are historically more common in specific countries. Typically, countries with high internet usage and digital services are more prone to data breaches. To that end, IBM’s Cost of a Data Breach Report 2023 looked at 553 organizations of various sizes across 16 countries and geographic regions, and 17 industries. In the report, the top five costs of a data breach by country or region (measured in USD millions) for 2023…

Cost of a data breach 2023: Pharmaceutical industry impacts

3 min read - Data breaches are both commonplace and costly in the medical industry.  Two industry verticals that fall under the medical umbrella — healthcare and pharmaceuticals — sit at the top of the list of the highest average cost of a data breach, according to IBM’s Cost of a Data Breach Report 2023. The health industry’s place at the top spot of most costly data breaches is probably not a surprise. With its sensitive and valuable data assets, it is one of…

Cost of a data breach 2023: Financial industry impacts

3 min read - According to the IBM Cost of a Data Breach Report 2023, the global average cost of a data breach in 2023 was $4.45 million, 15% more than in 2020. In response, 51% of organizations plan to increase cybersecurity spending this year. For the financial industry, however, global statistics don’t tell the whole story. Finance firms lose approximately $5.9 million per data breach, 28% higher than the global average. In addition, evolving regulatory concerns play a role in how financial companies…