April 24, 2020 By Robyn Westervelt 3 min read

There is no silver bullet when it comes to protecting sensitive data. No single security technology investment will eliminate the risk of data theft or a mistake exposing sensitive information. To proactively defend against attackers, enterprise security teams are learning that they need to collect and centralize security and compliance information from all the tools at their disposal.

Current Approaches to Data Security Lack Scale

Organizations today need to effectively secure and maintain the integrity of corporate data, which is growing at a compound annual growth rate of 40–50 percent, according to IDC’s Global DataSphere research. This growth is influenced by digital transformation strategies, a continuous process in which enterprises analyze customer data to create new business models, products and services that enhance the customer experience.

Download the IDC white paper, “Adopting a Next-Generation Data Security Approach,” sponsored by IBM

To help enable transformation, businesses are turning to a hybrid mix of on-premises and cloud-based technologies to increase agility, remain competitive and drive their organizations forward. This has resulted in an influx of cloud-hosted database infrastructure and services proliferating within the enterprise.

Data Security Challenges that Arise When Adapting to Modern Technologies

Attackers are seizing on the vulnerabilities generated by the struggle of enterprise security teams to manage data security across hybrid and multicloud environments. Likewise, data security tools for discovering, classifying, monitoring and protecting sensitive data are often designed for specific environments and narrow use cases. As a result, teams are overwhelmed with limited data security visibility, fragmented compliance reporting and disjointed workflows across their on-premises and cloud-hosted data stores.

IDC studies have identified this lack of situational awareness and the ineffectiveness of existing security infrastructure to enforce data governance policies. The result is data exposure or worse. Nearly 40 percent of respondents indicated their organization experienced four or more security breaches in the last three years, according to IDC’s 2020 Data Security Survey. The survey, which reached 620 IT and IT security professionals in North America and Europe, detailed the daunting challenges that today’s security teams are facing.

A Next-Generation Data Security Approach to Support the Hybrid Multicloud

Forward-leaning organizations are managing these challenges by adopting a next-generation data security approach to protect sensitive data across heterogeneous and highly distributed environments. A next-generation data security approach is centered around holistic visualization that provides a comprehensive overview of the organization’s security posture. Taking this approach, security teams can quickly identify areas of risk and mitigate the highest risks to sensitive data, no matter where it resides.

This approach deals with the bottlenecks and inefficiencies that lead to data exposure and costly data breaches. It also addresses the declining visibility and control over sensitive data as it spans hybrid multicloud environments. Through a set of powerful, integrated data security components, security teams can gain a comprehensive, centralized view of security risks and take action.

IDC studies have found that the most successful organizations take systematic steps when embarking on a next-generation data security approach. These steps include establishing a data triage team of key stakeholders who understand established business processes and typical workflows, and considering how existing security is applied to address data in motion, data at rest (stored in databases and data stores) and data in use (cached in places not intended for long-term storage).

How to Kick-Start Your Next-Generation Data Security Program

To help ensure the success of a next-generation data security approach, security teams need to utilize data security solutions that integrate and interoperate with the rest of the security and IT infrastructure, and extend protection policies to data wherever it currently resides or will reside in the future. This includes solutions that can interoperate with software-as-a-service (SaaS), platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) applications and cloud repositories to augment native data protection capabilities and ensure data governance policies remain consistent regardless of the location of sensitive data assets.

An effective solution must incorporate the following:

  • Automated discovery and classification
  • Ongoing vulnerability assessments
  • Real-time activity monitoring
  • Risk posture assessment
  • Customizable key performance indicators (KPIs)
  • Ability to protect data across environments
  • Long-term security and compliance reporting across on-premises and cloud-hosted data stores

Learn more about how such solutions can safeguard critical data in hybrid and multicloud environments:

Download the IDC white paper, “Adopting a Next-Generation Data Security Approach,” sponsored by IBM

More from Data Protection

Data security tools make data loss prevention more efficient

3 min read - As businesses navigate the complexities of modern-day cybersecurity initiatives, data loss prevention (DLP) software is the frontline defense against potential data breaches and exfiltration. DLP solutions allow organizations to detect, react to and prevent data leakage or misuse of sensitive information that can lead to catastrophic consequences. However, while DLP solutions play a critical role in cybersecurity, their effectiveness significantly improves when integrated with the right tools and infrastructure. Key limitations of DLP solutions (and how to overcome them) DLP…

Defense in depth: Layering your security coverage

2 min read - The more valuable a possession, the more steps you take to protect it. A home, for example, is protected by the lock systems on doors and windows, but the valuable or sensitive items that a criminal might steal are stored with even more security — in a locked filing cabinet or a safe. This provides layers of protection for the things you really don’t want a thief to get their hands on. You tailor each item’s protection accordingly, depending on…

What is data security posture management?

3 min read - Do you know where all your organization’s data resides across your hybrid cloud environment? Is it appropriately protected? How sure are you? 30%? 50%? It may not be enough. The Cost of a Data Breach Report 2023 revealed that 82% of breaches involved data in the cloud, and 39% of breached data was stored across multiple types of environments. If you have any doubt, your enterprise should consider acquiring a data security posture management (DSPM) solution. With the global average…

Cost of a data breach: The evolving role of law enforcement

4 min read - If someone broke into your company’s office to steal your valuable assets, your first step would be to contact law enforcement. But would your reaction be the same if someone broke into your company’s network and accessed your most valuable assets through a data breach? A decade ago, when smartphones were still relatively new and most people were still coming to understand the value of data both corporate-wide and personally, there was little incentive to report cyber crime. It was…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today