Light Dark
April 11, 2016 By Leslie Wiggins 4 min read
Data Protection

You know how it is: They’ve met online, the attraction has built, and now they are going on their first date.

She’s precious to you, and you’ve poured so much of your care, time and attention into keeping her — your sensitive data — safe. You know you can’t be by her side forever and you must give her freedom. Luckily, you’ve created a secure environment and given her the analytical mind she needs to make good decisions.

That doesn’t mean you’ll trust her with just anyone; you want to make sure she’s protected and in a safe environment. To do that, you need to know you have comprehensive data security before she walks out that door.

Data Security and Dating

Surprisingly, a parent’s relationship with a precious daughter is similar to how teams need to treat their sensitive data. Here are the four things you want to know before she leaves on her date — or before your sensitive data leaves your side.

1. Determine the Who

A father will ask who the date is. He’ll want to meet the date, talk to other people who know them and make sure they can be trusted. Similarly, a team protecting sensitive data must look at who is accessing and/or modifying that data, determine whether they should have access and to what degree and then keep track of what’s going on.

2. Tell Her Not to Settle

Your daughter deserves someone who is 100 percent dedicated to her and always has her back. Your sensitive data also deserves 100 percent!

Protecting some of your sensitive data in some of the places it lives is not sufficient — it’s just playing a shell game with attackers. To safeguard sensitive data, you need to secure data everywhere it lives, including big data environments, file systems, cloud environments and more.

Securing only databases just isn’t enough anymore. Given that IT environments constantly change, you need to make sure your security solution can keep up and adjust as your needs shift and grow.

3. Know Where the Action Is Happening

If you can’t be there yourself to watch the date, you want to make sure that other people will be around to spot possible questionable behavior.

In the same way, you must make sure you are tracking your sensitive data — except this is so it doesn’t wind up in a public place! Monitor sensitive data wherever it is.

You can jump right into monitoring to get a better understanding of what’s actually happening in your environment, or you can first discover and classify sensitive data and then put monitoring in place. Don’t forget that advanced analytics are an important part of monitoring. It allows suspicious behavior to be identified automatically so you can take the right real-time action.

4. Pass on the Right Tools

You want to know she can reach out and let you know if she needs anything, whether she’s delighted with how the date is going, feeling uncomfortable or runs out of gas. She’s smart and a good judge of character. She has all the tools she needs, from having that fully charged cellphone to knowing how to drive stick shift to being able to pull out the judo moves.

Likewise, your sensitive data needs the right tools so that it can call for help and you can act in real time. If your sensitive data is at risk now, it’s not sufficient to do something to protect it next week. You must be able to rely on a solution that can identify internal and external threats and also act in real time — whether that’s through alerting an administrator, blocking access or quarantining a suspicious user until investigation can be done.

Read Gartner’s Market Guide for Data-Centric Audit and Protection

Security Tools Can Help

IBM Security Guardium is a comprehensive data security solution that can help you support the four activities mentioned above. It also does more, from encrypting and masking data to performing vulnerability assessments on data repositories to automatically discovering and classifying sensitive data.

Guardium accomplishes this by delivering three key data security capabilities:

  • Analyze: Automatically discover sensitive data, uncover risks and take action to prevent data loss.
  • Protect: Provide complete protection for sensitive data. This includes the ability to monitor and control access to sensitive data and files, protect the data itself and protect the business from risk by providing automated compliance support.
  • Adapt: Seamlessly handle changes within the IT environment as you add new users and technologies and need to adjust to the increasing volume of data moving throughout the environment in a manageable and cost-effective way.

In addition to providing automated load balancing to help adjust to large and fluctuating workloads, Guardium supports a full array of data repositories so it can protect your sensitive data whether it’s in a database, an application, a big data environment or a cloud application. Guardium is modular, so you can start where you need to and expand capabilities as your needs change.

By leveraging a comprehensive solution that can analyze, protect and adapt, you can safeguard sensitive data and meet compliance mandates with confidence while reducing risk, containing costs and improving efficiency. Once you know you can do all these things, you can sit back, relax and let your data go out on a date.

Read Gartner’s new “Market Guide for Data-Centric Audit and Protection” to learn more about IBM Security Guardium’s comprehensive data security coverage.

 |  |  | 
Leslie Wiggins
Program Director, IBM Security

More from Data Protection
November 8, 2024

SpyAgent malware targets crypto wallets by stealing screenshots

4 min read - A new Android malware strain known as SpyAgent is making the rounds — and stealing screenshots as it goes. Using optical character recognition (OCR) technology, the malware is after cryptocurrency recovery phrases often stored in screenshots on user devices.Here's how to dodge the bullet.Attackers shooting their (screen) shotAttacks start — as always — with phishing efforts. Users receive text messages prompting them to download seemingly legitimate apps. If they take the bait and install the app, the SpyAgent malware gets…

November 7, 2024

Exploring DORA: How to manage ICT incidents and minimize cyber threat risks

3 min read - As cybersecurity breaches continue to rise globally, institutions handling sensitive information are particularly vulnerable. In 2024, the average cost of a data breach in the financial sector reached $6.08 million, making it the second hardest hit after healthcare, according to IBM's 2024 Cost of a Data Breach report. This underscores the need for robust IT security regulations in critical sectors.More than just a defensive measure, compliance with security regulations helps organizations reduce risk, strengthen operational resilience and enhance customer trust.…

November 5, 2024

Skills shortage directly tied to financial loss in data breaches

2 min read - The cybersecurity skills gap continues to widen, with serious consequences for organizations worldwide. According to IBM's 2024 Cost Of A Data Breach Report, more than half of breached organizations now face severe security staffing shortages, a whopping 26.2% increase from the previous year.And that's expensive. This skills deficit adds an average of $1.76 million in additional breach costs.The shortage spans both technical cybersecurity skills and adjacent competencies. Cloud security, threat intelligence analysis and incident response capabilities are in high demand. Equally…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2024 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature