2nd Edition

Tracking the trends and news for IT and IT Security

Paul

Modernizing Your Data Protection Strategy

2021-02-Modernizing-Your-Data-Protection-Strategy-blog-social-1200x627-1.jpgModernizing Your Data Protection Strategy>
Netskope Blog
Think of this process as a funnel, with identity and access control of users being the first stage: involving strong access authentication, user and device risk assessment, and behavior analytics. Next in the funnel is application knowledge: whereby application risk assessment, application instance awareness, adaptive access controls (AAC), and granular activity controls, such as share, post, sync, allow, join, download, and shutdown, are essential to further reduce an organizationâs attack surface and minimize risk exposure. This is where contextual awareness benefits an organizationâs data protection strategy. It goes beyond âallowâ or âblockâ controls and enables safe business productivity by providing restrictions on certain activities (e.g. only allow downloading of data to a managed device).

Overall, the most effective way to protect your growing amount of data from the risk of exfiltration is through inline tools. While API-enabled controls provide data protection for managed SaaS and IaaS applications like Microsoft OneDrive and Amazon S3 buckets, inline controls augment APIs with real-time inline protection across both managed and unmanaged apps, the latter of which we know comprises thousands of apps. These tools detect and see the traffic traversing cloud apps and servicesâboth managed and unmanaged as well as between app instances like corporate and personal. A perfect example is having the ability to see and prevent users from exfiltrating sensitive content from their corporate email to their personal email instances (e.g. john-work@corporate.com -> john-personal@gmail.com).

ast, but not least, is the visibility component of this operational funnel. Deep visibility of data utilized by your users and applications is imperative regardless of location (e.g. remote or on-prem), access method (e.g. web or mobile app) or service/app type (e.g. SaaS app or email or web). As you update and modernize your businessâwhether adopting new cloud apps or supporting the safe growth of your remote workforceâdo the same with your security strategy. Review all of the ways data traverses and can leave your organization, and then work to detect and control it.
Link: https://www.netskope.com/blog/modernizing-your-data-protection-strategy

Categories:

Tags: