Fix IT Security Problems with Data Governance Automation
IT managers in the public sector are doubly challenged to manage controls that enable inter- and intra-agency data access while at the same time complying with the strictest mandates and regulations for limiting such access by mission and business drivers. The only way to ensure that access to data is governed by the principles of least privilege is through the continuous auditing of data use and the refinement and optimization of access policies so that they comply with current needs.
Interested but want to learn more? Register to download our free whitepapers, webinars, and case studies.
Overview
The Challenge
Data repositories like file shares, SharePoint, and Exchange present interesting challenges—there's usually no audit trail or access control lists, and the groups they refer to (in Active Directory, LDAP, etc.) change frequently; mailboxes are accessible by their administrators and other support staff, changes are often manual, and processes to revoke access are limited. If you've scanned the data for intellectual property or other sensitive content, you've likely discovered hundreds or thousands of files that have no known owner, no indication about whether they're stale or not, and no clear indication of whether or not access is adequately restricted.
The Varonis Solution
The Varonis Metadata Framework™ addresses these challenges by enabling customers with critical data residing on their Files Systems, SharePoint Sites, NAS devices, and Exchange Servers to audit data access activity, fix and maintain access controls, identify sensitive data, find data owners, and involve them in access review and authorization processes. Read more with these specific use cases:
Metadata Streams
Four types of metadata are critical for data governance
- User and Group Information - from Active Directory, LDAP, NIS, SharePoint, etc.
- Permissions information - knowing who can access what data in which containers
- Access Activity - knowing which users do access what data, when and what they've done
- Sensitive Content Indicators - knowing which files contain items of sensitivity and importance, and where they reside
Why Varonis
Data protection is necessary to safeguard an organization's customers, employees, business partners, and investors. It is fundamental in securing an organization's intellectual property and competitive edge, and for maintaining the organizational trust required for it to properly function. Ongoing, scalable data protection and management require technology designed to handle an ever-increasing volume and complexity—a metadata framework.
The Varonis Metadata Framework™ non-intrusively collects this critical metadata, generates metadata where existing metadata is lacking (e.g. its file system filters and content inspection technologies), pre-processes it, normalizes it, analyzes it, stores it, and presents it to IT administrators in an interactive, dynamic interface. Once data owners are identified, they are empowered to make informed authorization and permissions maintenance decisions through a configurable web-based interface—that are then executed—with no IT overhead or manual backend processes.
Resources
30-Day Trial
Our 30-Day Free Trial provides a full audit of your file system or your SharePoint environment. Audit permissions, auditing access, usage statistics, recommendations, impact analysis, and identification of business owners.
Within hours of installation
You can instantly conduct a permissions audit: File and folder access permissions and how those map to specific users and groups. You can even generate reports.
Within a day of installation
Varonis® DatAdvantage® will begin to show you which users are accessing the data, and how.
Within 3 weeks of installation
Varonis® DatAdvantage® will actually make highly reliable recommendations about how to limit access to files and folders to just those users who need it for their jobs.
Get the Varonis View. Sign up for the 30-Day Free Trial.
Chinese #Hackers Resume Attacks on U.S. Targets - http://t.co/qxdpEkl510 #hacking