Navigating the Compliance Minefield – What You Can’t See Can Cost You

While many organizations to date have been focused on securing and protecting data stored within corporate systems and databases, it is the sensitive data that resides outside of these protected and structured resources that could be the biggest blind spot and liability of all. This liability is further complicated by regulations like the pending introduction of the EU’s new General Data Protection Regulation (GDPR), which mandates the privacy and protection of all EU citizens’ personal data.

The Sensitive Data Blind Spot

Often this sensitive data makes its way out of protected systems as business workers export content to generate new documents, presentations, and reports to propel business forward. This data gets stored within local and cloud file shares such as SharePoint, Dropbox and Google Drive that are scattered throughout the organization and often outside of the corporate firewall. The end result is a minefield of compliance and security risks and an unfortunate data breach waiting to happen. The key to preventing this type of data breach is discovering and governing access to sensitive data, no matter where it resides. Without a comprehensive identity governance strategy that provides greater control and visibility of sensitive unstructured data, companies are unprepared to address their compliance vulnerabilities.

Introducing: SecurityIQ 5.1

Only by protecting access across all applications AND data stored in files with a proven set of compliance tools and processes can organizations confidently protect themselves from the consequences of non-compliance and security threats. That’s why we’re excited to announce the release of SecurityIQ 5.1, available today, which delivers enterprise-level identity governance of data stored in files by discovering where sensitive information resides, and applying appropriate access controls, data security and real-time visibility to mitigate compliance and security risks.

What’s New in SecurityIQ 5.1

One of the key capabilities in SecurityIQ 5.1 are the new compliance packs for GDPR, personally identifiable information (PII) and protected health information (PHI).  These compliance packs provide out-of-the-box policies to identify PII data patterns across 28 EU countries to support GDPR and to classify PHI-related data using pre-configured search.

In addition to addressing compliance needs, these pre-defined policies also help eliminate weeks of in-house policy development, and can enable organizations to begin the process of identifying and securing sensitive data much sooner. Since these compliance packs are built on SecurityIQ’s policy framework, it also allows for future expansion to support other regulations.

Also in SecurityIQ 5.1 is a new admin dashboard that offers greater visibility across all governed data resources and activities to help support compliance and bolster an organization’s security posture. With embedded analytics and visualizations, admins can cut through the noise of millions of events and focus on the high-priority activities and data with the greatest risk. Customizable widgets and reports provide real-time insight to allow admins to quickly respond to suspicious events.

The Power to Be Compliant

As the volume of sensitive data proliferates outside of protected systems and applications and into data files, it is critical for enterprises to secure and properly govern access to all of their data in accordance with GDPR and other regulatory requirements. With SecurityIQ as a core component of a comprehensive identity governance strategy, you’ll be a few steps ahead in addressing key compliance needs while reducing your risk of exposure significantly.

For more on how SecurityIQ can give your organization the power to more confidently and efficiently address global regulations while strengthening your overall security posture and reducing risk, read the press release here.

Discussion

Leave a Reply

Your email address will not be published. Required fields are marked *