Managing Unstructured Data: 10 Key Requirements



Similar documents
Accelerating Audits with Automation: Who s Accessing Your Unstructured Data?

How Varonis Can Help With Efforts Toward Sarbanes-Oxley Compliance

The Business Case for Data Governance

Contents of This Paper

10 Things IT Should be Doing (But Isn t)

T E TMcDonough@AInfoSys.com W VARONIS DATA GOVERNANCE SUITE

HIPAA Compliance and Varonis

Varonis Systems & The Payment Card Industry Data Security Standard (PCI DSS)

Global Headquarters: 5 Speen Street Framingham, MA USA P F

VARONIS CASE STUDY. Philip Morris International (PMI)

T E elite@elitetele.com W VARONIS VARONIS DATAPRIVILEGE DATAPRIVILEGE. DataPrivilege

VARONIS CASE STUDY. HIT Entertainment

VARONIS CASE STUDY. Arnold Worldwide

VARONIS CASE STUDY Children's Hospital of Wisconsin

VARONIS WHITEPAPER Next Generation Enterprise Search

VARONIS CASE STUDY. Greenhill & Co.

VARONIS WHITEPAPER. Mastering the Information Explosion

Sarbanes-Oxley Act. Solution Brief. Sarbanes-Oxley Act. Publication Date: March 17, EventTracker 8815 Centre Park Drive, Columbia MD 21045

How to Secure Your SharePoint Deployment

Top 10 Most Popular Reports in Enterprise Reporter

5 Lines of Defense You Need to Secure Your SharePoint Environment SharePoint Security Resource Kit

Implementing HIPAA Compliance with ScriptLogic

VARONIS CASE STUDY. Heemskerk Municipality

VARONIS WHITEPAPER. 11 Things IT Should be Doing (But Isn t)

VARONIS CASE STUDY. Matanuska Telephone Association (MTA)

3 MUST-HAVES IN PUBLIC SECTOR INFORMATION GOVERNANCE

Document Management Server - Overview

Data Sheet: Archiving Symantec Enterprise Vault Discovery Accelerator Accelerate e-discovery and simplify review

Secure File Sync & Share with Acronis Access Advanced Date: July 2015 Author: Kerry Dolan, Lab Analyst

Varonis: Secure Enterprise Collaboration and File Sharing Date: June 2015 Author: Terri McClure, Senior Analyst; and Leah Matuson, Research Analyst

Tailored Technologies LLC

VARONIS CASE STUDY THE HAGADONE CORPORATION

10 Building Blocks for Securing File Data

graphical Systems for Website Design

Stellar Active Directory Manager

VARONIS CASE STUDY University of Liverpool

VARONIS CASE STUDY. Analysys Mason. Analysys Mason

Veritas Enterprise Vault for Microsoft Exchange Server

SystemTools Software Inc. NTFS and Share Permissions Reporting

Enterprise Public Key Infrastructure (EPKI) Manager. Version 3.5

AirWatch Solution Overview

Connect for Dragon Medical 360 Network Edition. Administrator Guide

BusinessObjects XI. New for users of BusinessObjects 6.x New for users of Crystal v10

Cisco Software-as-a-Service (SaaS) Access Control

White Paper. The integration of Formate and Alchemy

When enterprise mobility strategies are discussed, security is usually one of the first topics

ENTERPRISE DOCUMENT MANAGEMENT SYSTEM

Symantec Enterprise Vault for Microsoft Exchange

Managing and Maintaining a Microsoft Windows Server 2003 Environment

LANDPARK NETWORK IP Landpark, comprehensive IT Asset Tracking and ITIL Help Desk solutions October 2016

Symantec Enterprise Vault for Microsoft Exchange Server

Netwrix Auditor. Role-Based Access. Version: /27/2015

IBM ediscovery Identification and Collection

Lumension Endpoint Management and Security Suite (LEMSS): Patch and Remediation

Effective storage management and data protection for cloud computing

+27O.557+! RM Auditor Additions - Web Monitor. Contents

Identity and Access Management Integration with PowerBroker. Providing Complete Visibility and Auditing of Identities

Internet File Management & HIPAA A Practical Approach towards Responding to the Privacy Regulation of the Act

Oracle Enterprise Single Sign-on Technical Guide An Oracle White Paper June 2009

Strategic Asset Tracking System User Guide

Migrate from Exchange Public Folders to Business Productivity Online Standard Suite

Laserfiche. and SharePoint Integration. Your potential, realized. Learn More Inside. Include imaged documents in collaborative processes.

FTP-Stream Data Sheet

Active Directory Manager Pro New Features

Comodo MyDLP Software Version 2.0. Endpoint Installation Guide Guide Version Comodo Security Solutions 1255 Broad Street Clifton, NJ 07013

efolder White Paper: Dedicated File Backup vs. File Sync Backup: 5 Questions MSPs Should Ask to Determine the Best Backup Solution for Their Clients

W H I T E P A P E R E X E C U T I V E S U M M AR Y S I T U AT I O N O V E R V I E W. Sponsored by: EMC Corporation. Laura DuBois May 2010

NE-2273B Managing and Maintaining a Microsoft Windows Server 2003 Environment

VARONIS CASE STUDY. Fresenius Netcare

Transporter from Connected Data Date: February 2015 Author: Kerry Dolan, Lab Analyst and Vinny Choinski, Sr. Lab Analyst

BROCHURE. KenCloud TM Asset Management System. Brochure- KenCloud TM AMS. Swash Convergence Technologies Limited

The All-In-One Browser-Based Document Management Solution

Data Sheet: Archiving Symantec Enterprise Vault for Microsoft Exchange Store, Manage, and Discover Critical Business Information

Site Administrator for SharePoint: Report Guide. Report >> Act >> Enforce

The Trellis Dynamic Infrastructure Optimization Platform for Data Center Infrastructure Management (DCIM)

Outgoing VDI Gateways:

Managing SSL Security in Multi-Server Environments

Key New Capabilities Complete, Open, Integrated. Oracle Identity Analytics 11g: Identity Intelligence and Governance

Data Classification Technical Assessment

ITAR Compliant Data Exchange

Novell ZENworks Asset Management 7.5

Whitepaper: Manage Access Control for Network Resources with Securitay s Security Policy Manager

SMART Active Directory Migrator. Desired End State and Project Prerequisites

JIJI AUDIT REPORTER FEATURES

Websense Data Security Suite and Cyber-Ark Inter-Business Vault. The Power of Integration

Effective Storage Management for Cloud Computing

START YOUR INVENTORY WITH SCANFRE

Avaya Mailbox Manager and Unimax 2nd Nature A Comparison

Running the SANS Top 5 Essential Log Reports with Activeworx Security Center

How To Manage A Mobile Device Management (Mdm) Solution

Global Headquarters: 5 Speen Street Framingham, MA USA P F

Comodo Endpoint Security Manager SME Software Version 2.1

Remote Infrastructure Support Services & Managed IT Services

Transcription:

Contents of This White Paper The Ten Key Requirements...2 Visibility... 2 Control... 2 Auditing... 2 Security... 3 Performance... 3 Scale...3 Ease of Installation... 3 Ease of Use... 3 Managing Unstructured Data: 10 Key Requirements un struc tured da ta: Unstructured data refers to computerized information that does not have a data structure (i.e. exist within a database). Examples of unstructured data may include documents, presentations, spreadsheets, scanned images, multimedia files, etc. Structured Data Source: IDC Ease of Integration... 3 Low Total Cost Of Ownership... 4 Conclusion... 4 Unstructured Data About Varonis...5 80% of all enterprise data is unstructured. The following are ten key requirements for any effort, system or technology whose purpose is to protect business data and specifically the documents, presentations, spreadsheets, scanned images, multimedia files, etc. that fill file servers and form any enterprise s valued assets. When considering which technology to implement to realize your data management objectives, it is important to gauge the effectiveness of the solution against the ten requirements of data protection. These requirements are: visibility, control, auditing, security, performance, scalability, ease of installation, ease of use, ease of integration and low total cost of ownership. Additionally, any system for controlling access to unstructured data has to provide sufficient automation to make the process continuous and accurate. 1

The Ten Key Requirements Visibility Any solution for unstructured data management and control must provide a clear visual representation of the access settings to the data as they are currently defined in the existing network. This visual must show, in an aggregated and searchable fashion: All users including their group memberships, Active Directory attributes and data permissions All folders and sub folders within a file server as well as the Microsoft NTFS permissions to this folder for any user or user group who is part of the domain Filtered views that allow queries based on username, group name or folder/data name Automated updating of views to reflect changes or new data within Active Directory (i.e., user to group membership) as well as within the file server (i.e., new data, deleted data, renamed data) Control Any solution for unstructured data management must include all mechanisms to define, test, enact and reverse file and folder permissions. Specifically the system needs to provide: The means to push or commit changes to access permissions directly onto the file server. The mechanism should include an option to push changes explicitly with system administrator intervention or in an automated fashion via a scheduler. What If capabilities, otherwise known as a sandbox where changes to folder permissions can be carried out in a simulated fashion in order to determine what, if any, the impact to access will be. For instance, the system shall allow the revocation of an entire group s permissions in a sandbox. The system should indicate clearly which legitimate users will be affected negatively and allow for mitigation of that condition prior to live push. Auditing A detailed audit must be provided for all aspects of data use. The presentation of the information should be easily comprehensible and searchable. Specifically, the audit record should include: All file touches for a given Active Directory user (i.e., open, delete, rename) All access by access type (i.e., open, delete, rename) All access activity by folder All access detail to sensitive folders All inactive users All inactive data sets All administrative changes including security configuration changes by administrators On-hand searchable audit record for a period of no less than 12 months The information listed above should be available as reports in different formats, and should be exportable The delivery of reports to subscribers should be automated and able to be scheduled. The audit information should be searchable with support for complex Boolean (e.g. and, or, etc.) search conditions. 2

Security A system for unstructured data governance needs to provide an automated means for the revocation of data permissions. Specifically the system should: Identify by name all users whose access to a given data set should be revoked Re-compute revocations as changes to Active Directory and file servers occur Provide the means to test the recommended revocations prior to enacting on the servers for enforcement Provide revocations with accuracy greater than 3 nines (99.9%) Performance Any proposed solution for unstructured data management should not impede the performance of file servers, the user access experience or business traffic flow. Specifically, the system should not require Windows auditing in order to deliver its core functionality for data control. Scale Because most organizations add additional file servers over time, and unstructured data can grow rapidly, the system has to provide room for growth. A data governance solution should be able to scale to accommodate unstructured data doubling in volume every 12 months. Ease of Installation A practical data protection solution cannot disrupt business operations or traffic flow. A solution should install quickly (e.g., within 5 business days), without the need for specialized professional services, and without assigning dedicated IT staff. Ease of Use A solution should not require specialized off-site training in order to operate. Any necessary training should be simple, and something the vendor can deliver themselves, on-site. Of course, the user interface should be intuitive. Ease of Integration Data protection solutions need to support a range of file servers and storage devices including Windows Server 2003 and network attached storage (NAS) from leading NAS vendors. 3

Low Total Cost of Ownership A solution for data protection has to demonstrate quantifiable benefits in time and resource savings. Be sure to look for automation in the following areas, which are often the most manually intensive: Data permission revocations Data audit report generation Data entitlement review Stale data identification Data business owner identification Data migration Conclusion Varonis Systems is a software company unilaterally focused on data governance. Our software solutions deliver on the ten imperatives for protecting unstructured data by showing exactly who has access to it, how individuals are using their permissions and who should have their access revoked. And, Varonis dynamically adjusts as changes to either directories or file servers occur, so that access controls to shared data are always warranted and based on business needs. With Varonis in place, the fundamental step to data loss prevention is addressed: limiting what data makes its way to laptops, printers and USB drives. That way, efforts to further protect data via filtering, encryption, etc., can be focused on only those items that are valuable, sensitive and actively being accessed. 4

Varonis DatAdvantage With Varonis DatAdvantage, you can see individual users and the groups they are part of, drawn directly from your user repository. You can see every folder and file on your file servers. And with Varonis, you can now connect the two. With just a few clicks you can see what groups a user is part of and where their permissions came from. Need Screenshot Functions Visualizing the entire data access control environment Adaptively determining proper authorizations Identifying data business owners Auditing and reporting on all aspects of data use Benefits Effective and scalable data access control Increased and consistent data protection Reduction in the cost and complexity of data control Comprehensive and granular auditing of data use About Varonis Today Varonis is the foremost innovator and solution provider of comprehensive, actionable data governance solutions. The company s installations span leading firms in financial services, healthcare, energy, manufacturing and technology worldwide. Based on patent-pending technology and a highly accurate analytics platform, Varonis solutions give organizations total visibility and control over their data, ensuring that only the right users have access to the right data at all times. 060.051_042208 WORLDWIDE HEADQUARTERS 499 7th Ave., 23rd Floor, South Tower New York, NY 10018 Phone: 877-292-8767 sales@varonis.com RESEARCH AND DEVELOPMENT CENTER 11 Galgaley Haplada St. Herzeliya, 46733, Israel P.O. Box 12609 Tel: +972-9-971-3300

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information