Guide to Information Governance: A Holistic Approach

Similar documents
Capstone for Records Management

EMC SourceOne Management and ediscovery Overview

Data Sheet: Archiving Symantec Enterprise Vault Store, Manage, and Discover Critical Business Information

Miguel Ortiz, Sr. Systems Engineer. Globanet

Capstone Compliance Using Symantec Archiving and ediscovery Solutions

Director, Value Engineering

Veritas Enterprise Vault Overview

3 MUST-HAVES IN PUBLIC SECTOR INFORMATION GOVERNANCE

ediscovery AND COMPLIANCE STRATEGY

IBM Unstructured Data Identification and Management

Table of contents

Enable unified data protection

Information Governance in the Cloud

Gain control over all enterprise content

Hitachi Cloud Service for Content Archiving. Delivered by Hitachi Data Systems

Symantec Enterprise Vault and Symantec Enterprise Vault.cloud

One Easily Avoidable Pitfall in Your ediscovery and Compliance Strategy

Only 1% of that data has preservation requirements Only 5% has regulatory requirements Only 34% is active and useful

WHITE PAPER Practical Information Governance: Balancing Cost, Risk, and Productivity

An ICT ConsultingCompany

Symantec Enterprise Vault Overview

Archiving, Backup, and Recovery for Complete the Promise of Virtualization

IBM ediscovery Identification and Collection

The evolution of data archiving

Enforce Governance, Risk, and Compliance Programs for Database Data

Proactive Data Management for ediscovery

IBM Unstructured Data Identification & Management An on ramp to reducing information costs and risk

Symantec ediscovery Platform, powered by Clearwell

Business white paper Top 10 reasons to choose Cloud-based Archiving

ILM et Archivage Les solutions IBM

Intelligent Information Management: Archive & ediscovery

10 Building Blocks for Securing File Data

Transform records management

Symantec Enterprise Vault.cloud Overview

CA Message Manager. Benefits. Overview. CA Advantage

Case Studies. Data Sheets : White Papers : Boost your storage buying power... use ours!

NightOwlDiscovery. EnCase Enterprise/ ediscovery Strategic Consulting Services

Global Headquarters: 5 Speen Street Framingham, MA USA P F

Symantec Enterprise Vault for Microsoft Exchange Server

Symantec Enterprise Vault for Microsoft Exchange

Information Archiving

Brochure. ECM without borders. HP Enterprise Content Management (ECM)

Concurrent Technologies Corporation (CTC) is an independent, nonprofit, applied scientific research and development professional services

Modern Data Management & Intelligent Archive. Mark Bentkower, CISSP Director, Enterprise Solution APAC CommVault

Navigating Information Governance and ediscovery

Can CA Information Governance help us protect and manage our information throughout its life cycle and reduce our risk exposure?

Todd Heythaler Information Governance & ediscovery. Emerging Technologies Work Group

Managing Storage and Compliance Costs through Archiving and ediscovery

Fujitsu Cloud Integration Platform Lead your business into the cloud

Capstone Compliance Using Symantec Archiving and ediscovery Solutions

Management Trends, Troubles, and Solutions

Improving Unstructured Data Governance. Ryan Jancaitis Product Management Symantec

Empower Decision-Making with Information Insight Veritas Information Governance Solutions

Data Sheet: Archiving Symantec Enterprise Vault Discovery Accelerator Accelerate e-discovery and simplify review

Realizing the ROI of Information Governance. Gregory P. Kosinski Director, Product Marketing EMC

Global Headquarters: 5 Speen Street Framingham, MA USA P F

Taking the Fast Track to Enterprise Search and ediscovery

Cohasset Associates, Inc. NOTES Managing Electronic Records Conference 1.1. The discipline of analyzing the. Value Costs and Risks

SAME PRINCIPLES APPLY, BUT NEW MANDATES FOR CHANGE

Meaning Based Computing: Managing the Avalanche of Unstructured Data

Breaking Down the Silos: A 21st Century Approach to Information Governance. May 2015

ediscovery Solutions

Symantec Enterprise Vault for Microsoft Exchange

White. Paper. March This ESG White Paper was commissioned by Symantec and is distributed under license from ESG.

Information Governance, Risk, Compliance

Backup and Data Protection for Hospitals

Lowering E-Discovery Costs Through Enterprise Records and Retention Management. An Oracle White Paper March 2007

Integration of E-Discovery and FOIA

Efficiently Protect, Manage and Access Big Data. Nigel Tozer Business Development Director EMEA

Veritas Enterprise Vault for Microsoft Exchange Server

SMART ARCHIVING. The need for a strategy around archiving. Peter Van Camp

Symantec Enterprise Vault.cloud Overview

Die Herausforderung an Backup/Recovery durch das Datenwachstum Wie optimiere ich

Solution Overview: Data Protection Archiving, Backup, and Recovery Unified Information Management for Complex Windows Environments

ARCHIVING: A BUYER S CHECKLIST

UNCLASSIFIED. UK Archiving powered by Mimecast Service Description

Mayur Dewaikar Sr. Product Manager Information Management Group Symantec Corporation

Data Sheet: Archiving Symantec Enterprise Vault for Microsoft Exchange Store, Manage, and Discover Critical Business Information

COMMVAULT: LA GESTIONE DEL DATO OLTRE IL BACKUP ED IL DISASTER RECOVERY

Confidence in a Connected World. MEEC Symantec Product Availability. John Lally MD Education Account Executive John_Lally@symantec.

Mike Smart Cyber Strategist & Enterprise Security Solutions, EMEA. Cyber: The Catalyst to Transform the Security Program

Leading the Pack - IBM Enterprise Content Management Solutions

Using EMC SourceOne Management in IBM Lotus Notes/Domino Environments

Agio Remote Monitoring and Management

Information Lifecycle Governance. Surabhi Kapoor & Jan Lambrechts

The Challenge of Securing and Managing Data While Meeting Compliance

A Radicati Group Webconference

How To Manage Records At The Exceeda Agency

Symantec Enterprise Vault Discovery.cloud

with Managing RSA the Lifecycle of Key Manager RSA Streamlining Security Operations Data Loss Prevention Solutions RSA Solution Brief

A 15-Minute Guide to 15-MINUTE GUIDE

Viewpoint ediscovery Services

A Radicati Group Webconference

3. Ensure the management of information is compliant with legislative requirements to maximise the benefits and minimise risks;

Metrics-Based Information Governance

IBM Information Archive for , Files and ediscovery

Allison Stanton, Director of E-Discovery U.S. Department of Justice, Civil Division. U.S. Department of Agriculture

Transcription:

E-PAPER DECEMBER 2014 Guide to Information Governance: A Holistic Approach A comprehensive strategy allows agencies to create more reliable processes for ediscovery, increase stakeholder collaboration, and reduce risks.

Developing a comprehensive information governance strategy is the best way for agencies to better manage large amounts of data, comply with ediscovery preservation requirements, adhere to federal records requirements, rein in costs, and respond to Freedom of Information Act (FOIA) requests in a timely manner. Agencies have made some headway in managing all of this data in compliance with the Presidential Memorandum on Managing Government Records. But without a comprehensive, holistic information governance strategy, it s nearly impossible to keep on top of everything, especially in the face of the growing number of unstructured data that must be managed, including email, network and cloud file storage, videos, audio files, photos, and text messages. Organizations are beginning to hear that message loud and clear: According to Gartner, 25% of organizations will manage all of their unstructured data using information governance and storage management policies by 2018, up from less than 1% today. To understand the concept, think of a house, where each agency stakeholder has its own floor. There would be floors for IT and security, records management, legal, FOIA, and internal investigations. The data created and maintained by the agency is the common thread connecting all of its departments and stakeholders; how that data is used depends on the stakeholder. The information governance framework an agency has in place determines the house s foundation, and the strength of each stakeholder s programs and projects relies on that foundation. While agencies have made some progress, many are still managing information in siloes. Any crack in the foundation can seriously jeopardize the structural integrity of the floors of the house and possibly cause it to crumble. While agencies have made some progress, many are still managing information in a traditional siloed approach, without input from all stakeholders. In many cases, each of these individual agency silos has its own policies, procedures, technologies, and cultural mindset. That means that one part of the agency often has no idea how its information, policies, and procedures affect other parts of the agency. For example, a legal department, which is in charge of ediscovery, wants to maintain maximum control over email by preserving and saving everything forever, while an IT department might develop a policy that limits users to 250 MB of email in their inboxes. The two policies aren t in agreement, which can create chaos for both the legal team and IT because their own interests drive the rationales for their decisions. Legal is looking to limit its ediscovery risk while IT is worried about saving money by limiting the amount of expensive storage it must purchase to keep its enterprise mail system functional. This dynamic can come into play in other areas as well. The IT department may be in favor of the bring-your-own-device (BYOD) model to save money, but the legal team may be more hesitant from a regulatory and ediscovery perspective because this is another policy that could be used to create discoverable information that must somehow be managed. To successfully address and build effective solutions for these

problems, agencies must approach information governance holistically with input from all data stakeholders. This approach, which can include consolidating various data sources into one comprehensive data store, has many benefits. Not only does it provide more reliable and efficient processes for ediscovery, but it increases stakeholder collaboration and drastically reduces risks such as data leakage, privacy breaches, and security lapses. It also reduces costs across the board by more efficiently using agency resources and eliminating redundancy. Building a Strong Information Governance Foundation The most important criterion for a successful, holistic information governance infrastructure is strong executive-level support. This is the only way to truly close the chasm that exists between different information and cultural silos within agencies. Executive-level support Agencies should build a proper business case that quantifies ROI and justifies expenditures in terms of time, technology, and people. also makes information governance decisions fully independent of any particular stakeholder s needs; instead, these decisions are based on agency-wide needs and priorities. Agencies should also build a proper business case that quantifies return on investment and justifies expenditures in terms of time, technology, and people. In addition, it s important to look at the business case strategically, explaining how it aligns with the agency s mission and how an information governance program will further that mission. In addition, agencies need to make sure to involve and facilitate participation among the various data stakeholders. That means gathering input from all stakeholders about their practices for preserving litigation, records management, privacy, and data management, as well as understanding the types of technology systems they currently use. While some of the work in building a strong, holistic information governance foundation falls under policy and procedures, much of it can be facilitated by using the right technology, from records management and information security to ediscovery and storage/archiving tools. While researching these various technology solutions, keep in mind that there are two types: One type is a point solution that solves one specific problem and has little or no integration with other systems. More appropriate choices can function and integrate with other offerings, creating a more comprehensive governance of agency data. Data Archiving and Storage Optimization: Determining where to store data is the first part of any information governance policy. There are many choices when it comes to the medium of storage, but the important part is mapping out data that may be stored in multiple repositories email systems, document management systems, shared drives, etc. When choosing data storage and archiving tools with information governance in mind, make sure they support large amounts of unstructured data with enough flexibility and scalability to meet your long-term needs. Data Archiving and Storage Management: Understanding where your data is

25%of organizations will manage all their unstructured data using information governance and storage management policies by 2018 located is an important foundational brick for any information governance framework. There are many choices when it comes to the medium of storage (on premises or cloud) and the type of repository holding your valuable agency data (file shares, Sharepoint, email systems, document management systems, etc.). Leveraging data archiving and storage management tools can help agencies understand the makeup of their data, determine true custodian ownership, and know where it exists and how often it is used. This valuable information reduces an agency s ediscovery and cyber security exposure, saves money by reclaiming valuable disk space on high-speed production storage and archiving less-frequently accessed data to slower tier or cloud storage, and allows for a faster response to congressional inquiries and FOIA requests. Records/Information Management: The OMB s Managing Government Records Directive, managed by the National Archives and Records Administration (NARA), requires agencies to use automated technology for more comprehensive records management. Tools in this category automate recordkeeping, which in turn helps comply with regulatory audits. They also improve knowledge-sharing across an organization. The tools typically consist of an archiving or records management system; connectors to the most common applications and repositories; metadata enhancement and auto-classification; an analytics dashboard; a way to classify and retain records; and a method for protecting records against deletion and changes by agency employees. Information Security/Protection: There are several important information security and protection tools that can help round out an information governance strategy by ensuring a safe network security perimeter and securing transfer of data over networks, both internally and externally, as well as safety at rest. These include malware controls, access controls, messaging and web security, endpoint protection, file-based controls, data leakage protection, encryption, authentication, data protection, and privacy controls. ediscovery: ediscovery is not going away, and the problem only gets harder to solve with the proliferation of data, not only within an agency, but with data associated with cloud services and mobile devices. These advanced tools can help agencies comply with legal hold obligations, process terabytes of data, and empower users with advanced analytical and searching tools such as predictive coding and concept searching to drastically reduce investigation and document review costs and shrink the time required to wade through large volumes of data. Benefits of the Holistic Approach With a holistic approach to information governance, the IT department increases the manageability of the entire IT environment, thanks to a lower footprint of unstructured data and deduplication across the entire dataset. Integration with other infrastructure systems also reduces the amount of backup data being created on a

weekly basis, leading to decreased backup time and media costs. This approach allows IT to store archived or records data on less expensive disks and in cloud storage services. There are other indirect cost savings as well, including freeing up personnel to work on new projects instead of maintaining existing systems, and reducing service desk calls, since the number of end-users calling the helpdesk to restore deleted items drastically decreases. The legal team benefits significantly with the holistic approach as well, because applying legal holds to data contained in a repository is a simple task that reduces the risk of data spoliation sanctions. This approach also helps the legal team quickly search, discover, and defensibly hold data in a repository and quickly estimate how much time and money it will take to defend or prosecute a case (early case assessment). Other benefits include: - Reducing the amount of control a custodian has over deletion of potentially relevant data -Eliminating pockets of unstructured or untagged data that can exist in data repositories and that hasn t been analyzed or processed -Performing defensible collections without requiring the assistance of IT A more robust and comprehensive data repository allows the office of information governance/investigations team to be proactive instead of reactive when it comes to internal investigations. In addition, the OIG will spend less time investigating each case, because the data is readily accessible and because it can use Data archiving and storage management tools can help agencies understand their data. ediscovery tools for advanced analysis of the data. Across the board, a holistic approach to information governance allows agencies to respond to FOIA requests faster and more defensibly. It also allows those responsible for responding to FOIA requests to stop relying on custodial preservation and collection and to better track and document data collection tasks, in the event a question were ever to arise as to what sources were searched or how they were searched. Most importantly, a holistic approach can help agencies Conclusion improve collaboration between agency counsel and FOIA professionals, thereby reducing downstream ediscovery risk. Finally, automating record classification a big part of information governance will go a long way toward meeting the 2016 and 2019 electronic records management goals detailed in the Managing Government Records Directive. In addition, the holistic approach will reduce the burden on endusers, increase the quality of preserved records, and help agencies leverage NARA s Capstone Approach for email records management. A holistic approach to information governance benefits agencies in many ways. Not only does it reduce risk and save money across the board, but it creates more efficient and defensible agency processes related to ediscovery, FOIA, and records management. Most importantly, it creates a more collaborative environment where everyone can work together to put the agency s mission first.

SYMANTEC: HELPING AGENCIES WITH INFORMATION GOVERNANCE Symantec has an entire family of integrated solutions that give agencies the tools needed to build a strong foundation for their information governance frameworks. Data Insight: A reporting, analytics, and visualization tool that helps agencies understand what data exists, how it is being used, how often it is used, who owns it, and who has access to it. Useful for determining custodian ownership for ediscovery and FOIA purposes, as well as for insider threat and cyber security investigations. DLP: A data loss prevention tool that enables agencies to monitor, protect, and manage their confidential data wherever it is stored and used, across endpoints, mobile devices, and network and storage systems. NetBackup: Enterprise-class data protection for datacenters and virtualized environments. A management console reveals all backup and recovery activity, allowing consistent policies and service levels to be enforced across the agency. Enterprise Vault: Market-leading enterprise archiving technology that helps agencies classify and analyze email and unstructured and structured data. Agencies can leverage this repository to reduce the storage footprint required by enterprise applications. The best way to do this is by consolidating various distinct data-source types into one system to allow for defensible preservation and searching of data for ediscovery, FOIA, and internal investigations, and to comply with NARA Capstone Guidance to meet the 2016 goal for managing agency email records electronically. Mobile Device Management Suite for Agency BYOD: Symantec Mobile Management delivers a comprehensive Mobile Device Management (MDM) solution giving public sector organizations the ability to defensibly manage and secure mobile endpoints across the entire enterprise. The solution helps protect sensitive data and applications while simultaneously reducing the risk involved with remote connectivity. Symantec ediscovery Platform Powered by Clearwell: A workflow that automates the ediscovery process from legal hold to production, providing transparency and control. Separate modules automate the legal hold process, simplify the forensic identification and collection of electronic data from all critical data sources, and automatically cull early case assessment data by up to 90%. About DLT Solutions: Through its partnership with Symantec, DLT Solutions provides a comprehensive portfolio of solutions that address security challenges within federal, state, and local governments by helping agencies access, manage, and secure their information across the enterprise and its proliferation of end points. As a Symantec Platinum Partner, DLT holds the highest levels of authorization to assist agencies in evaluating, selecting, procuring, deploying, and supporting Symantec s enterprise availability and information technology products such as Symantec NetBackup, Backup Appliance, Enterprise Vault, and Storage Foundation High Availability Suite. For more information, contact DLT Solutions at 800-262-4358, email edmsolutions@dlt.com, or visit www.dlt.com/symantec.

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information