So, in my last post, I mentioned a series of webinars and thought this would be a good opportunity to provide a little preview into some of the topics we’re planning on discussing.
Unstructured data, of course! But what about it? I’ll be discussing the challenges… kind of a “What I heard from you as a Gartner data security analyst” in a “How to navigate through the maze of methodologies, governance and technologies” sort of way.
Unstructured data is a live and growing thing that often gets overlooked. Remember the “Wild Wild West” comment from my last post? So I’m here and excited to help you discover new simpler approaches to gaining visibility and control over the growing unstructured data all organizations are facing. How to discover, classify and encrypt unstructured data and prepare for and adhere to privacy regulations like GDPR and CCPA.
If you are a CISO, DPO or CDO, or even a business unit lead within your organization, you should join these sessions. If you struggle with what functions to automate or are trying to get out from under or improve the traditional rules based approach, you should join Would you rather have your staff spend less time fielding false positives and more time on the things that really matter? Please, join and learn how Fasoo’s extensive product capabilities can help.
Here’s the thing… maybe I didn’t hear EVERYTHING, so I’d like to shout out to the readers… I would love to get your thoughts, suggestions, and field any questions. I want to hear from you and keep the conversation alive. In the meantime, stay tuned… I’ll be back.
Fasoo demonstrated the latest version of the Wrapsody productivity and security platform at the Gartner Symposium/ITxpo 2017 from October 2 – 5, 2017 in Orlando, FL. There was a lot of interest from CIOs, other executives and security professionals as many are struggling with how to secure sensitive information while also providing enhanced productivity for documents or unstructured data.
This year’s Symposium continued Gartner’s focus on helping organizations transform into digital businesses, which is far more than just automating processes. It includes a holistic change of thinking, where data is the driver of growth and secure business processes are a given. Since documents make up about 80% of the information that drives business processes, simplifying secure collaboration with documents while enhancing governance and compliance are key components of digital business.
On Tuesday October 3, 2017, John Herring, President & CEO and Ron Arden, Executive Vice President and COO of Fasoo, Inc., presented “Content Services and Security Platform for Digital Transformation”. John talked about using the power of the Wrapsody file-centric security and information management platform to simplify and enhance collaboration as businesses grow. The key to Wrapsody is a unique, persistent file ID that follows a document and allows secure sharing, distribution and tracking, and version control at the data source across all locations. It allows organizations to address issues from risk management to business performance. Ron followed John with an example of how Wrapsody enabled a company to quickly and easily create its budget for next year. Since all collaboration and interaction was around the budget spreadsheet, it allowed all stakeholders to update their sections easily without having to search for who did what when and where is the latest copy of the document. Wrapsody also has great analytics that allows different constituencies in the organization to track and manage security, compliance, governance and productivity.
During the course of the Symposium, a lot of attendees and analysts came to the Fasoo booth to understand how to break through the problems of traditional file shares and document repositories. While those systems are great for organizing information, they are challenging when users have to collaborate outside the system and move files from repository to desktop to email and to the cloud. Tracking and managing documents regardless of location and ensuring that everyone has the current version is a constant battle that affects productivity, governance and security. Wrapsody simplifies this by bringing the process down to the file level and automatically synchronizes files as users create and work with them.
A number of attendees were also interested in how Fasoo can provide more granular permission controls with the Wrapsody platform for those scenarios that demand greater security. When a user creates a Wrapsody document, the user assigns View or Revision permissions to those people that need to access the document. The document is encrypted and allows collaboration through the organization and beyond. If a user wants to further control an authorized user’s ability to Print, take a screenshot, run a macro or extract data to an unprotected environment, those permissions can be granted. One CIO commented that she liked that flexibility, since some documents are more sensitive than others and will require greater controls.
With companies trying to improve productivity and comply with numerous new regulations, such as GDPR in Europe, Wrapsody provides access control and an audit trail of wherever the document has traveled. Document owners, department heads and security administrators can see how each document has been used through a graphical dashboard. Since documents are always protected and tracked, regardless of location, complying with new cybersecurity regulations is a lot easier. One CIO from a government agency liked the analytics, since he said that understanding what information he has and who is using it is a major challenge to security and data governance.
Of course no Gartner Symposium would be complete without a visit to an Orlando theme park. This year’s attendees got to enjoy an evening at Universal Studios with great food, rides and a lot of fun. Having a drink at an Irish pub or going on a roller coaster are great ways to meet new people and be a kid again. It was a nice balance with the seriousness of the main event.
The main details surrounding the Sony hack are as follows. A hacking group — apparently sponsored by the North Korean government — infiltrated the “corporate network” of Sony Pictures on Nov. 24, 2014, removing large amounts of private data, deleting original copies and leaving messages threatening to release the information if Sony did not abide by their demands. In a very slow and painful process, the group leaked the confidential information, which includes executive compensation, employee social security numbers, unreleased movies and a massive amount of corporate emails.
The leaked emails seem to have revealed some major weaknesses to Sony’s approach to data governance.
Some points to address regarding Sony’ status at that time before the data breach are:
Recognizing the need to reduce the company’s data amasses, but neglecting to follow through with a secure removal plan
Failing to take stronger measures to protect corporate intellectual property (IP) and employee personally identifiable information (PII)
Storing user login credentials in a file titled “passwords”
The need to implement an effective security strategy with the right solutions was needed. Especially with sensitive information such as PII and IP, not having this data encrypted with such solutions as data encryption or digital rights management have made it easy for hackers to steal this information.
Even with these solutions however, the need to ensure that all necessary files are truly secure must be ensured. With a definite guarantee to mitigate the extent of the damage from these data breaches, a mix between data governance and data encryption can ensure that your data is secure.
3rd Party Cookies (Analytics)
This website uses Google Analytics to collect anonymous information such as the number of visitors to the site, and the most popular pages.
Keeping this cookie enabled helps us to improve our website.
Please enable Strictly Necessary Cookies first so that we can save your preferences!