Forrester Webinar – Data Classification: Building a Foundation for Data Security and Privacy Data classification is a core component of defining and understanding data that security and risk professionals must protect, as well as identifying the way employees should handle it and the types of security controls that are necessary. Data classification tools, which include manual (user-driven) and automated classification, help organizations apply metadata tags to sensitive data. In the last year, more than half of global security decision makers have implemented data… Continue reading This entry was posted in Classification on June 3, 2017 by Douglas Ribback
Announcing the Classification for Dummies Blog Series Over the next 2 months, we’ll be posting a series of blogs that will share information and best practices garnered from over a decade of experience implementing data discovery and more recent data classification solutions. In this blog series you will learn how to identify data as sensitive, how to define a classification schema and separate your data, the risks of not classifying data balanced with the benefits of a… Continue reading This entry was posted in Classification on May 10, 2017 by Douglas Ribback
Ponemon Report: The Impact of Data Discovery and Data Classification In Information Security Following Spirion’s presentation at RSA 2017, “The Impact of Data Discovery and Data Classification in Information Security” Dr. Larry Ponemon of the Ponemon Institute discusses some of the key findings from “The Importance of DLP in Cybersecurity Defense” Ponemon report. The report, which was published in February of 2017, found significant differences between responses of those that are using a manual approach to mitigate or curtail the leakage of sensitive… Continue reading This entry was posted in Classification, data breach, Data Security, DLP, Ponemon, Uncategorized and tagged DLP, Ponemon, Ponemon Institute on April 13, 2017 by Douglas Ribback
Attackers don’t play fair. Neither should you. We’ve all heard sports stars and even militaries quote the famous Chinese general Sun Tzu when preparing for a big game or battle. Sun Tzu was a master strategist and completely grasped the concept of deception when facing an opponent. One of the best quotes in his famous book, “The Art of War” regarding deception goes like this: “All warfare is based on deception. Hence, when we are able to… Continue reading This entry was posted in Data privacy, Data Security, risk management on May 3, 2016 by Matthew Pascucci
Sensitive Data Management Maturity – The DLP Missing Link At the 2016 RSA Conference in San Francisco, CA, Todd Feinman, CEO and Gabriel Gumbs, VP of Product Strategy presented on Sensitive Data Management Maturity – The DLP Missing Link. As a company and with the help of industry professionals, we created a Sensitive Data Maturity Model to help organizations identify where their data is, who owns it, what should be done with it, and how much of it exists…. Continue reading This entry was posted in Classification, Conferences, Data privacy, Data Security, DLP, sensitive data management, Sensitive Data Manager and tagged Data Classification, Gabriel Gumbs, PCI, PHI, PII, sensitive data, sensitive data manager, Sensitive Data Maturity Model, Todd Feinman on March 24, 2016 by Douglas Ribback
Eight Things to Consider When Classifying Your Sensitive Data Data classification is simple—it entails assigning a level of sensitivity to each piece of information, making it easier to locate and retrieve. Classifying data is essential in enabling enterprises to make sense of their vast amounts of data. Without data classification, an organization treats all data as if it were the same. You can’t know the level of sensitivity of any specific data because it hasn’t been properly categorized…. Continue reading This entry was posted in Classification, data breach, Data privacy, Data Security, PCI-DSS, Regulation, Sensitive Data Manager and tagged classification, Compliance, data breach, data breaches, data loss prevention, data privacy, HIPAA, PCI DSS, sensitive data, sensitive data manager on February 25, 2016 by Douglas Ribback
Introducing Sensitive Data Manager 9.0 Recently we announced Sensitive Data Manager 9.0, our Data Loss Prevention (DLP) solution. In addition to offering the highest accuracy of data discovery and data classification, this release adds powerful, custom data discovery capabilities that reduce the burden on IT Security by allowing organizations to locate their unique sensitive data. Sensitive Data Manager 9.0 increases automation of classification and DLP security controls, reaching deep into cloud environments to further data minimization… Continue reading This entry was posted in Classification, Data Security, DLP, Sensitive Data Engine, Sensitive Data Manager, Video and tagged data loss prevention, organizationally unique sensitive data, sensitive data, sensitive data manager, Todd Feinman on February 9, 2016 by Douglas Ribback
Forrester Report: Understand The State Of Data Security And Privacy: 2015 To 2016 Forrester recently released an insightful report Understand The State Of Data Security And Privacy: 2015 To 2016, based on hundreds of discussions with security experts. The in-depth research of the data security industry highlights which core data security technologies are in demand for 2016 and how our behaviors and motivations make data loss inevitable. It also covers why safeguarding the customer experience is essential for building trust, and why a… Continue reading This entry was posted in Breaches, Classification, consumer privacy, data breach, Data privacy, Data Security, DLP, Regulation and tagged classification, data breach, data privacy, forrester, PII, privacy, sensitive data on February 4, 2016 by Douglas Ribback
Ten Steps to an Effective Data Protection Program An effective data protection program minimizes your sensitive data footprint and helps keep business-critical and regulated data secure and out of the hands of attackers. The best way to develop and maintain such a program is to think of it as a process, not a project. Here are ten steps to help you put your process in place. Adopt a logical approach to data protection First, make sure minimum security… Continue reading This entry was posted in Breaches, Classification, data breach, Data Security, DLP, PCI-DSS, Regulation, risk management, sensitive data management and tagged classification, Compliance, data protection, Data Security, sensitive data data classification on January 28, 2016 by Douglas Ribback
How Are You Locating Your Organization’s Unique Sensitive Data? Locating credit cards, personally identifiable information such as SSNs and drivers licenses is a staple of our AnyFind® technology. AnyFind narrows the likelihood of a positive match and eliminates false positives through a series of validations while looking for those discrete pieces of data the way a human would. For example, when looking for a Social Security number, if you simply look for a 9-digit number you get a lot… Continue reading This entry was posted in Classification, data breach, Data Security, DLP, risk management, Sensitive Data Engine, sensitive data management, Sensitive Data Manager and tagged AnyFind, Data Classification, data loss prevention, discovery, infographic, organizationally unique sensitive data, sensitive data, sensitive data engine, sensitive data manager on January 26, 2016 by Gabriel Gumbs
