According to the latest Netwrix report, concerns around data security have been encouraging 46% of organizations to move their personally identifiable information (PII) back on premises, from the cloud.
The 2019 Netwrix Cloud Data Security Report released feedback from 749 organizations on their use of private and public cloud services to store their data.
Interestingly, 50% of the respondents store customer and employee PII in the cloud, but they are less inclined to store financial data and intellectual property in the cloud, at only 26% and 16%, respectively. Of those who store customer PII in the cloud and do not classify their data, 75% experienced a security incident. That rate is 3.5 times higher than organizations that do classify their data in the cloud.
According to the report, the largest motivators for moving to the cloud was cost savings (at 31% of organizations). Performing data discovery and data classification allowed organizations to adhere more closely with their cloud budgets. While 81% of organizations that classify data met their cloud budgets, 73% of those who claim to overpay for cloud services do not classify the data they store in the cloud.
Steve Dickson, CEO of Netwrix stated, “The report revealed that organizations are misled by the idea that moving customer data back on premises will ensure data security. In reality, without a data security program in place, these organizations are playing a simple ‘shell game.’ Organizations need to inventory their data to ensure they know where all the customer data resides, migrate it to a secure location and implement an auditing solution to ensure only the right people have access to the right data.”
Strong data classification allows organizations to appropriately protect data, relative to its sensitivity. No organization wants to be spending resources over-protecting data that does not require it, and they certainly do not want to get caught under-protecting data that does require it. Classification plays a vital role in the governance necessary for strong data security – whether it’s in the cloud or on premises.
By classifying data before moving to the cloud, organizations have the option of keeping sensitive data on premises (possibly reducing its risk of exposure) and identifying redundant, obsolete, or trivial data that is not worth moving to the cloud – thus reducing costs.
Organizations don’t need to move away from the cloud for stronger security. Rather, to achieve better cloud security and cost savings, it is crucial to understand what types of data they have in the cloud and how to properly protect it.
Data intelligence software vendor Alation has made the move to emphasize data governance amongst its solution offerings to make the data catalog a dynamic platform for “a broad range of data intelligence solutions.”
IT software company HelpSystems has acquired leading data classification software vendors Titus and Boldon James to enhance data security capabilities within its current suite of IT systems.
Orchestra Networks was earning attention even before TIBCO’s acquisition. Now that it is part of the TIBCO family of software products, it can become the centerpiece of a very powerful data management, governance, integration, and analytics platform.
A prevalent urban legend in enterprise tech is that DevOps and Agile are not ready for tackling transformation at scale. At Info-Tech Research Group, we believe it’s the other way around. DevOps practices like CI/CD are being used by digital banking startups for fintech products. They are leveraging cloud services for demand management and capacity planning but what about the “too big to fail” banks, with global outreach and massive investments in legacy tech?
Databricks, a data processing and analytics platform with a strong focus on AI and ML, has partnered with Immuta to deliver automated end-to-end data governance for AI, data science, and ML projects.
Microsoft’s Ignite conference speaks to enterprise developers and IT teams, and this year’s event is making waves with a slew of new product announcements aimed squarely at a host of its competitors. Microsoft continues its multi-year evolution from a company full of disparate products and services to a true platform-oriented provider, seeking to liberate data silos across service lines and vendors and to enable Microsoft solutions to be deployed in non-Microsoft environments.