Presentation is loading. Please wait.

Presentation is loading. Please wait.

Bring Your Own Service The Effects of Cloud Services on Compliance and Data Protection © 2012 Varonis Systems. Proprietary and confidential.

Published byJosef Cogdill Modified over 10 years ago

Similar presentations

Presentation on theme: "Bring Your Own Service The Effects of Cloud Services on Compliance and Data Protection © 2012 Varonis Systems. Proprietary and confidential."— Presentation transcript:

1 Bring Your Own Service The Effects of Cloud Services on Compliance and Data Protection © 2012 Varonis Systems. Proprietary and confidential.

2 Cloud Explosion Public cloud file sharing has exploded As of November 2012, Dropbox claimed to have 100,000,000 customers Page 2 © 2012 Varonis Systems. Proprietary and confidential.

3 Hey boss, can I use Dropbox? Page 3 © 2012 Varonis Systems. Proprietary and confidential.

4 Why not? Risk Control Complexity Page 4 © 2012 Varonis Systems. Proprietary and confidential.

5 Too bad! We’re doing it anyway 1 in 5 Employees use Dropbox for work! Page 5 © 2012 Varonis Systems. Proprietary and confidential. Source: Nasuni http://www6.nasuni.com/shadow-it-2012.htmlhttp://www6.nasuni.com/shadow-it-2012.html

6 What can we do about it? Given what end-users want: Simplicity Accessibility Mobile support And what organizations need: Control Compliance Security Page 6 © 2012 Varonis Systems. Proprietary and confidential.

7 Page 7 © 2012 Varonis Systems. Proprietary and confidential. What are the options?

8 Every business is different Page 8 © 2012 Varonis Systems. Proprietary and confidential.

9 Page 9 © 2012 Varonis Systems. Proprietary and confidential. To the cloud!

10 Are you prepared? Page 10 © 2012 Varonis Systems. Proprietary and confidential.

11 How does this affect data protection? You’re still responsible according to the Information Commissioner’s Office (ICO) Unless you are getting rid of all internally stored data, you’ll need to extend your controls and processes: Backup & recovery Entitlement reviews Classification Retention Access auditing Change control Page 11 © 2012 Varonis Systems. Proprietary and confidential.

12 What about compliance? Will vary by country Regulations can be complicated: EU – 1995 Data Protection Directive (DPD) provides framework for separate laws in EU member nations − In 2012, EU introduced a revision to DPD to make laws more uniform – e.g., personal data identifiers vary by nation – and placed under single authority. US – Personal data protection spread across different agencies (SEC, FTC, & HHS) and based on different legislation. Some key ones: − HIPAA, FCRA (Fair Credit Report Act), Gramm-Leach- Bliley, COPPA, Sarbanes-Oxley. Page 12 © 2012 Varonis Systems. Proprietary and confidential.

13 Key strategic decisions Which data are we moving? All, some, most? How do we select the data we’re going to move? Do we keep a duplicate copy inhouse? If so, which is the master copy? How do internal users synchronize with external users? How do we get the data back out of the cloud? How do we ensure compliance if we can’t monitor access? Page 13 © 2012 Varonis Systems. Proprietary and confidential.

14 5 phase process to ensure cloud readiness Enable Audit Trail Inventory Permissions Profile Data Use & Authorization Structure Classify and Tag Sensitive, High Profile Data Identify Critical Data Global Access Groups Excessive Group Membership Reduce Excess Access Perform Entitlement Reviews Formalize and Enforce Existing Processes Identify Key Users & Owners Authorization Recertification Handling Policies for Sensitive Data Define & Implement DG Policies © 2012 Varonis Systems. Proprietary and confidential. Page 14 Risk

15 Page 15 © 2012 Varonis Systems. Proprietary and confidential. Extend your existing infrastructure

16 69% want to keep data inhouse Page 16 © 2012 Varonis Systems. Proprietary and confidential.

17 Why is that? Page 17 © 2012 Varonis Systems. Proprietary and confidential.

18 What to look for in a solution Do I have to move my data? Can I use my existing Active Directory users/groups? Do I have to re-permission data? Can I quickly identify who has access to what? Can I monitor and audit who is touching data? Can I detect when sensitive data is being synchronized? Can I safely make changes to permissions Page 18 © 2012 Varonis Systems. Proprietary and confidential.

19 Varonis DatAnywhere Provide cloud usability using only existing infrastructure: There’s a folder You put stuff in it It syncs… With your existing storage (NAS, file servers, SharePoint) Using Active Directory credentials Using your existing file system permissions Page 19 © 2012 Varonis Systems. Proprietary and confidential.

20 Step 1: Login Login with your domain credentials (Active Directory) and/or multi-factor authentication Page 20 © 2012 Varonis Systems. Proprietary and confidential.

21 Step 2: Collaborate Your sync’d folders appear in explorer Changes sync to your CIFS servers © 2012 Varonis Systems. Proprietary and confidential.

22 See Sync Speeds and Notifications Page 22 © 2012 Varonis Systems. Proprietary and confidential.

23 Mobile Apps Page 23 © 2012 Varonis Systems. Proprietary and confidential.

24 Right click for instant Extra-net Page 24 © 2012 Varonis Systems. Proprietary and confidential.

25 Secure Collaboration with 3 rd Parties Set Permissions and Expiration dates Share with partners, customers, vendors, and clients Page 25 © 2012 Varonis Systems. Proprietary and confidential.

26 Integrates with Data Governance Suite Use DatAdvantage to manage permissions Use DataPrivilege to automate authorization DatAnywhere activity is recorded by DatAdvantage Page 26 © 2012 Varonis Systems. Proprietary and confidential.

27 Governance Suite – Real World Example: Data owners can review DatAnywhere activity just as they would for any normal file share. Page 27 © 2012 Varonis Systems. Proprietary and confidential.

28 Windows Mac Smart Phone Tablet DatAnywhere Client DatAnywhere Client DN Edge server DN Edge server Sync Manager Sync Worker DN Edge server DN Edge server Client authorization DatAnywhere Architecture Windows File Systems UNIX/ Linux UNIX/ Linux NAS MS Active Directory Sync Manager CIFS/NFS HTTPS

29 Sample Deployment Page 29 © 2012 Varonis Systems. Proprietary and confidential.

30 Summary Cloud-style sharing and BYOD may be inevitable Organizations must choose a direction before the employees choose one for them Organizations have a choice between moving data to the cloud, or extending their existing infrastructure to provide cloud-style capabilities in-house Whichever direction your organization chooses, governance will be instrumental for secure collaboration Page 30 © 2012 Varonis Systems. Proprietary and confidential.

31 One more thing… Do any of these questions look familiar? Who has and should have access to which folders? What folders does a user/group have access to? Who uses all this data & what are they doing? Who does it belong to? What’s stale? What’s sensitive? And exposed? Are your authorization processes manual? Granting access? Reviewing access? Are retention and migration projects manual? New NAS? New Domain? Cross platform? How do we find the data we’re supposed to move? Delete? Page 31 © 2012 Varonis Systems. Proprietary and confidential.

32 Varonis Solutions for Human Generated Content Page 32 © 2012 Varonis Systems. Proprietary and confidential. Governance, Risk, & Compliance Accessibility & Collaboration Electronic Retention Ensures that only the right people has access to the right data at all times, access is monitored and abuse is flagged Extends existing infrastructure to provide private cloud file synchronization and sharing, while ensuring all data remains within the organization, and existing permissions are enforced. Intelligently automates data disposition, archiving and migration process using the intelligence of the Varonis Metadata Framework DatAdvantage DataPrivilege IDU Classification Framework

33 Page 33 © 2012 Varonis Systems. Proprietary and confidential. Thank you!

Download ppt "Bring Your Own Service The Effects of Cloud Services on Compliance and Data Protection © 2012 Varonis Systems. Proprietary and confidential."

Similar presentations

1. XP 2 * The Web is a collection of files that reside on computers, called Web servers. * Web servers are connected to each other through the Internet.

1. XP 2 * The Web is a collection of files that reside on computers, called Web servers. * Web servers are connected to each other through the Internet.
Chapter 1 The Study of Body Function Image PowerPoint

Chapter 1 The Study of Body Function Image PowerPoint
Membership & Roster Maintenance Officers Training Workshop September 2012 Kevin Shanahan 1.

Membership & Roster Maintenance Officers Training Workshop September 2012 Kevin Shanahan 1.
UNITED NATIONS Shipment Details Report – January 2006.

UNITED NATIONS Shipment Details Report – January 2006.
18 Copyright © 2005, Oracle. All rights reserved. Distributing Modular Applications: Introduction to Web Services.

18 Copyright © 2005, Oracle. All rights reserved. Distributing Modular Applications: Introduction to Web Services.
Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13

Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13
Exit a Customer Chapter 8. Exit a Customer 8-2 Objectives Perform exit summary process consisting of the following steps: Review service records Close.

Exit a Customer Chapter 8. Exit a Customer 8-2 Objectives Perform exit summary process consisting of the following steps: Review service records Close.
Multiplying binomials You will have 20 seconds to answer each of the following multiplication problems. If you get hung up, go to the next problem when.

Multiplying binomials You will have 20 seconds to answer each of the following multiplication problems. If you get hung up, go to the next problem when.
FACTORING ax2 + bx + c Think “unfoil” Work down, Show all steps.

FACTORING ax2 + bx + c Think “unfoil” Work down, Show all steps.
Year 6 mental test 10 second questions

Year 6 mental test 10 second questions
Proud Members of the Consulting Group, LLC

Proud Members of the Consulting Group, LLC
DCT Retail Mode for Live Demo

DCT Retail Mode for Live Demo
Richmond House, Liverpool (1) 26 th January 2004.

Richmond House, Liverpool (1) 26 th January 2004.
© SafeNet Confidential and Proprietary Administering SafeNet StorageSecure Smart Card Module 3: Lesson 5 SafeNet StorageSecure Storage Security Course.

© SafeNet Confidential and Proprietary Administering SafeNet StorageSecure Smart Card Module 3: Lesson 5 SafeNet StorageSecure Storage Security Course.
1 CIFTlab1.2 Software for Clinical Diagnostic Laboratories 1.

1 CIFTlab1.2 Software for Clinical Diagnostic Laboratories 1.
Customer Experience Solutions. Delivered. 1 BANK 2.0 Making Banks Successful in the Era of Engagement Banking.

Customer Experience Solutions. Delivered. 1 BANK 2.0 Making Banks Successful in the Era of Engagement Banking.
Virtualization & Disaster Recovery

Virtualization & Disaster Recovery
1 The phone in the cloud Utilizing resources hosted anywhere Claes Nilsson.

1 The phone in the cloud Utilizing resources hosted anywhere Claes Nilsson.
November 14, 2012 Securely Manage your devices, applications and data. Deploy your corporate policies on smart devices. Comply with Regulatory Laws. Detroit.

November 14, 2012 Securely Manage your devices, applications and data. Deploy your corporate policies on smart devices. Comply with Regulatory Laws. Detroit.
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential. Mobile Content Strategies and Deployment Best Practices.

Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential. Mobile Content Strategies and Deployment Best Practices.

Similar presentations

Ads by Google