SlideShare a Scribd company logo

Data security in a big data environment sweden

IBM Sverige, profile picture
IBM Sverige

This document discusses data security challenges in big data environments. It notes that data breaches are common and costly for organizations. Several examples of recent breaches are provided that impacted companies like Target, a Canadian government agency, and healthcare providers. The document advocates for the IBM Guardium suite of data security products to help secure sensitive data across different systems and platforms through discovery, monitoring, masking, encryption and other techniques. It argues these tools are needed to reduce risks, costs, and protect brand reputation for organizations working with big data.

Data & AnalyticsTechnology
1 of 19
Downloaded 39 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
© 2014 IBM Corporation Data Security in a Big Data Environment David Valovcin Worldwide Guardium dvalovcin@us.ibm.com May 2014
2 © 2014 IBM Corporation Data Breaches are in the News Every Week A “Fear Factor” is causing some orgs to hold back on new mobile, cloud, and big data initiatives Data-breach costs take toll on Target profit … its profit in the fourth quarter fell 46 percent on a revenue decline of 5.3 percent as the breach scared off customers worried about the security of their private data. Account Takeover: Bank Faces Two Suits Health Breach Tally: 30 Million Victims More than 30.6 million individuals have been affected by major healthcare data breaches since September 2009 Canadian Breach: Sorting Out the Cause Gaps in carrying out security policies led to the exposure of 583,000 records last year at Employment and Social Development Canada,totaling $1.5 million in allegedly fraudulent wires
3 © 2014 IBM Corporation Target – first the CIO, now the CEO fired
4 © 2014 IBM Corporation Data Breaches Happen Close to Home
5 © 2014 IBM Corporation Not Only For Financial Gain
6 © 2014 IBM Corporationhttp://www.verizonbusiness.com/resources/reports/rp_data-breach-investigations-report-2012_en_xg.pdf?CMP=DMC-SMB_Z_ZZ_ZZ_Z_TV_N_Z038 Time span of events by percent of breaches Guardium Discovery Guardium DAM Guardium VA Guardium DAM Adv. (block/mask) Guardium Encryption Minutes To Compromise, Months To Discover & Remediate Time span of events by percent of breaches
7 © 2014 IBM Corporation Can  you  prove  that   privileged  users  have   not  inappropriately   accessed  or   jeopardized  the   integrity  of  your   sensi7ve  Big  Data?  
8 © 2014 IBM Corporation Sensitive Data Is at Risk 70% of organizations surveyed use live customer data in non-production environments (testing, Q/A, development) Database Trends and Applications. Ensuring Protection for Sensitive Test Data The Ponemon Institute. The Insecurity of Test Data: The Unseen Crisis 52% of surveyed organizations outsource development 50% of organizations surveyed have no way of knowing if data used in test was compromised The Ponemon Institute. The Insecurity of Test Data: The Unseen Crisis $188 per record cost of a data breach The Ponemon Institute. 2013 Cost of Data Beach Study $5.4M Average cost of a data breach $3M cost of losing customer loyalty (lost business) following a data breach The True Cost of Compliance, The Cost of a Data Breach, Ponemon Institute, 2011 The Ponemon Institute. 2013 Cost of Data Beach Study 62% of organizations surveyed are not tracking their privileged users IBM CISO SUrvey 2012 Data Breach Report from Verizon Business RISK Team 90+% Breaches go after data in servers
9 © 2014 IBM Corporation $3.5MYearly average cost of compliance Company Data Security approach Audit events/ year Average cost/ audit Data loss events/year Average cost/ data loss Total cost (adjusted per TB) w/o data security 6.3 $24K 2.3 $130K $449K/TB w/ data security 1.7 1.4 $223K/TB Annual Cost of not implementing data security $226K/TB Total annual cost of doing nothing in BIG DATA compliance: (for average Big Data organization with 180 TB of business data) $40+ M Source: Aberdeen Group. Why Information Governance Must be Addressed Right Now. 2012 Doing Nothing Is Expensive Source: The True Cost of Compliance, The Cost of a Data Breach, Ponemon Institute, 2011 $5.4MAverage cost of a data breach
10 © 2014 IBM Corporation A Key Driver: Maintaining Brand Reputation • 66%of US Adults would not return to a business if personal data was stolen • 76%of Survey respondents indicated that a data breach had a moderate to significant impact on their business • $184M - $330Mbrand value lost each victim of a data breach
11 © 2014 IBM Corporation Big Data Toolset: what is missing? §  Authentication –  Interface –  Interprocess §  Authorization –  Coarse –  Fine grained –  Role based §  Encryption –  Interprocess –  At-rest –  Real-time §  Privacy protection –  At rest –  Real-time §  Auditing §  Monitoring §  Governance –  Discovery –  Entitlements
12 © 2014 IBM Corporation IBM InfoSphere Data Security and Privacy Solutions InfoSphere Data Privacy for Hadoop InfoSphere Data Privacy and Security for Data Warehousing Exadata InfoSphere Data Security and Privacy Define and Share Discover and Classify Mask and Redact Monitor Data Activity Purpose-Built Capabilities • Secure and Protect Sensitive big data • Extend Compliance Controls • Promote Information Sharing • Employ across diverse environments • Achieve and enforce compliance • Secure and Protect sensitive data in data warehouses • Reduce costs of attaining enterprise security
13 © 2014 IBM Corporation Applying IBM’s Data Security Approach to Big Data SOURCE SYSTEMS, DATA MARTS, SILOS BIG DATA PLATFORM USER ACCESS REQUESTS 3) Mitigating Risks with Data Protection 1) Understanding the Risks 2) Uncovering the Exposure 4) Maintaining a Tolerant Risk Level 5) Expansion to the Enterprise 1 2 3 4 5
14 © 2014 IBM Corporation Where is the sensitive data? How to prevent unauthorized activities? How to protect sensitive data to reduce risk? How to secure the repository? Discovery Classification Identity & Access Management Activity Monitoring Blocking Quarantine Masking/ EncryptionAssessment Who should have access? What is actually happening? Discover   Harden   Mask   Monitor   Block   Security     Policies   Dormant     En9tlements   Dormant  Data   Compliance  Repor9ng   &   Security  Alerts   Data  Protec9on   &   Enforcement   Key Questions . . .
15 © 2014 IBM Corporation Discovery Classification Identity & Access Management Activity Monitoring Blocking Quarantine Masking/ EncryptionAssessment Discover   Harden   Mask   Monitor   Block   Guardium VA ü Assessment  reports   ü Subscrip7on   ü Configura7on  Changes   ü En7tlement  Repor7ng   Guardium Standard   ü   Discovery  &    Classifica7on   ü   Queries  &  Reports   ü   Compliance  Workflow   ü   Group  Management   ü   Integra7ons   ü   Incident  Management   ü   Self  Monitoring   Guardium Data Redaction ü   Redact  sensi7ve  documents   Optim Data Privacy ü   Mask  sensi7ve  data   in  test,  publishing  in   databases  and  Big  Data   environments   Guardium DAM ü Ac7vity  Monitoring   ü Real-­‐7me  alerts   ü Compliance  Repor7ng   ü   Blocking   ü   Dynamic  Masking   ü   Users  Quaran7ne     ü Federate  large  deployment   ü Central  control   ü Central  audit  collec7on   Guardium Data Encryption ü File-­‐level  encryp7on   ü Policy-­‐based  Access   control   IBM Can Help With the Answers Guardium DAM ü Ac7vity  Monitoring   ü Real-­‐7me  alerts   ü Compliance  Repor7ng   ü   Blocking   ü   Dynamic  Masking   ü   Users  Quaran7ne     ü Federate  large  deployment   ü Central  control   ü Central  audit  collec7on   InfoSphere Data Privacy and Security for Hadoop
16 © 2014 IBM Corporation InfoSphere BigInsights DATABASES FTP ExadataDATABASE HANA Optim Archival Siebel, PeopleSoft, E-Business Master Data Management Data Stage CIC S One Technology to Control it All DAM Encryption Masking VA Redaction 1 6
17 © 2014 IBM Corporation Scalable Multi-Tier Architecture Integration with LDAP, IAM, SIEM, IBM TSM, BMC Remedy, …
18 © 2014 IBM Corporation Link to the case study http://public.dhe.ibm.com/ common/ssi/ecm/en/ imc14573usen/ IMC14573USEN.PDF A Private Bank in the UAE automates security compliance reporting in a big data environment Need •  The bank processes several terabytes of data daily and required a solution which addressed the new security risks evolving around the world, especially with respect to protecting big data environments. Benefits •  Achieves ROI in 8 months •  A scalable security monitoring solution that supports diverse database environment and does not impact application performance •  The time required to produce audit and compliance reports has gone from two months to near real-time
19 © 2014 IBM Corporation

More Related Content

PPTX
Presentation ibm info sphere guardium enterprise-wide database protection a...
solarisyougood
 
PDF
IBM InfoSphere Guardium overview
nazeer325
 
PDF
Bridging the Gap Between Your Security Defenses and Critical Data
IBM Security
 
PDF
Guardium Data Activiy Monitor For C- Level Executives
Camilo Fandiño Gómez
 
PPTX
How Vulnerable is Your Critical Data?
IBM Security
 
PDF
IBM Infosphere Guardium - Database Security
ebuc
 
PPTX
Data Driven Security in SSAS
Mike Duffy
 
PPTX
Mobile Payments: Protecting Apps and Data from Emerging Risks
IBM Security
 
Presentation ibm info sphere guardium enterprise-wide database protection a...
solarisyougood
 
IBM InfoSphere Guardium overview
nazeer325
 
Bridging the Gap Between Your Security Defenses and Critical Data
IBM Security
 
Guardium Data Activiy Monitor For C- Level Executives
Camilo Fandiño Gómez
 
How Vulnerable is Your Critical Data?
IBM Security
 
IBM Infosphere Guardium - Database Security
ebuc
 
Data Driven Security in SSAS
Mike Duffy
 
Mobile Payments: Protecting Apps and Data from Emerging Risks
IBM Security
 

What's hot (17)

PDF
IBM Security Guardium Data Activity Monitor (Data Sheet-USEN)
Peter Tutty
 
PPTX
Security Intelligence: Finding and Stopping Attackers with Big Data Analytics
IBM Security
 
PPT
Auditing in the Cloud
tcarrucan
 
PPTX
Don’t Just Trust Cloud Providers - How To Audit Cloud Providers
Michael Davis
 
PPTX
Cloud Audit and Compliance
Quadrisk
 
PPT
Guardium Presentation
tsteh
 
PDF
Database Security, Better Audits, Lower Costs
Imperva
 
PPTX
Cloud security - Auditing and Compliance
Josh Tullo
 
PPTX
Cloud Compliance Auditing - Closer 2011
Jonathan Sinclair
 
PPT
Avoiding data breach using security intelligence and big data to stay out of ...
IBM Security
 
PDF
Securing Your Cloud Applications
IBM Security
 
PDF
Ibm ofa ottawa_ how_secure_is_your_data_eric_offenberg
dawnrk
 
PDF
ISSA: Cloud data security
Ulf Mattsson
 
PDF
Practical advice for cloud data protection ulf mattsson - oracle nyoug sep ...
Ulf Mattsson
 
PDF
Cybersecurity 101 - Auditing Cyber Security
Eryk Budi Pratama
 
PDF
Personal Data Protection in Indonesia
Eryk Budi Pratama
 
PPT
IBM Security Strategy Intelligence,
Information Security Awareness Group
 
IBM Security Guardium Data Activity Monitor (Data Sheet-USEN)
Peter Tutty
 
Security Intelligence: Finding and Stopping Attackers with Big Data Analytics
IBM Security
 
Auditing in the Cloud
tcarrucan
 
Don’t Just Trust Cloud Providers - How To Audit Cloud Providers
Michael Davis
 
Cloud Audit and Compliance
Quadrisk
 
Guardium Presentation
tsteh
 
Database Security, Better Audits, Lower Costs
Imperva
 
Cloud security - Auditing and Compliance
Josh Tullo
 
Cloud Compliance Auditing - Closer 2011
Jonathan Sinclair
 
Avoiding data breach using security intelligence and big data to stay out of ...
IBM Security
 
Securing Your Cloud Applications
IBM Security
 
Ibm ofa ottawa_ how_secure_is_your_data_eric_offenberg
dawnrk
 
ISSA: Cloud data security
Ulf Mattsson
 
Practical advice for cloud data protection ulf mattsson - oracle nyoug sep ...
Ulf Mattsson
 
Cybersecurity 101 - Auditing Cyber Security
Eryk Budi Pratama
 
Personal Data Protection in Indonesia
Eryk Budi Pratama
 
IBM Security Strategy Intelligence,
Information Security Awareness Group
 
Ad

Similar to Data security in a big data environment sweden (20)

PPT
Data security in the cloud
IBM Security
 
PDF
Ibm ofa ottawa_ how_secure_is_your_data_eric_offenberg
dawnrk
 
PPTX
David valovcin big data - big risk
IBM Sverige
 
PDF
Big data contains valuable information - Protect It!
Praveenkumar Hosangadi
 
PDF
IBM's four key steps to security and privacy for big data
IBM Analytics
 
PDF
Bridging the Data Security Gap
xband
 
PDF
Perimeter Security is Failing
UL Transaction Security
 
PPTX
Symantec Data Loss Prevention 9
Ariel Martin Beliera
 
PDF
Why You Need to Govern Big Data
IBM Analytics
 
PPTX
Proven Practices to Protect Critical Data - DarkReading VTS Deck
NetIQ
 
PPTX
BREACHED: Data Centric Security for SAP
UL Transaction Security
 
PDF
The 2016 Ponemon Cost of a Data Breach Study
IBM Security
 
PDF
Threat Ready Data: Protect Data from the Inside and the Outside
DLT Solutions
 
PPTX
Protecting the "Crown Jewels" by Henrik Bodskov, IBM
InfinIT - Innovationsnetværket for it
 
PPT
Securing Your "Crown Jewels": Do You Have What it Takes?
IBM Security
 
PPTX
Data Loss Prevention from Symantec
Arrow ECS UK
 
PPTX
Top 10 tips for effective SOC/NOC collaboration or integration
Sridhar Karnam
 
PPTX
Big data security the perfect storm
Ulf Mattsson
 
PPTX
Data Loss Prevention
Reza Kopaee
 
PPTX
Big Data Security Analytics (BDSA) with Randy Franklin
Sridhar Karnam
 
Data security in the cloud
IBM Security
 
Ibm ofa ottawa_ how_secure_is_your_data_eric_offenberg
dawnrk
 
David valovcin big data - big risk
IBM Sverige
 
Big data contains valuable information - Protect It!
Praveenkumar Hosangadi
 
IBM's four key steps to security and privacy for big data
IBM Analytics
 
Bridging the Data Security Gap
xband
 
Perimeter Security is Failing
UL Transaction Security
 
Symantec Data Loss Prevention 9
Ariel Martin Beliera
 
Why You Need to Govern Big Data
IBM Analytics
 
Proven Practices to Protect Critical Data - DarkReading VTS Deck
NetIQ
 
BREACHED: Data Centric Security for SAP
UL Transaction Security
 
The 2016 Ponemon Cost of a Data Breach Study
IBM Security
 
Threat Ready Data: Protect Data from the Inside and the Outside
DLT Solutions
 
Protecting the "Crown Jewels" by Henrik Bodskov, IBM
InfinIT - Innovationsnetværket for it
 
Securing Your "Crown Jewels": Do You Have What it Takes?
IBM Security
 
Data Loss Prevention from Symantec
Arrow ECS UK
 
Top 10 tips for effective SOC/NOC collaboration or integration
Sridhar Karnam
 
Big data security the perfect storm
Ulf Mattsson
 
Data Loss Prevention
Reza Kopaee
 
Big Data Security Analytics (BDSA) with Randy Franklin
Sridhar Karnam
 
Ad

More from IBM Sverige (20)

PDF
Trender, inspirationer och visioner - Mikael Haglund #ibmbpsse18
IBM Sverige
 
PDF
AI – hur långt har vi kommit? – Oskar Malmström, IBM #ibmbpsse18
IBM Sverige
 
PDF
#ibmbpsse18 - The journey to AI - Mikko Hörkkö, Elinar

IBM Sverige
 
PDF
#ibmbpsse18 - Koppla säkert & redundant till IBM Cloud - Magnus Huss, Interexion
IBM Sverige
 
PDF
#ibmbpsse18 - Den svenska marknaden, Andreas Lundgren, CMO, IBM
IBM Sverige
 
PDF
Multiresursplanering - Karolinska Universitetssjukhuset
IBM Sverige
 
PPTX
Solving Challenges With 'Huge Data'
IBM Sverige
 
PPTX
Blockchain explored
IBM Sverige
 
PPTX
Blockchain architected
IBM Sverige
 
PPTX
Blockchain explained
IBM Sverige
 
PDF
Grow smarter project kista watson summit 2018_tommy auoja-1
IBM Sverige
 
PDF
Bemanningsplanering axfood och houston final
IBM Sverige
 
PDF
Power ai nordics dcm
IBM Sverige
 
PDF
Nvidia and ibm presentation feb18
IBM Sverige
 
PDF
Hwx introduction to_ibm_ai
IBM Sverige
 
PPTX
Ac922 watson 180208 v1
IBM Sverige
 
PDF
Watson kista summit 2018 box
IBM Sverige
 
PDF
Watson kista summit 2018 en bättre arbetsdag för de många människorna
IBM Sverige
 
PDF
Iwcs and cisco watson kista summit 2018 v2
IBM Sverige
 
PDF
Ibm intro (watson summit) bkacke
IBM Sverige
 
Trender, inspirationer och visioner - Mikael Haglund #ibmbpsse18
IBM Sverige
 
AI – hur långt har vi kommit? – Oskar Malmström, IBM #ibmbpsse18
IBM Sverige
 
#ibmbpsse18 - The journey to AI - Mikko Hörkkö, Elinar

IBM Sverige
 
#ibmbpsse18 - Koppla säkert & redundant till IBM Cloud - Magnus Huss, Interexion
IBM Sverige
 
#ibmbpsse18 - Den svenska marknaden, Andreas Lundgren, CMO, IBM
IBM Sverige
 
Multiresursplanering - Karolinska Universitetssjukhuset
IBM Sverige
 
Solving Challenges With 'Huge Data'
IBM Sverige
 
Blockchain explored
IBM Sverige
 
Blockchain architected
IBM Sverige
 
Blockchain explained
IBM Sverige
 
Grow smarter project kista watson summit 2018_tommy auoja-1
IBM Sverige
 
Bemanningsplanering axfood och houston final
IBM Sverige
 
Power ai nordics dcm
IBM Sverige
 
Nvidia and ibm presentation feb18
IBM Sverige
 
Hwx introduction to_ibm_ai
IBM Sverige
 
Ac922 watson 180208 v1
IBM Sverige
 
Watson kista summit 2018 box
IBM Sverige
 
Watson kista summit 2018 en bättre arbetsdag för de många människorna
IBM Sverige
 
Iwcs and cisco watson kista summit 2018 v2
IBM Sverige
 
Ibm intro (watson summit) bkacke
IBM Sverige
 

Recently uploaded (20)

PPT
Miokarditis (Inflamasi pada Otot Jantung)
NandaAndini1
 
PDF
“Getting Started with Data Analytics Using R – Concepts, Tools & Case Studies”
Nusrat Gulbarga
 
PDF
Clinical guidelines as a resource for EBP(1).pdf
MashalKhan626345
 
PPT
Reliability_Chapter_ presentation 1221.5784
abobaker13
 
PPTX
1_Introduction to advance data techniques.pptx
AshutoshDeshmukh33
 
PPTX
DISORDERS OF THE LIVER, GALLBLADDER AND PANCREASE (1).pptx
chepkoitcheruiyot
 
PPTX
Data_Analytics_and_PowerBI_Presentation.pptx
ZubyrAhmed
 
PPTX
Introduction to Knowledge Engineering Part 1
busyprogrammersguide
 
PPTX
Database Infoormation System (DBIS).pptx
TefferiMekonnen2
 
PPTX
IBA_Chapter_11_Slides_Final_Accessible.pptx
SrikantKapoor1
 
PPTX
The THESIS FINAL-DEFENSE-PRESENTATION.pptx
hshakobe3
 
PPTX
Business Ppt On Nestle.pptx huunnnhhgfvu
ashaurya327
 
PDF
Fluorescence-microscope_Botany_detailed content
dollydoll12
 
PPT
Quality review (1)_presentation of this 21
abobaker13
 
PPTX
advance b rammar.pptxfdgdfgdfsgdfgsdgfdfgdfgsdfgdfgdfg
rohullahansari5
 
PPTX
STUDY DESIGN details- Lt Col Maksud (21).pptx
AyeshaAsha11
 
PPTX
Major-Components-ofNKJNNKNKNKNKronment.pptx
dushyantsharma1221
 
PDF
Lecture1 pattern recognition............
ZafriFarid
 
PDF
Galatica Smart Energy Infrastructure Startup Pitch Deck
Shahzaib Ajmal
 
PDF
Launch Your Data Science Career in Kochi – 2025
sharafas2563
 
Miokarditis (Inflamasi pada Otot Jantung)
NandaAndini1
 
“Getting Started with Data Analytics Using R – Concepts, Tools & Case Studies”
Nusrat Gulbarga
 
Clinical guidelines as a resource for EBP(1).pdf
MashalKhan626345
 
Reliability_Chapter_ presentation 1221.5784
abobaker13
 
1_Introduction to advance data techniques.pptx
AshutoshDeshmukh33
 
DISORDERS OF THE LIVER, GALLBLADDER AND PANCREASE (1).pptx
chepkoitcheruiyot
 
Data_Analytics_and_PowerBI_Presentation.pptx
ZubyrAhmed
 
Introduction to Knowledge Engineering Part 1
busyprogrammersguide
 
Database Infoormation System (DBIS).pptx
TefferiMekonnen2
 
IBA_Chapter_11_Slides_Final_Accessible.pptx
SrikantKapoor1
 
The THESIS FINAL-DEFENSE-PRESENTATION.pptx
hshakobe3
 
Business Ppt On Nestle.pptx huunnnhhgfvu
ashaurya327
 
Fluorescence-microscope_Botany_detailed content
dollydoll12
 
Quality review (1)_presentation of this 21
abobaker13
 
advance b rammar.pptxfdgdfgdfsgdfgsdgfdfgdfgsdfgdfgdfg
rohullahansari5
 
STUDY DESIGN details- Lt Col Maksud (21).pptx
AyeshaAsha11
 
Major-Components-ofNKJNNKNKNKNKronment.pptx
dushyantsharma1221
 
Lecture1 pattern recognition............
ZafriFarid
 
Galatica Smart Energy Infrastructure Startup Pitch Deck
Shahzaib Ajmal
 
Launch Your Data Science Career in Kochi – 2025
sharafas2563
 

Data security in a big data environment sweden

  • 1. © 2014 IBM Corporation Data Security in a Big Data Environment David Valovcin Worldwide Guardium dvalovcin@us.ibm.com May 2014
  • 2. 2 © 2014 IBM Corporation Data Breaches are in the News Every Week A “Fear Factor” is causing some orgs to hold back on new mobile, cloud, and big data initiatives Data-breach costs take toll on Target profit … its profit in the fourth quarter fell 46 percent on a revenue decline of 5.3 percent as the breach scared off customers worried about the security of their private data. Account Takeover: Bank Faces Two Suits Health Breach Tally: 30 Million Victims More than 30.6 million individuals have been affected by major healthcare data breaches since September 2009 Canadian Breach: Sorting Out the Cause Gaps in carrying out security policies led to the exposure of 583,000 records last year at Employment and Social Development Canada,totaling $1.5 million in allegedly fraudulent wires
  • 3. 3 © 2014 IBM Corporation Target – first the CIO, now the CEO fired
  • 4. 4 © 2014 IBM Corporation Data Breaches Happen Close to Home
  • 5. 5 © 2014 IBM Corporation Not Only For Financial Gain
  • 6. 6 © 2014 IBM Corporationhttp://www.verizonbusiness.com/resources/reports/rp_data-breach-investigations-report-2012_en_xg.pdf?CMP=DMC-SMB_Z_ZZ_ZZ_Z_TV_N_Z038 Time span of events by percent of breaches Guardium Discovery Guardium DAM Guardium VA Guardium DAM Adv. (block/mask) Guardium Encryption Minutes To Compromise, Months To Discover & Remediate Time span of events by percent of breaches
  • 7. 7 © 2014 IBM Corporation Can  you  prove  that   privileged  users  have   not  inappropriately   accessed  or   jeopardized  the   integrity  of  your   sensi7ve  Big  Data?  
  • 8. 8 © 2014 IBM Corporation Sensitive Data Is at Risk 70% of organizations surveyed use live customer data in non-production environments (testing, Q/A, development) Database Trends and Applications. Ensuring Protection for Sensitive Test Data The Ponemon Institute. The Insecurity of Test Data: The Unseen Crisis 52% of surveyed organizations outsource development 50% of organizations surveyed have no way of knowing if data used in test was compromised The Ponemon Institute. The Insecurity of Test Data: The Unseen Crisis $188 per record cost of a data breach The Ponemon Institute. 2013 Cost of Data Beach Study $5.4M Average cost of a data breach $3M cost of losing customer loyalty (lost business) following a data breach The True Cost of Compliance, The Cost of a Data Breach, Ponemon Institute, 2011 The Ponemon Institute. 2013 Cost of Data Beach Study 62% of organizations surveyed are not tracking their privileged users IBM CISO SUrvey 2012 Data Breach Report from Verizon Business RISK Team 90+% Breaches go after data in servers
  • 9. 9 © 2014 IBM Corporation $3.5MYearly average cost of compliance Company Data Security approach Audit events/ year Average cost/ audit Data loss events/year Average cost/ data loss Total cost (adjusted per TB) w/o data security 6.3 $24K 2.3 $130K $449K/TB w/ data security 1.7 1.4 $223K/TB Annual Cost of not implementing data security $226K/TB Total annual cost of doing nothing in BIG DATA compliance: (for average Big Data organization with 180 TB of business data) $40+ M Source: Aberdeen Group. Why Information Governance Must be Addressed Right Now. 2012 Doing Nothing Is Expensive Source: The True Cost of Compliance, The Cost of a Data Breach, Ponemon Institute, 2011 $5.4MAverage cost of a data breach
  • 10. 10 © 2014 IBM Corporation A Key Driver: Maintaining Brand Reputation • 66%of US Adults would not return to a business if personal data was stolen • 76%of Survey respondents indicated that a data breach had a moderate to significant impact on their business • $184M - $330Mbrand value lost each victim of a data breach
  • 11. 11 © 2014 IBM Corporation Big Data Toolset: what is missing? §  Authentication –  Interface –  Interprocess §  Authorization –  Coarse –  Fine grained –  Role based §  Encryption –  Interprocess –  At-rest –  Real-time §  Privacy protection –  At rest –  Real-time §  Auditing §  Monitoring §  Governance –  Discovery –  Entitlements
  • 12. 12 © 2014 IBM Corporation IBM InfoSphere Data Security and Privacy Solutions InfoSphere Data Privacy for Hadoop InfoSphere Data Privacy and Security for Data Warehousing Exadata InfoSphere Data Security and Privacy Define and Share Discover and Classify Mask and Redact Monitor Data Activity Purpose-Built Capabilities • Secure and Protect Sensitive big data • Extend Compliance Controls • Promote Information Sharing • Employ across diverse environments • Achieve and enforce compliance • Secure and Protect sensitive data in data warehouses • Reduce costs of attaining enterprise security
  • 13. 13 © 2014 IBM Corporation Applying IBM’s Data Security Approach to Big Data SOURCE SYSTEMS, DATA MARTS, SILOS BIG DATA PLATFORM USER ACCESS REQUESTS 3) Mitigating Risks with Data Protection 1) Understanding the Risks 2) Uncovering the Exposure 4) Maintaining a Tolerant Risk Level 5) Expansion to the Enterprise 1 2 3 4 5
  • 14. 14 © 2014 IBM Corporation Where is the sensitive data? How to prevent unauthorized activities? How to protect sensitive data to reduce risk? How to secure the repository? Discovery Classification Identity & Access Management Activity Monitoring Blocking Quarantine Masking/ EncryptionAssessment Who should have access? What is actually happening? Discover   Harden   Mask   Monitor   Block   Security     Policies   Dormant     En9tlements   Dormant  Data   Compliance  Repor9ng   &   Security  Alerts   Data  Protec9on   &   Enforcement   Key Questions . . .
  • 15. 15 © 2014 IBM Corporation Discovery Classification Identity & Access Management Activity Monitoring Blocking Quarantine Masking/ EncryptionAssessment Discover   Harden   Mask   Monitor   Block   Guardium VA ü Assessment  reports   ü Subscrip7on   ü Configura7on  Changes   ü En7tlement  Repor7ng   Guardium Standard   ü   Discovery  &    Classifica7on   ü   Queries  &  Reports   ü   Compliance  Workflow   ü   Group  Management   ü   Integra7ons   ü   Incident  Management   ü   Self  Monitoring   Guardium Data Redaction ü   Redact  sensi7ve  documents   Optim Data Privacy ü   Mask  sensi7ve  data   in  test,  publishing  in   databases  and  Big  Data   environments   Guardium DAM ü Ac7vity  Monitoring   ü Real-­‐7me  alerts   ü Compliance  Repor7ng   ü   Blocking   ü   Dynamic  Masking   ü   Users  Quaran7ne     ü Federate  large  deployment   ü Central  control   ü Central  audit  collec7on   Guardium Data Encryption ü File-­‐level  encryp7on   ü Policy-­‐based  Access   control   IBM Can Help With the Answers Guardium DAM ü Ac7vity  Monitoring   ü Real-­‐7me  alerts   ü Compliance  Repor7ng   ü   Blocking   ü   Dynamic  Masking   ü   Users  Quaran7ne     ü Federate  large  deployment   ü Central  control   ü Central  audit  collec7on   InfoSphere Data Privacy and Security for Hadoop
  • 16. 16 © 2014 IBM Corporation InfoSphere BigInsights DATABASES FTP ExadataDATABASE HANA Optim Archival Siebel, PeopleSoft, E-Business Master Data Management Data Stage CIC S One Technology to Control it All DAM Encryption Masking VA Redaction 1 6
  • 17. 17 © 2014 IBM Corporation Scalable Multi-Tier Architecture Integration with LDAP, IAM, SIEM, IBM TSM, BMC Remedy, …
  • 18. 18 © 2014 IBM Corporation Link to the case study http://public.dhe.ibm.com/ common/ssi/ecm/en/ imc14573usen/ IMC14573USEN.PDF A Private Bank in the UAE automates security compliance reporting in a big data environment Need •  The bank processes several terabytes of data daily and required a solution which addressed the new security risks evolving around the world, especially with respect to protecting big data environments. Benefits •  Achieves ROI in 8 months •  A scalable security monitoring solution that supports diverse database environment and does not impact application performance •  The time required to produce audit and compliance reports has gone from two months to near real-time
  • 19. 19 © 2014 IBM Corporation