Market Trends: Extending On-Prem Data Access Governance to the Cloud

Market Trends: Extending On-Prem Data Access Governance to the Cloud

Access governance ‘in the cloud’ can be no different than access governance in general. For most organizations, at minimum, the same levels of controls will be required that were in force before the service was transitioned to a cloud-based offering. Adoption of Office 365, Dropbox and similar cloud services requires translating access governance concepts such as managing and reviewing access, monitoring activity, understanding where sensitive data is stored to those cloud-based services. The key to this will be treating the cloud as an extension of the enterprise so that consistent processes can be applied independent of where data is located. Identity is the other key requirement, but this is less of a challenge as federation or synchronization of enterprise identities with cloud-based applications is a pre-requisite for any enterprise adoption. Extending from the enterprise outwards allows for a gradual transition to a target state that is partly or fully satisfied by cloud-based services. Deploying standalone solutions for cloud services and trying to integrate these with existing processes and tooling will likely be a step too far for most organizations in terms of cost and complexity.

Don’t miss a post! Subscribe to The Insider Threat Security Blog here:

Leave a Reply

Your email address will not be published. Required fields are marked *

*

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Start a Free StealthAUDIT® Trial!

No risk. No obligation.