Data Platform Governance and Security.pdf
hailpam
29 views
12 slides
Jun 10, 2024
Slide 1 of 12
1
2
3
4
5
6
7
8
9
10
11
12
About This Presentation
Regulatory environment, controls and effective Governance
Slide Content
DATA PLATFORM GOVERNANCE
AND SECURITY
Regulatory Environment, controls and effective Governance
Paolo Maresca, June 7th202 at Data in Manufacturing and Smart Industry Summit DACH
AND SECURITY
Regulatory Environment, controls and effective Governance
Paolo Maresca, June 7th202 at Data in Manufacturing and Smart Industry Summit DACH
1. DATA GOVERNANCE VS DATA PLATFORM GOVERNANCE
2.DATA EXPLOITATION AND REGULATIONS
3. DATA PLATFORM GOVERNANCE AND SECURITY IN A SHIFTING LANDSCAPE
4. THE DATA-DRIVEN BUSINESS: BALANCING BUSINESS AND REWARDS
5. DATA GOVERNANCE: BEYOND THE DATA
6. EFFECTIVE DATA PLATFORM GOVERNANCE CONTROLS
7. THE EVOLVING CYBERSECURITY LANDSCAPE WITH AI
9. PRIORITIZING CYBERSECURITY RISKS IN A DATA-DRIVEN WORLD
10. BEYOND THE DATA: THE POWER OF TECHNOLOGY GOVERNANCE
Agenda for today
2.DATA EXPLOITATION AND REGULATIONS
3. DATA PLATFORM GOVERNANCE AND SECURITY IN A SHIFTING LANDSCAPE
4. THE DATA-DRIVEN BUSINESS: BALANCING BUSINESS AND REWARDS
5. DATA GOVERNANCE: BEYOND THE DATA
6. EFFECTIVE DATA PLATFORM GOVERNANCE CONTROLS
7. THE EVOLVING CYBERSECURITY LANDSCAPE WITH AI
9. PRIORITIZING CYBERSECURITY RISKS IN A DATA-DRIVEN WORLD
10. BEYOND THE DATA: THE POWER OF TECHNOLOGY GOVERNANCE
Agenda for today
DATA GOVERNANCE VS DATA PLATFORM
GOVERNANCE
Data
Security
Ensure data quality, consistency, security, and compliance with regulationsEnsure the platform functions smoothly, reliably, and securely
guaranteeing security at-rest, in-motion, auditability, etc.
Policies
Procedures
Guidelines
Protocols
Data Management
Performance
ReliabilityStewardship Tech Management
Resiliency
Privacy
How does Data Platform differs from Data Platform Governance?
GOVERNANCE
Data
Security
Ensure data quality, consistency, security, and compliance with regulationsEnsure the platform functions smoothly, reliably, and securely
guaranteeing security at-rest, in-motion, auditability, etc.
Policies
Procedures
Guidelines
Protocols
Data Management
Performance
ReliabilityStewardship Tech Management
Resiliency
Privacy
How does Data Platform differs from Data Platform Governance?
DATA EXPLOITATION AND REGULATIONS
Collect
(on-going and systematic
process to acquire
information)
Store
(electronic recording and
organization of information
for future access and use)
Use
(leverages information for
analysis and insights)
Data residency (geographic location), sovereignty (laws
and regulations to fulfil) and locality (data within
borders)
GDPR (General Data Protection Regulation), CCPA (California Consumer
Privacy Act), nFADP (New Federal Act on Data Protection), Lei Geral de
Protecao de Dados (LGPD), PCI Data Security Standard (DSS), PIPEDA
(Personal Information Protection and Electronic Documents Act), HIPAA
(Health Insurance Portability and Accountability Act) …
ACQUIRE
EXPLOIT
~20Regulations and
standards to comply with
Collect
(on-going and systematic
process to acquire
information)
Store
(electronic recording and
organization of information
for future access and use)
Use
(leverages information for
analysis and insights)
Data residency (geographic location), sovereignty (laws
and regulations to fulfil) and locality (data within
borders)
GDPR (General Data Protection Regulation), CCPA (California Consumer
Privacy Act), nFADP (New Federal Act on Data Protection), Lei Geral de
Protecao de Dados (LGPD), PCI Data Security Standard (DSS), PIPEDA
(Personal Information Protection and Electronic Documents Act), HIPAA
(Health Insurance Portability and Accountability Act) …
ACQUIRE
EXPLOIT
~20Regulations and
standards to comply with
DATA PLATFORM GOVERNANCE AND SECURITY
IN A SHIFTING LANDSCAPE
Collection
(on-going and systematic
process to acquire
information)
Storage
(electronic recording and
organization of information
for future access and use)
Use
(electronic recording and
organization of information
for future access and use)
Disposal
(secure deletion or
destruction of information to
prevent unauthorized access
or future use)
Data governance program to ensure compliance with data regulations. Data Platform governance to define technical policies and procedures for data
collection, storage, use, and disposal, beyond providing enabling capabilities.
Invest in data security measures to protect personal data from unauthorized access, disclosure, alteration, or destruction, being prepared to respond to subject
requests
1
2
Importance of data platform governance beyond just data itself, and the controls needed to ensure a secure and compliant data ecosystem.
Data Lifecycle
Capabilities
IN A SHIFTING LANDSCAPE
Collection
(on-going and systematic
process to acquire
information)
Storage
(electronic recording and
organization of information
for future access and use)
Use
(electronic recording and
organization of information
for future access and use)
Disposal
(secure deletion or
destruction of information to
prevent unauthorized access
or future use)
Data governance program to ensure compliance with data regulations. Data Platform governance to define technical policies and procedures for data
collection, storage, use, and disposal, beyond providing enabling capabilities.
Invest in data security measures to protect personal data from unauthorized access, disclosure, alteration, or destruction, being prepared to respond to subject
requests
1
2
Importance of data platform governance beyond just data itself, and the controls needed to ensure a secure and compliant data ecosystem.
Data Lifecycle
Capabilities
THE DATA-DRIVEN BUSINESS: BALANCING
BUSINESS AND REWARDS
DataDecision-making
Increased reliance on data creates vulnerabilities.
Regulatory environments are tightening to protect consumer data privacy.
Information for everything from
product development to targeted
marketing campaigns.
This reliance on data comes with
inherent risks. Data breaches can
have devastating consequences,
damaging brand reputation, and
leading to hefty fines.
To mitigate these risks and build
trust with consumers, strong data
and platform governance
frameworks, coupled with robust
security measures, is crucial.1
2
A
B
C
<< drives >>
Integrity and security are as many must-haves.3
BUSINESS AND REWARDS
DataDecision-making
Increased reliance on data creates vulnerabilities.
Regulatory environments are tightening to protect consumer data privacy.
Information for everything from
product development to targeted
marketing campaigns.
This reliance on data comes with
inherent risks. Data breaches can
have devastating consequences,
damaging brand reputation, and
leading to hefty fines.
To mitigate these risks and build
trust with consumers, strong data
and platform governance
frameworks, coupled with robust
security measures, is crucial.1
2
A
B
C
<< drives >>
Integrity and security are as many must-haves.3
DATA GOVERNANCE: BEYOND THE DATA
Data
Technology
Data Quality
Data Ownership
Data Lineage
Collect
Store
Dispose
Security
Data GovernanceData Platform Governance
Data Governance has traditionally
focused on ensuring the
accuracy,ownership,and
traceability of data itself.
In this era of complex data
platforms,it's vital to extend
governance to the very
infrastructure that houses and
manages that data.
Data Platform Governance defines
the rules and processes for
managing the
platform,encompassing access
controls,configuration
management,and change
management procedures.
A
B
C
Holistic approach ensures the integrity and
security of data throughout its lifecycle
Serve
Data
Technology
Data Quality
Data Ownership
Data Lineage
Collect
Store
Dispose
Security
Data GovernanceData Platform Governance
Data Governance has traditionally
focused on ensuring the
accuracy,ownership,and
traceability of data itself.
In this era of complex data
platforms,it's vital to extend
governance to the very
infrastructure that houses and
manages that data.
Data Platform Governance defines
the rules and processes for
managing the
platform,encompassing access
controls,configuration
management,and change
management procedures.
A
B
C
Holistic approach ensures the integrity and
security of data throughout its lifecycle
Serve
EFFECTIVE DATA PLATFORM GOVERNANCE
CONTROLS
Access Control
Configuration Management
Change Management
Auditing and Logging
Define who can access the platform and what actions they
can perform.
Standardize platform configurations to minimize errors and
vulnerabilities.
Establish a formal process for reviewing and approving
changes to the platform.
Track all activity on the platform for accountability and
security analysis.
Access controls restrict who can access the platform and what level of access
they have.
Configuration management ensures consistency and minimizes security gaps.
Change management establishes a formal process for vetting and approving
platform modifications.
Auditing and logging provide a comprehensive record of activity for security
analysis and ensuring accountability.
A well-defined set of controls
A
B
D
C
CONTROLS
Access Control
Configuration Management
Change Management
Auditing and Logging
Define who can access the platform and what actions they
can perform.
Standardize platform configurations to minimize errors and
vulnerabilities.
Establish a formal process for reviewing and approving
changes to the platform.
Track all activity on the platform for accountability and
security analysis.
Access controls restrict who can access the platform and what level of access
they have.
Configuration management ensures consistency and minimizes security gaps.
Change management establishes a formal process for vetting and approving
platform modifications.
Auditing and logging provide a comprehensive record of activity for security
analysis and ensuring accountability.
A well-defined set of controls
A
B
D
C
THE EVOLVING CYBERSECURITY LANDSCAPE
WITH AI
AI
Threat / RiskOpportunity
Automate Threat Detection
Automate Incident Response
1
2
Develop Sophisticated Threats
Integrity of decision-making
1
2
The cybersecurity landscape is constantly evolving, with Artificial Intelligence playing an increasingly prominent role. AI-powered tools can automate threat
detection, analyze vast amounts of data to identify suspicious activity, and streamline incident response. However, AI is a double-edged sword. Malicious actors can
also leverage AI to develop more sophisticated and targeted attacks. Organizations need to be aware of both the benefits and risks associated with AI in
cybersecurity to not compromise the integrity of their decisions.
WITH AI
AI
Threat / RiskOpportunity
Automate Threat Detection
Automate Incident Response
1
2
Develop Sophisticated Threats
Integrity of decision-making
1
2
The cybersecurity landscape is constantly evolving, with Artificial Intelligence playing an increasingly prominent role. AI-powered tools can automate threat
detection, analyze vast amounts of data to identify suspicious activity, and streamline incident response. However, AI is a double-edged sword. Malicious actors can
also leverage AI to develop more sophisticated and targeted attacks. Organizations need to be aware of both the benefits and risks associated with AI in
cybersecurity to not compromise the integrity of their decisions.
PRIORITIZING CYBERSECURITY RISKS IN A
DATA-DRIVEN WORLD
Data Breaches
Ransomware Attacks
Insider Threats
1
2
3
$$
The unauthorized access and exfiltration of sensitive data.
Crippling attacks that encrypt data and demand a ransom
for decryption.
Malicious activity by authorized users within the
organization.
Given the critical role of data in today's business environment, organizations must prioritize various cybersecurity risks. Data
breaches, where sensitive information is stolen, can have a devastating impact. Ransomware attacks encrypt data, essentially holding
it hostage until a ransom is paid. Malicious activity within the organization can jeopardise a brand.
Threats / RisksPrevention / Mitigation
Tighten on access control
Develop intrusion detection and tighten
control on endpoints, keep backups
and system up-to-date
Active control of the audit trails
DATA-DRIVEN WORLD
Data Breaches
Ransomware Attacks
Insider Threats
1
2
3
$$
The unauthorized access and exfiltration of sensitive data.
Crippling attacks that encrypt data and demand a ransom
for decryption.
Malicious activity by authorized users within the
organization.
Given the critical role of data in today's business environment, organizations must prioritize various cybersecurity risks. Data
breaches, where sensitive information is stolen, can have a devastating impact. Ransomware attacks encrypt data, essentially holding
it hostage until a ransom is paid. Malicious activity within the organization can jeopardise a brand.
Threats / RisksPrevention / Mitigation
Tighten on access control
Develop intrusion detection and tighten
control on endpoints, keep backups
and system up-to-date
Active control of the audit trails
BEYOND THE DATA: THE POWER OF
TECHNOLOGY GOVERNANCE
DataPlatform
FuelEngineData Platform Governance ensures the secure
and compliant flow of data
Technology Governance extends beyond data,
encompassing the entire IT ecosystem.
Enhanced security posture
Reduced operational risks
Improved regulatory compliance
Increased agility and innovation
A
B
C
D
We've explored the importance of Data Platform Governance in securing the data that drives business decisions. But remember, data is just one piece of the puzzle. Technology Governance takes a
holistic approach, extending its focus to the entire technology infrastructure. This includes not just data platforms, but also networks, applications, and devices. Effective Technology Governance brings
a myriad of benefits, from strengthened security to improved agility. By proactively managing your entire technology ecosystem, you can ensure your organization thrives in an ever-changing landscape.
TECHNOLOGY GOVERNANCE
DataPlatform
FuelEngineData Platform Governance ensures the secure
and compliant flow of data
Technology Governance extends beyond data,
encompassing the entire IT ecosystem.
Enhanced security posture
Reduced operational risks
Improved regulatory compliance
Increased agility and innovation
A
B
C
D
We've explored the importance of Data Platform Governance in securing the data that drives business decisions. But remember, data is just one piece of the puzzle. Technology Governance takes a
holistic approach, extending its focus to the entire technology infrastructure. This includes not just data platforms, but also networks, applications, and devices. Effective Technology Governance brings
a myriad of benefits, from strengthened security to improved agility. By proactively managing your entire technology ecosystem, you can ensure your organization thrives in an ever-changing landscape.
Q&A
Thanks a lot for your attention. It is a unique opportunity to share
with like-minded individuals and top professionals like you, all!
Thanks a lot for your attention. It is a unique opportunity to share
with like-minded individuals and top professionals like you, all!
Categories
TechnologyDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 29
- Slides 12
- Age 540 days
Related Slideshows
11
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx
JeroenErne2
45 views
10
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx
JeroenErne2
45 views
13
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx
JeroenErne2
36 views
11
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx
JeroenErne2
33 views
21
Know for Certain
DaveSinNM
20 views
17
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx
novasedanayoga46
24 views