+ Closing the Loop: Governance & Serving Multiple Stakeholders: - - PowerPoint PPT Presentation

Integrated Catalog, Data Access Control and Automated Privacy Management

Serving Multiple Stakeholders: Data Security Governance Expand Collibra Capabilities: IRR Enablement & Enforcement

Delivering value to multiple stakeholders (CDO, DPO, CIO & CISO) through single pain of glass across the organization IT ecosystem and users communities leveraging multiple attributes such as roles, business functions and sensitive data while applying fine-grained Least-Privilege Access Controls for Zero Trust Enable & Enforce Data Subjects Individual Rights Request across business applications and business processes enabling automated IRR management process during and after retention

Closing the Loop: Governance & Privacy Process Automation

Streamline Operations & Reduce Compliance TCO

+

Streamline operability and reduce complexity & cost using automated privacy and data governance management and enforcement process

• rchestration

Joint Complementary Data Governance: From Discovery to Enforcement

SecuPi takes over where Collibra Data Catalog finishes to control and protect sensitive data

Integrating Collibra Catalog data, SecuPi enforcement points control, monitor & audit all sensitive data activity applying fine-grained access controls, alerting, masking, filtering & encryption across all applications & Analytic environments On-Prem or Cloud Feed Data Usage and Access Patterns back into Collibra for Enhanced/Augmented Data Governance and Usage Reporting

Collibra SecuPi

SecuPi Policy Management Server Collibra Catalog

• Data Classification
• Data Risk Management
• Real-time monitoring
• Access policy management
• User Behavior Analytics (UBA)
• Tamper-Proof Audit Trail & Forensics

Domain Owner Sensitive Data Discovery Data Classification & Risk Master Data Catalog Attribute Based Access Control (ABAC) Data Protection (Encryption at Rest) Real-time Data Access Activity Monitoring Dynamic Data Masking (DDM) Transparent Decryption with key segregation

Automatic Update of Data Catalog & Classifications

• Collibra provides master data catalog & enrichment source
• All data element and data source mappings loaded to SecuPi
• Access policies defined within SecuPi for sensitive data elements
• User access enforced by SecuPi Application Overlays

Discovery & Data Access Control Enforcement

Integration Principles Collibra Data Catalog is loaded into SecuPi with all Sensitive Table/Columns, Enriched Attributes, Classification Etc.

Collibra SecuPi

SecuPi Management Server Collibra Catalog

Collibra Data Catalog

Collibra data catalog retrieved by SecuPi using REST API

• Periodically (configurable)
• On demand (click based)

New enriched attributes are added for each table/column to be imported:

• Sensitivity, Data-format and Classification
• Table/column tag

SecuPi Management Server

Enriched catalog data is imported to SecuPi Resource Access module

• Data in SecuPi stored as resources
• Each application in scope may have its
• wn integration, different tags with

different applications can be imported, and get different tables/columns for each

• Sensitivity, data format and

classification are per table/column so are the same for all applications

Deployment

Hybrid deployment

• Cloud to Cloud
• Cloud / On Prem

Demarcation & Integration

Joint Value Proposition

Integrated Data Privacy, Security & IRR Management Platform

Agile and Efficient

Configurable platform to meet current & future applications, privacy remediation requirements and sensitive activity monitoring & auditing requirements

Best of Breed, Pre-Packaged Solution

Collibra Catalog coupled with SecuPi Data Privacy & Compliance Enforcement and UBA Solution providing unmatched real time data access control and visibility

Unified Platform: Data Governance, IRR Management, Enforcement Solution

ONE solution for CCPA, GDPR compliance (e.g., “Right of Erasure”), IRR Requests & Insider-threat for BOTH On Premise & Cloud Hosted data

Out of the box Data Catalog – Enforcement Engine Integration

Enabling automated implementation of data access policies on ever growing data inventory, regulatory requirements, use cases, business needs etc. across data access tools (business apps, analytics, direct Database or Data Repository access)

No Code Changes

No source-code changes with fast & cost-efficient implementation

Addressing Multiple Stakeholders Needs

Leverage inherent capabilities to address BUSINESS NEEDS of both the CDO, CISO & CIO