Bring Your Own Service
Upcoming SlideShare
Loading in...5
×
 

Bring Your Own Service

on

  • 547 views

Collaborate Securely and Easily with DatAnywhere ...

Collaborate Securely and Easily with DatAnywhere

DatAnywhere provides an alternative to cloud-based file sharing solutions that is secure and easy to use.

Create a secure private cloud experience using your existing file sharing infrastructure
Keep your data on your file servers
Keep your existing permissions (e.g. NTFS and Active Directory)
Provide secure, enterprise-capable file synchronization and mobile access

Statistics

Views

Total Views
547
Views on SlideShare
547
Embed Views
0

Actions

Likes
0
Downloads
15
Comments
0

0 Embeds 0

No embeds

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • You’ve all been bombarded with BYOD, right? Everyone has their own smartphone, tablet, or laptop (or all three), and they want to use them for work.
  • More devices has meant a spike in services that easily keep data sync’d between them.These services are often:Cloud-basedFree or cheapCompletely outside of organizational control or oversight
  • One of the services that many of you are likely grappling with already is Dropbox.It’s no secret that the way we share files has changed. File sync services like Dropbox have seen enormous growth. Dropbox reports having over 100 million customers now.
  • There are a lot of factors contributing to this growth: the proliferation of smart phones and tables being a major driver. But perhaps more importantly: it’s easy.You have a folderYou put stuff it inIt syncs – With all your devicesWith the people you want to share withWithout services like Dropbox, BYOD wouldn’t work. You’d have to manually sync all of your data all of the time. It’d be so painful, you wouldn’t want to manage more than one device. Remember what is was like to have to manually sync songs to your iPod?
  • Hey boss, can I use Dropbox?
  • No.Bummer.
  • In all seriousness, to gauge the adoption of BYOS, Varonis conducted research with the analyst firm IDG last year and found that:80% of organizations don’t allow their employees to use cloud file sync services like DropboxOn the other end of the spectrum, 14% were comfortable with BYOSAnd 6% weren’t satisfied by the control and security around BYOS, but are going ahead anywaySo, what are the main reasons 80% of organizations don’t allow BYOS?
  • Over half of companies are worried that they won’t be able to ensure that only the right users have access to data that’s stored in a cloud service.If you think about it, many of these BYOS services were built with consumers in mind, and governance has been an afterthought – especially governance that is designed to stand up to corporate requirements.
  • 39% of companies are concerned about authentication.For many companies, if authentication doesn’t go through their directory services, it becomes an added burden to control, if they can control it at all.Most BYOS use password authentication that’s linked to your personal email account, so in many cases the company doesn’t even know an account has been created.
  • 26% were opposed to BYOS for fear of data loss and lack of visibility into who is touching data.Organizations know that questions come up all the time about who has accessed data, or who has deleted data. And without an audit trail, these questions can’t be answered.
  • When considering BYOS, companies seem to be most afraid of falling victim to a number of things.Surprisingly, most people were afraid of downtime, which is not the first thing you might think of for BYOS. But there have been a number of high-profile instances with Amazon Web Services and other providers whose infrastructure powers a number of big businesses.Loss of productivity.Compliance violations.Data theft and loss.
  • Lastly, we asked people if they’d ever adopt cloud services such as Dropbox.A resounding 69% said: no.
  • Despite your plans to not use Dropbox, chances are users are doing it anyway.A survey by Nasuni reports that 1 in 5 employees (20%) are already using Dropbox for business data.
  • It’s clear that if we don’t take any action, users will take matters into their own hands.
  • So what should we do about it?We have to give users what they want while maintaining control.We know that users want simplicity, accessibility, and mobile support.We know that organizations need control, compliance, and security.
  • In order to achieve our goal, we either going to have to find a cloud service that provides the control we need.Or we’re going to have to bring the cloud functionality and simplicity inside where the controls already exist.
  • The first option we’re going to look is moving data to the cloud.Assuming you’ve found a cloud service that meets your needs, how do you plan to get there?
  • If you don’t have an existing infrastructure, you don’t have to worry about this.But if you do, you have to ask questions like:Will we be moving everything and shutting down your existing infrastructure?If not, it’s important to ask some important questions:Can you determine which data you want to move?Are you going to have multiple user directories? Are you going to have multiple processes for granting and revoking access to data?If you need to figure out who’s been touching data, do you have one audit trail or many?If you’ve got copies of the same data inside and outside, how do you determine what the definitive copy is?How do people on the inside collaborate with people using cloud services?
  • Even if you aren’t going to end up with two environments to manage – inside and outside – there are still challenges.Data stored in the cloud is still subject to the same risks. According to the ICO, you’re still responsible for your data, even if it’s stored in the cloud. So if Dropbox has a breach and loses your customers’ data, you’re still on the hook.Even though you’re outsourcing the storage, you’re not outsourcing the risk.
  • Lastly, when it comes down to physically moving your data to the cloud, some additional things to consider are:How you plan to backup that data?How would you fall-over in the event of a disaster?How are you going to manage who gets access to what?It’s not in cloud vendors’ interest to delete data – so how are you going to manage archiving?How are you going to find sensitive content, like PII? Or ensure it stays out of the cloud altogether.How are you going to answer questions about who’s been accessing or deleting data across multiple repositories?How do you do change management in the cloud?
  • TODO: flow chartNo?  Well, we’ll probably need a whole different presentation for that.Yes  Add cloud-like functionality.What is that cloud-like functionality?File synchronization. Mobile device support. Third-party sharing. Easily integrates with existing controls. Leverages your data, permissions, and directory services.
  • Here are some of the things we’d want if we were going to bring cloud-like functionality to our existing infrastructure.Does anything like this exist? At least one: Varonis DatAnywhere.
  • AD Domain credentials
  • Some of you might be thinking “my internal infrastructure could benefit from better controls, too.”
  • Varonis has been helping organizations with data governance for years.

Bring Your Own Service Bring Your Own Service Presentation Transcript

  • BRING YOUR OWN SERVICE THE EFFECTS OF CLOUD SERVICES ON COMPLIANCE AND DATA PROTECTION Presented By: Rob Sobers VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • ABOUT VARONIS Founded in 2004, started operations in 2005 Over 2000 Customers Over 5000 installations Based on patented technology and a highly accurate analytics engine, Varonis solutions give organizations total visibility and control over their unstructured data, ensuring that only the right users have access to the right data at all times from all devices, all use is monitored, and abuse is flagged. VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • BRING YOUR OWN DEVICE Easy & secure Enterprise File Sharing – Free Trial
  • BRING YOUR OWN SERVICE Easy & secure Enterprise File Sharing – Free Trial
  • EXAMPLE: CLOUD FILE SHARING EXPLOSION Public cloud file sharing has exploded As of November 2012, Dropbox claimed to have 100,000,000 customers VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • WHY DO PEOPLE LOVE DROPBOX? It’s easy! You have a folder You put stuff in it It syncs With all your devices With the people you want to share with Services like this make BYOD work …but does BYOS work for business? VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • Hey boss, can I use Dropbox? VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • No. =( VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • VARONIS BYOS SURVEY RESULTS VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. of companies currently do not allow cloud-based file synchronization of companies are satisfied with the controls that cloud- based file sync services have in place of companies are not satisfied but are going ahead anyway Easy & secure Enterprise File Sharing – Free Trial
  • ACCESS RIGHTS AND AUTHORIZATION VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Why not? worried about maintaining correct access rights and authorization Easy & secure Enterprise File Sharing – Free Trial
  • AUTHENTICATION VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Why not? worried about authentication Easy & secure Enterprise File Sharing – Free Trial
  • AUDITING & DATA LOSS VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Why not? worried about data loss or auditing access activity Easy & secure Enterprise File Sharing – Free Trial
  • FEARED CONSEQUENCES VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Downtime Loss of productivity Compliance violations Data theft Easy & secure Enterprise File Sharing – Free Trial
  • SO, WILL YOU EVER ALLOW DROPBOX? VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. No Yes IT plans to allow cloud-based file sync Easy & secure Enterprise File Sharing – Free Trial
  • TOO BAD! WE’RE USING THEM ANYWAY 1 in 5 employees already use Dropbox for work! Source: Nasuni http://www6.nasuni.com/shadow-it-2012.html VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • Doing nothing means we’ll lose control VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • WHAT IF… …you could manage them in the same way you can manage internal resources? VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Yes No Easy & secure Enterprise File Sharing – Free Trial
  • LET’S HAVE OUR CAKE AND EAT IT, TOO Give users what they want: Simplicity Accessibility Mobile support Give organizations what they need: Control Compliance Security VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • How do we do this? VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • WHAT ARE THE OPTIONS? VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • To the cloud! VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • DO YOU HAVE AN EXISTING INFRASTRUCTURE? VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Existing infrastructure? Easy! Moving everything? No so hard.Oh boy. No Yes No Yes Easy & secure Enterprise File Sharing – Free Trial
  • CONTROLS IN THE CLOUD Data stored in the cloud is still subject to the same risks as internal data According to the Information Commissioner’s Office (ICO), you’re still responsible for your data even if it’s stored in the cloud VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • DON’T FORGET TO PACK… Backup & recovery processes (BCP/DR) Authorization processes (entitlement reviews, authorization workflows) Retention & Disposition Content inspection Access auditing Change management VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • Extend your existing infrastructure VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • DO YOU HAVE AN EXISTING INFRASTRUCTURE? VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Existing infrastructure? This is a whole different presentation Add cloud-like functionality No Yes Easy & secure Enterprise File Sharing – Free Trial
  • WHAT DO WE NEED? We need to provide client for mobile devices and laptops We need to provide file sync We need to authenticate with Active Directory We need to enforce existing permissions We need to coexist with all the internal controls we mentioned before (backup, classification, etc.) Would be ideal to be able to have everything contained in our own infrastructure VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • VARONIS DATANYWHERE Provide cloud usability using only existing infrastructure: There’s a folder You put stuff in it It syncs… With your existing storage (NAS, file servers) Using Active Directory credentials Using your existing file system permissions VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • STEP 1: LOGIN Login with your domain credentials (Active Directory) and/or multi-factor authentication Varonis Systems. Proprietary and confidential. Easy & secure Enterprise File Sharing – Free Trial
  • STEP 2: COLLABORATE Your sync’d folders appear in explorer Changes sync to your CIFS servers VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • SEE SYNC SPEEDS AND NOTIFICATIONS VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • MOBILE APPS VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • RIGHT CLICK FOR INSTANT EXTRA-NET VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • SECURE COLLABORATION WITH 3RD PARTIES Set permissions and expiration dates. Share with partners, customers, vendors, and clients. VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • Windows Mac Smart Phone Tablet DatAnywhere Client DN Edge server Sync Manager Sync Worker Sync Worker DN Edge server Client authorization DATANYWHERE ARCHITECTURE Varonis Systems. Proprietary and confidential. Windows File Systems NAS MS Active Directory Sync Manager CIFS HTTPS Easy & secure Enterprise File Sharing – Free Trial
  • One more thing… VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • INTEGRATES WITH DATA GOVERNANCE SUITE Use DatAdvantage to manage permissions Use DataPrivilege to automate authorization DatAnywhere activity is recorded by DatAdvantage VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • SUMMARY Cloud-style sharing and BYOD may be inevitable Organizations must choose a direction before the employees choose one for them Organizations have a choice between moving data to the cloud, or extending their existing infrastructure to provide cloud-style capabilities in-house Whichever direction your organization chooses, governance will be instrumental for secure collaboration VARONIS SYSTEMS. PROPRIETARY AND CONFIDENTIAL. Easy & secure Enterprise File Sharing – Free Trial
  • VARONIS SOLUTIONS GOVERNANCE ACCESS RETENTION Ensure that only the right people has access to the right data at all times, access is monitored and abuse is flagged. Use your existing file shares, on your own servers, to provide file synchronization, mobile access, and secure 3rd party sharing. Intelligently automate data disposition, archiving and migration process using the intelligence of the Varonis Metadata Framework