SlideShare a Scribd company logo

Integrating garp e_discovery

Download as PPT, PDF
S
scm24

This document discusses integrating the Generally Accepted Recordkeeping Principles (GARP®) framework with electronic discovery (eDiscovery) best practices. It provides an overview of GARP® and eDiscovery, focusing on the people, processes, and technologies involved. It then discusses how to integrate the two through case studies on implementing information governance programs in different organizations. The key takeaway is to understand both GARP® and eDiscovery in order to effectively integrate the two domains through people, processes, and technologies.

Technology
1 of 46
Integrating GARP® With Your eDiscovery Best Practices Steven C. Markey, MSIS, PMP, CISSP, CIPP, CISM, CISA, STS-EV, CCSK, CompTIA Cloud Essentials Principal, nControl, LLC Adjunct Professor President, Cloud Security Alliance – Delaware Valley Chapter (CSA-DelVal)
Integrating GARP® With eDiscovery • Presentation Overview – GARP® Overview – eDiscovery Overview – Integrating GARP® With eDiscovery – Use Case 1 – Use Case 2 – GARP® Supplements
Integrating GARP® With eDiscovery • GARP® Overview – What is it? • Information Governance Framework – Phases • Accountability • Transparency • Integrity • Protection • Compliance • Availability • Retention • Disposition
Integrating GARP® With eDiscovery • GARP® Overview – Maturity Model • Level 1 – Sub-Standard • Level 2 – In-Development • Level 3 – Essential • Level 4 – Proactive • Level 5 – Transformational
Integrating GARP® With eDiscovery • eDiscovery Overview – What Is It? • Electronic Discovery • Electronically Stored Information (ESI) – Who Does It Involve? • People • Process • Technology
Integrating GARP® With eDiscovery • eDiscovery Overview – People • Internal – Records & Information Management (RIM) – Internal Counsel/Legal/Compliance – IT • External – External Counsel – Consultants/Contractors
Integrating GARP® With eDiscovery • eDiscovery Overview – Process • Generic • EDRM
Integrating GARP® With eDiscovery • eDiscovery Overview – Technology • Process-Focused – Presentation/Collection/Archival – Processing/Review/Analysis/Search • Artifact-Focused – Collaboration (Email, IM) – Social Media – File Shares – Electronic Document/Content Management (EDM/ECM) – Telecom – Web Content Management (WCM) • Deployment-Focused – Traditional –
Source: ZL Technologies
Source: Symantec
Source: Symantec
Source: Kazeon / EMC
Source: EMC
Source: Algo Solutions
Source: Gartner
Integrating GARP® With eDiscovery • eDiscovery Cloud Solutions – Software as a Service (SaaS) – Platform as a Service (PaaS) – Infrastructure as a Service (IaaS)
Integrating GARP® With eDiscovery • eDiscovery Cloud Solutions – SaaS • Social Media-Centric – Arkovi – Archive-It – LiveOffice SocialArchive • Comprehensive – Zantaz – Proofpoint Enterprise Archive – Microsoft Exchange Online Archive (EOA) – Symantec Enterprise Vault.cloud – EMC SourceOne – VARs/Resellers – Google Message Discovery (GMD)
Integrating GARP® With eDiscovery • eDiscovery Cloud Solutions – SaaS (Continued) • Comprehensive – Sonian – Smarsh
Integrating GARP® With eDiscovery • eDiscovery Cloud Solutions – PaaS • Various Platform Vendors – Build e-Discovery Modules Leveraging Existing Platform » Not Much of a Market / Business Model » Re-Create the Wheel – IaaS • Various Cloud Vendors – Build eDiscovery Solution on IaaS Instance » Market / Business Model = All Cloud » Leverage Existing Licensing » Analogous to Hosting
Integrating GARP® With eDiscovery • Integrating GARP® With eDiscovery – People • RIM, Counsel & IT – Process • Legal Holds/Litigation Response • Protection/Compliance/Retention/Disposition – Technology • System of Origination – ECM/EDM – WCM – Collaboration • eDiscovery System – Presentation/Collection/Archival
Integrating GARP® With eDiscovery
Integrating GARP® With eDiscovery
Integrating GARP® With eDiscovery Source: Metalogix StoragePoint
Integrating GARP® With eDiscovery Source: Metalogix StoragePoint
Integrating GARP® With eDiscovery
Integrating GARP® With eDiscovery • Integrating GARP® With eDiscovery – Technology (Continued) • Information Governance Tools – ECM/EDM » SharePoint: » -AvePoint DocAve 6 » -HiSoftware: Compliance Sheriff SP, Security Sheriff SP, Privacy » Documentum: » -Records Manager (RM) » -Retention Policy Services (RPS) » -Physical Records Services (PRS) » -Federated Records Services (FRS) – WCM » Web 1.0/2.0: Active Navigation Discovery Center – RDBMS » SQL Server 2008L Master Data Services
Integrating GARP® With eDiscovery Source: DocAve
Integrating GARP® With eDiscovery • Integrating GARP® With eDiscovery – Reality • “It’s the economy stupid.” – lean budgets, project holds. • Change is difficult. • Keep all mentality pervades. – OR, highest common denominator (retention requirements). • Departments have different retention schedules. • Some organizations are more manual than others. • Some law cases take a LONG time. – Concurrent investigations/lawsuits affect retention. • Fads fade. – Lean Six Sigma in financial services. – Legacy (“old school”) mentality for leadership.
Integrating GARP® With eDiscovery • Case Study 1 – Background – Drivers – Technologies – Limitations – Risks – Lessons Learned – Next Steps
Integrating GARP® With eDiscovery • Case Study 1 – Background • CIO Wants to Implement SharePoint – Nix File Shares • Financial Services SMB • Staff: IT, 6 FTEs; Compliance, 1 FTE – Drivers • Compliance • Disjointed Processes/Inefficiencies – Technologies • Email: Exchange Server 2010 • EDM: SharePoint 2010 • Discovery: Backups, Then Symantec Enterprise Vault 10.0
Integrating GARP® With eDiscovery • Case Study 1 – Limitations • No Records & Info Mgmt (RIM) Program – ARMA, GARP®….huh? • Organizational Behavior/Culture • Budget • Skill-sets • Resources – Risks • Stakeholder Buy-in • CIO Political Capital • Program Upkeep/Maintenance • Capital Expenditure Requirements
Integrating GARP® With eDiscovery • Case Study 1 – Lessons Learned • Stakeholder Buy-in Was Huge • Don’t Forget the Fiefdoms • Healthy Dose of Skepticism – Email Backups • Those in the Trenches Were the Champions – Especially Internal Sales
Integrating GARP® With eDiscovery • Case Study 1 – Next Steps • Iterative Implementation of SharePoint • Test eDiscovery Functionality • Implement Document Mgmt Training & Awareness • Publish Naming Conventions & RIM SOPs • Scheduled: – Records Retention Schedule (RRS) Update – Records Clean-out – GARP® Self-Assessment
Integrating GARP® With eDiscovery • Case Study 2 – Background – Drivers – Technologies – Limitations – Risks – Lessons Learned – Next Steps
Integrating GARP® With eDiscovery • Case Study 2 – Background • RIM Program Dealing w/ Multiple Mergers & Acquisitions • Mid-sized Pharmaceutical (Manufacturing & Sales) • Staff: RIM, 1 FTE w/ Other Responsibilities – Drivers • Resource Limitations • Limited Domain Knowledge • Disjointed Processes/Inefficiencies – Technologies • Email: Exchange Server 2008 • EDM: SharePoint 2007 • Discovery: Backups, Then Symantec Enterprise Vault 9.0
Integrating GARP® With eDiscovery • Case Study 2 – Limitations • Currently in Litigation Response • Program Conflicts: – Priority – Budget – Interest • Organizational Integration • Disjointed Processes – Risks • Compliance • Program Upkeep/Maintenance • Operating Expenditure Requirements
Integrating GARP® With eDiscovery • Case Study 2 – Lessons Learned • Selling Process Improvement Was Huge – Process Workflow – Litigation Response – Archiving • Sell the Program Too – Use by Competitors – Use by Smaller Organizations – Maturity Through GARP® • Don’t Forget the Fiefdoms – Need Decentralized Support Though • Healthy Dose of Skepticism – Verbal Promises
Integrating GARP® With eDiscovery • Case Study 2 – Next Steps • Deploy Email Policy • Implement GARP® Training & Awareness • Scheduled: – Records Clean-out – GARP® Self-Assessment – Integrated Litigation Response Test » Offsite Archiving Vendor » Benefits Administrator » Payroll Administrator
Integrating GARP® With eDiscovery • GARP® Supplements – Generic – IGRM – MIKE2.0
Source: EMC
Integrating GARP® With eDiscovery • Presentation Take-Aways – Know Information Governance (e.g. GARP®) – Know eDiscovery – Learn To Integrate The Two Through: – People – Processes – Technologies
• Questions? • Contact – Email: steve@ncontrol-llc.com – Twitter: @markes1, @csdadelval2011 – LI: http://www.linkedin.com/in/smarkey – CSA-DelVal: http://www.csadelval.org/

Recommended

Euro IT Group
Euro IT GroupEuro IT Group
Euro IT Group
Ben Oakford
 
Securing Enterprise Healthcare Big Data by the Combination of Knox/F5, Ranger...
Securing Enterprise Healthcare Big Data by the Combination of Knox/F5, Ranger...Securing Enterprise Healthcare Big Data by the Combination of Knox/F5, Ranger...
Securing Enterprise Healthcare Big Data by the Combination of Knox/F5, Ranger...
DataWorks Summit
 
Apache Atlas. Data Governance for Hadoop. Strata London 2015
Apache Atlas. Data Governance for Hadoop. Strata London 2015Apache Atlas. Data Governance for Hadoop. Strata London 2015
Apache Atlas. Data Governance for Hadoop. Strata London 2015
Sean Roberts
 
Blockchain & Security in Oracle by Emmanuel Abiodun
Blockchain & Security in Oracle by Emmanuel AbiodunBlockchain & Security in Oracle by Emmanuel Abiodun
Blockchain & Security in Oracle by Emmanuel Abiodun
Vishwas Manral
 
E discovery 2-cloud_v5
E discovery 2-cloud_v5E discovery 2-cloud_v5
E discovery 2-cloud_v5scm24
 
Cloud computing pmi-dvc-v3
Cloud computing pmi-dvc-v3Cloud computing pmi-dvc-v3
Cloud computing pmi-dvc-v3scm24
 
Maximizing your share_point_investment_final
Maximizing your share_point_investment_finalMaximizing your share_point_investment_final
Maximizing your share_point_investment_finalscm24
 
Cloud computing arma_nnj
Cloud computing arma_nnjCloud computing arma_nnj
Cloud computing arma_nnjscm24
 

Recommended

Euro IT Group
Euro IT GroupEuro IT Group
Euro IT Group
Ben Oakford
 
Securing Enterprise Healthcare Big Data by the Combination of Knox/F5, Ranger...
Securing Enterprise Healthcare Big Data by the Combination of Knox/F5, Ranger...Securing Enterprise Healthcare Big Data by the Combination of Knox/F5, Ranger...
Securing Enterprise Healthcare Big Data by the Combination of Knox/F5, Ranger...
DataWorks Summit
 
Apache Atlas. Data Governance for Hadoop. Strata London 2015
Apache Atlas. Data Governance for Hadoop. Strata London 2015Apache Atlas. Data Governance for Hadoop. Strata London 2015
Apache Atlas. Data Governance for Hadoop. Strata London 2015
Sean Roberts
 
Blockchain & Security in Oracle by Emmanuel Abiodun
Blockchain & Security in Oracle by Emmanuel AbiodunBlockchain & Security in Oracle by Emmanuel Abiodun
Blockchain & Security in Oracle by Emmanuel Abiodun
Vishwas Manral
 
E discovery 2-cloud_v5
E discovery 2-cloud_v5E discovery 2-cloud_v5
E discovery 2-cloud_v5scm24
 
Cloud computing pmi-dvc-v3
Cloud computing pmi-dvc-v3Cloud computing pmi-dvc-v3
Cloud computing pmi-dvc-v3scm24
 
Maximizing your share_point_investment_final
Maximizing your share_point_investment_finalMaximizing your share_point_investment_final
Maximizing your share_point_investment_finalscm24
 
Cloud computing arma_nnj
Cloud computing arma_nnjCloud computing arma_nnj
Cloud computing arma_nnjscm24
 
e-Discovery_2_Cloud_v5
e-Discovery_2_Cloud_v5e-Discovery_2_Cloud_v5
e-Discovery_2_Cloud_v5Steve Markey
 
Designing Effective Storage Strategies to Meet Business Needs
Designing Effective Storage Strategies to Meet Business NeedsDesigning Effective Storage Strategies to Meet Business Needs
Designing Effective Storage Strategies to Meet Business Needs
Brian Anderson
 
Designing Effective Storage Strategies to Meet Business Needs
Designing Effective Storage Strategies to Meet Business NeedsDesigning Effective Storage Strategies to Meet Business Needs
Designing Effective Storage Strategies to Meet Business Needs
Eagle Technologies
 
Data Governance for Data Lakes
Data Governance for Data LakesData Governance for Data Lakes
Data Governance for Data Lakes
Kiran Kamreddy
 
OAUG 05-2009-MDM-1683-A Fiteni CPA, CMA
OAUG 05-2009-MDM-1683-A Fiteni CPA, CMAOAUG 05-2009-MDM-1683-A Fiteni CPA, CMA
OAUG 05-2009-MDM-1683-A Fiteni CPA, CMA
Alex Fiteni
 
Solving Real Problems with Apache Spark: Archiving, E-Discovery, and Supervis...
Solving Real Problems with Apache Spark: Archiving, E-Discovery, and Supervis...Solving Real Problems with Apache Spark: Archiving, E-Discovery, and Supervis...
Solving Real Problems with Apache Spark: Archiving, E-Discovery, and Supervis...
Spark Summit
 
EMC InfoArchive Overview: Offered by Sigma
EMC InfoArchive Overview: Offered by SigmaEMC InfoArchive Overview: Offered by Sigma
EMC InfoArchive Overview: Offered by Sigma
Jonathan Simpson
 
Archiving, E-Discovery, and Supervision with Spark and Hadoop with Jordan Volz
Archiving, E-Discovery, and Supervision with Spark and Hadoop with Jordan VolzArchiving, E-Discovery, and Supervision with Spark and Hadoop with Jordan Volz
Archiving, E-Discovery, and Supervision with Spark and Hadoop with Jordan Volz
Databricks
 
Get the Green Light to Go Greener
Get the Green Light to Go GreenerGet the Green Light to Go Greener
Get the Green Light to Go Greener
Bob Sawhill, CFM
 
What Are you Waiting For? Remediate your File Shares and Govern your Informat...
What Are you Waiting For? Remediate your File Shares and Govern your Informat...What Are you Waiting For? Remediate your File Shares and Govern your Informat...
What Are you Waiting For? Remediate your File Shares and Govern your Informat...
Everteam
 
Enterprise Systems - Real World Perspective
Enterprise Systems - Real World PerspectiveEnterprise Systems - Real World Perspective
Enterprise Systems - Real World Perspective
Shauna_Cox
 
Marlabs Capabilities Overview: Digital Asset Management (DAM)
Marlabs Capabilities Overview: Digital Asset Management (DAM)Marlabs Capabilities Overview: Digital Asset Management (DAM)
Marlabs Capabilities Overview: Digital Asset Management (DAM)
Marlabs
 
Data governance datalakes_multitenancy
Data governance datalakes_multitenancyData governance datalakes_multitenancy
Data governance datalakes_multitenancy
Sathish K S
 
Palms v
Palms vPalms v
Palms v
bdemchak
 
Hicss 2012 presentation
Hicss 2012 presentationHicss 2012 presentation
Hicss 2012 presentation
bdemchak
 
Implementing access and security controls across your applications
Implementing access and security controls across your applicationsImplementing access and security controls across your applications
Implementing access and security controls across your applications
Dave Reik
 
Get ahead of the cloud or get left behind
Get ahead of the cloud or get left behindGet ahead of the cloud or get left behind
Get ahead of the cloud or get left behind
Matt Mandich
 
Oracle Modern Information Management Platform - v1.0
Oracle Modern Information Management Platform - v1.0Oracle Modern Information Management Platform - v1.0
Oracle Modern Information Management Platform - v1.0Bratamay Majumder
 
Cork big data_analytics-de_puy_synthes_datsci_cit
Cork big data_analytics-de_puy_synthes_datsci_citCork big data_analytics-de_puy_synthes_datsci_cit
Cork big data_analytics-de_puy_synthes_datsci_cit
Dana Brophy
 
Kollabria tour 2012 1
Kollabria tour 2012 1Kollabria tour 2012 1
Kollabria tour 2012 1
Mike Alsup
 
UiPath Test Automation using UiPath Test Suite series, part 5
UiPath Test Automation using UiPath Test Suite series, part 5UiPath Test Automation using UiPath Test Suite series, part 5
UiPath Test Automation using UiPath Test Suite series, part 5
DianaGray10
 
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdfUnlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Malak Abu Hammad
 

More Related Content

Similar to Integrating garp e_discovery

e-Discovery_2_Cloud_v5
e-Discovery_2_Cloud_v5e-Discovery_2_Cloud_v5
e-Discovery_2_Cloud_v5Steve Markey
 
Designing Effective Storage Strategies to Meet Business Needs
Designing Effective Storage Strategies to Meet Business NeedsDesigning Effective Storage Strategies to Meet Business Needs
Designing Effective Storage Strategies to Meet Business Needs
Brian Anderson
 
Designing Effective Storage Strategies to Meet Business Needs
Designing Effective Storage Strategies to Meet Business NeedsDesigning Effective Storage Strategies to Meet Business Needs
Designing Effective Storage Strategies to Meet Business Needs
Eagle Technologies
 
Data Governance for Data Lakes
Data Governance for Data LakesData Governance for Data Lakes
Data Governance for Data Lakes
Kiran Kamreddy
 
OAUG 05-2009-MDM-1683-A Fiteni CPA, CMA
OAUG 05-2009-MDM-1683-A Fiteni CPA, CMAOAUG 05-2009-MDM-1683-A Fiteni CPA, CMA
OAUG 05-2009-MDM-1683-A Fiteni CPA, CMA
Alex Fiteni
 
Solving Real Problems with Apache Spark: Archiving, E-Discovery, and Supervis...
Solving Real Problems with Apache Spark: Archiving, E-Discovery, and Supervis...Solving Real Problems with Apache Spark: Archiving, E-Discovery, and Supervis...
Solving Real Problems with Apache Spark: Archiving, E-Discovery, and Supervis...
Spark Summit
 
EMC InfoArchive Overview: Offered by Sigma
EMC InfoArchive Overview: Offered by SigmaEMC InfoArchive Overview: Offered by Sigma
EMC InfoArchive Overview: Offered by Sigma
Jonathan Simpson
 
Archiving, E-Discovery, and Supervision with Spark and Hadoop with Jordan Volz
Archiving, E-Discovery, and Supervision with Spark and Hadoop with Jordan VolzArchiving, E-Discovery, and Supervision with Spark and Hadoop with Jordan Volz
Archiving, E-Discovery, and Supervision with Spark and Hadoop with Jordan Volz
Databricks
 
Get the Green Light to Go Greener
Get the Green Light to Go GreenerGet the Green Light to Go Greener
Get the Green Light to Go Greener
Bob Sawhill, CFM
 
What Are you Waiting For? Remediate your File Shares and Govern your Informat...
What Are you Waiting For? Remediate your File Shares and Govern your Informat...What Are you Waiting For? Remediate your File Shares and Govern your Informat...
What Are you Waiting For? Remediate your File Shares and Govern your Informat...
Everteam
 
Enterprise Systems - Real World Perspective
Enterprise Systems - Real World PerspectiveEnterprise Systems - Real World Perspective
Enterprise Systems - Real World Perspective
Shauna_Cox
 
Marlabs Capabilities Overview: Digital Asset Management (DAM)
Marlabs Capabilities Overview: Digital Asset Management (DAM)Marlabs Capabilities Overview: Digital Asset Management (DAM)
Marlabs Capabilities Overview: Digital Asset Management (DAM)
Marlabs
 
Data governance datalakes_multitenancy
Data governance datalakes_multitenancyData governance datalakes_multitenancy
Data governance datalakes_multitenancy
Sathish K S
 
Palms v
Palms vPalms v
Palms v
bdemchak
 
Hicss 2012 presentation
Hicss 2012 presentationHicss 2012 presentation
Hicss 2012 presentation
bdemchak
 
Implementing access and security controls across your applications
Implementing access and security controls across your applicationsImplementing access and security controls across your applications
Implementing access and security controls across your applications
Dave Reik
 
Get ahead of the cloud or get left behind
Get ahead of the cloud or get left behindGet ahead of the cloud or get left behind
Get ahead of the cloud or get left behind
Matt Mandich
 
Oracle Modern Information Management Platform - v1.0
Oracle Modern Information Management Platform - v1.0Oracle Modern Information Management Platform - v1.0
Oracle Modern Information Management Platform - v1.0Bratamay Majumder
 
Cork big data_analytics-de_puy_synthes_datsci_cit
Cork big data_analytics-de_puy_synthes_datsci_citCork big data_analytics-de_puy_synthes_datsci_cit
Cork big data_analytics-de_puy_synthes_datsci_cit
Dana Brophy
 
Kollabria tour 2012 1
Kollabria tour 2012 1Kollabria tour 2012 1
Kollabria tour 2012 1
Mike Alsup
 

Similar to Integrating garp e_discovery (20)

e-Discovery_2_Cloud_v5
e-Discovery_2_Cloud_v5e-Discovery_2_Cloud_v5
e-Discovery_2_Cloud_v5
 
Designing Effective Storage Strategies to Meet Business Needs
Designing Effective Storage Strategies to Meet Business NeedsDesigning Effective Storage Strategies to Meet Business Needs
Designing Effective Storage Strategies to Meet Business Needs
 
Designing Effective Storage Strategies to Meet Business Needs
Designing Effective Storage Strategies to Meet Business NeedsDesigning Effective Storage Strategies to Meet Business Needs
Designing Effective Storage Strategies to Meet Business Needs
 
Data Governance for Data Lakes
Data Governance for Data LakesData Governance for Data Lakes
Data Governance for Data Lakes
 
OAUG 05-2009-MDM-1683-A Fiteni CPA, CMA
OAUG 05-2009-MDM-1683-A Fiteni CPA, CMAOAUG 05-2009-MDM-1683-A Fiteni CPA, CMA
OAUG 05-2009-MDM-1683-A Fiteni CPA, CMA
 
Solving Real Problems with Apache Spark: Archiving, E-Discovery, and Supervis...
Solving Real Problems with Apache Spark: Archiving, E-Discovery, and Supervis...Solving Real Problems with Apache Spark: Archiving, E-Discovery, and Supervis...
Solving Real Problems with Apache Spark: Archiving, E-Discovery, and Supervis...
 
EMC InfoArchive Overview: Offered by Sigma
EMC InfoArchive Overview: Offered by SigmaEMC InfoArchive Overview: Offered by Sigma
EMC InfoArchive Overview: Offered by Sigma
 
Archiving, E-Discovery, and Supervision with Spark and Hadoop with Jordan Volz
Archiving, E-Discovery, and Supervision with Spark and Hadoop with Jordan VolzArchiving, E-Discovery, and Supervision with Spark and Hadoop with Jordan Volz
Archiving, E-Discovery, and Supervision with Spark and Hadoop with Jordan Volz
 
Get the Green Light to Go Greener
Get the Green Light to Go GreenerGet the Green Light to Go Greener
Get the Green Light to Go Greener
 
What Are you Waiting For? Remediate your File Shares and Govern your Informat...
What Are you Waiting For? Remediate your File Shares and Govern your Informat...What Are you Waiting For? Remediate your File Shares and Govern your Informat...
What Are you Waiting For? Remediate your File Shares and Govern your Informat...
 
Enterprise Systems - Real World Perspective
Enterprise Systems - Real World PerspectiveEnterprise Systems - Real World Perspective
Enterprise Systems - Real World Perspective
 
Marlabs Capabilities Overview: Digital Asset Management (DAM)
Marlabs Capabilities Overview: Digital Asset Management (DAM)Marlabs Capabilities Overview: Digital Asset Management (DAM)
Marlabs Capabilities Overview: Digital Asset Management (DAM)
 
Data governance datalakes_multitenancy
Data governance datalakes_multitenancyData governance datalakes_multitenancy
Data governance datalakes_multitenancy
 
Palms v
Palms vPalms v
Palms v
 
Hicss 2012 presentation
Hicss 2012 presentationHicss 2012 presentation
Hicss 2012 presentation
 
Implementing access and security controls across your applications
Implementing access and security controls across your applicationsImplementing access and security controls across your applications
Implementing access and security controls across your applications
 
Get ahead of the cloud or get left behind
Get ahead of the cloud or get left behindGet ahead of the cloud or get left behind
Get ahead of the cloud or get left behind
 
Oracle Modern Information Management Platform - v1.0
Oracle Modern Information Management Platform - v1.0Oracle Modern Information Management Platform - v1.0
Oracle Modern Information Management Platform - v1.0
 
Cork big data_analytics-de_puy_synthes_datsci_cit
Cork big data_analytics-de_puy_synthes_datsci_citCork big data_analytics-de_puy_synthes_datsci_cit
Cork big data_analytics-de_puy_synthes_datsci_cit
 
Kollabria tour 2012 1
Kollabria tour 2012 1Kollabria tour 2012 1
Kollabria tour 2012 1
 

Recently uploaded

UiPath Test Automation using UiPath Test Suite series, part 5
UiPath Test Automation using UiPath Test Suite series, part 5UiPath Test Automation using UiPath Test Suite series, part 5
UiPath Test Automation using UiPath Test Suite series, part 5
DianaGray10
 
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdfUnlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Malak Abu Hammad
 
Epistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI supportEpistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI support
Alan Dix
 
GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024
GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024
GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024
Neo4j
 
Uni Systems Copilot event_05062024_C.Vlachos.pdf
Uni Systems Copilot event_05062024_C.Vlachos.pdfUni Systems Copilot event_05062024_C.Vlachos.pdf
Uni Systems Copilot event_05062024_C.Vlachos.pdf
Uni Systems S.M.S.A.
 
20240609 QFM020 Irresponsible AI Reading List May 2024
20240609 QFM020 Irresponsible AI Reading List May 202420240609 QFM020 Irresponsible AI Reading List May 2024
20240609 QFM020 Irresponsible AI Reading List May 2024
Matthew Sinclair
 
Pushing the limits of ePRTC: 100ns holdover for 100 days
Pushing the limits of ePRTC: 100ns holdover for 100 daysPushing the limits of ePRTC: 100ns holdover for 100 days
Pushing the limits of ePRTC: 100ns holdover for 100 days
Adtran
 
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AI
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AIEnchancing adoption of Open Source Libraries. A case study on Albumentations.AI
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AI
Vladimir Iglovikov, Ph.D.
 
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...
Neo4j
 
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Albert Hoitingh
 
DevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA ConnectDevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA Connect
Kari Kakkonen
 
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
James Anderson
 
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfObservability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Paige Cruz
 
Video Streaming: Then, Now, and in the Future
Video Streaming: Then, Now, and in the FutureVideo Streaming: Then, Now, and in the Future
Video Streaming: Then, Now, and in the Future
Alpen-Adria-Universität
 
Mind map of terminologies used in context of Generative AI
Mind map of terminologies used in context of Generative AIMind map of terminologies used in context of Generative AI
Mind map of terminologies used in context of Generative AI
Kumud Singh
 
Introduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - CybersecurityIntroduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - Cybersecurity
mikeeftimakis1
 
How to Get CNIC Information System with Paksim Ga.pptx
How to Get CNIC Information System with Paksim Ga.pptxHow to Get CNIC Information System with Paksim Ga.pptx
How to Get CNIC Information System with Paksim Ga.pptx
danishmna97
 
Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?
Nexer Digital
 
Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !
KatiaHIMEUR1
 
Full-RAG: A modern architecture for hyper-personalization
Full-RAG: A modern architecture for hyper-personalizationFull-RAG: A modern architecture for hyper-personalization
Full-RAG: A modern architecture for hyper-personalization
Zilliz
 

Recently uploaded (20)

UiPath Test Automation using UiPath Test Suite series, part 5
UiPath Test Automation using UiPath Test Suite series, part 5UiPath Test Automation using UiPath Test Suite series, part 5
UiPath Test Automation using UiPath Test Suite series, part 5
 
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdfUnlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
 
Epistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI supportEpistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI support
 
GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024
GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024
GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024
 
Uni Systems Copilot event_05062024_C.Vlachos.pdf
Uni Systems Copilot event_05062024_C.Vlachos.pdfUni Systems Copilot event_05062024_C.Vlachos.pdf
Uni Systems Copilot event_05062024_C.Vlachos.pdf
 
20240609 QFM020 Irresponsible AI Reading List May 2024
20240609 QFM020 Irresponsible AI Reading List May 202420240609 QFM020 Irresponsible AI Reading List May 2024
20240609 QFM020 Irresponsible AI Reading List May 2024
 
Pushing the limits of ePRTC: 100ns holdover for 100 days
Pushing the limits of ePRTC: 100ns holdover for 100 daysPushing the limits of ePRTC: 100ns holdover for 100 days
Pushing the limits of ePRTC: 100ns holdover for 100 days
 
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AI
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AIEnchancing adoption of Open Source Libraries. A case study on Albumentations.AI
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AI
 
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...
 
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
 
DevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA ConnectDevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA Connect
 
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
 
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfObservability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
 
Video Streaming: Then, Now, and in the Future
Video Streaming: Then, Now, and in the FutureVideo Streaming: Then, Now, and in the Future
Video Streaming: Then, Now, and in the Future
 
Mind map of terminologies used in context of Generative AI
Mind map of terminologies used in context of Generative AIMind map of terminologies used in context of Generative AI
Mind map of terminologies used in context of Generative AI
 
Introduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - CybersecurityIntroduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - Cybersecurity
 
How to Get CNIC Information System with Paksim Ga.pptx
How to Get CNIC Information System with Paksim Ga.pptxHow to Get CNIC Information System with Paksim Ga.pptx
How to Get CNIC Information System with Paksim Ga.pptx
 
Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?
 
Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !
 
Full-RAG: A modern architecture for hyper-personalization
Full-RAG: A modern architecture for hyper-personalizationFull-RAG: A modern architecture for hyper-personalization
Full-RAG: A modern architecture for hyper-personalization
 

Integrating garp e_discovery

  • 1. Integrating GARP® With Your eDiscovery Best Practices Steven C. Markey, MSIS, PMP, CISSP, CIPP, CISM, CISA, STS-EV, CCSK, CompTIA Cloud Essentials Principal, nControl, LLC Adjunct Professor President, Cloud Security Alliance – Delaware Valley Chapter (CSA-DelVal)
  • 2. Integrating GARP® With eDiscovery • Presentation Overview – GARP® Overview – eDiscovery Overview – Integrating GARP® With eDiscovery – Use Case 1 – Use Case 2 – GARP® Supplements
  • 3. Integrating GARP® With eDiscovery • GARP® Overview – What is it? • Information Governance Framework – Phases • Accountability • Transparency • Integrity • Protection • Compliance • Availability • Retention • Disposition
  • 4. Integrating GARP® With eDiscovery • GARP® Overview – Maturity Model • Level 1 – Sub-Standard • Level 2 – In-Development • Level 3 – Essential • Level 4 – Proactive • Level 5 – Transformational
  • 5. Integrating GARP® With eDiscovery • eDiscovery Overview – What Is It? • Electronic Discovery • Electronically Stored Information (ESI) – Who Does It Involve? • People • Process • Technology
  • 6. Integrating GARP® With eDiscovery • eDiscovery Overview – People • Internal – Records & Information Management (RIM) – Internal Counsel/Legal/Compliance – IT • External – External Counsel – Consultants/Contractors
  • 7. Integrating GARP® With eDiscovery • eDiscovery Overview – Process • Generic • EDRM
  • 8.
  • 9.
  • 10. Integrating GARP® With eDiscovery • eDiscovery Overview – Technology • Process-Focused – Presentation/Collection/Archival – Processing/Review/Analysis/Search • Artifact-Focused – Collaboration (Email, IM) – Social Media – File Shares – Electronic Document/Content Management (EDM/ECM) – Telecom – Web Content Management (WCM) • Deployment-Focused – Traditional –
  • 18. Integrating GARP® With eDiscovery • eDiscovery Cloud Solutions – Software as a Service (SaaS) – Platform as a Service (PaaS) – Infrastructure as a Service (IaaS)
  • 19. Integrating GARP® With eDiscovery • eDiscovery Cloud Solutions – SaaS • Social Media-Centric – Arkovi – Archive-It – LiveOffice SocialArchive • Comprehensive – Zantaz – Proofpoint Enterprise Archive – Microsoft Exchange Online Archive (EOA) – Symantec Enterprise Vault.cloud – EMC SourceOne – VARs/Resellers – Google Message Discovery (GMD)
  • 20. Integrating GARP® With eDiscovery • eDiscovery Cloud Solutions – SaaS (Continued) • Comprehensive – Sonian – Smarsh
  • 21. Integrating GARP® With eDiscovery • eDiscovery Cloud Solutions – PaaS • Various Platform Vendors – Build e-Discovery Modules Leveraging Existing Platform » Not Much of a Market / Business Model » Re-Create the Wheel – IaaS • Various Cloud Vendors – Build eDiscovery Solution on IaaS Instance » Market / Business Model = All Cloud » Leverage Existing Licensing » Analogous to Hosting
  • 22. Integrating GARP® With eDiscovery • Integrating GARP® With eDiscovery – People • RIM, Counsel & IT – Process • Legal Holds/Litigation Response • Protection/Compliance/Retention/Disposition – Technology • System of Origination – ECM/EDM – WCM – Collaboration • eDiscovery System – Presentation/Collection/Archival
  • 25. Integrating GARP® With eDiscovery Source: Metalogix StoragePoint
  • 26. Integrating GARP® With eDiscovery Source: Metalogix StoragePoint
  • 28. Integrating GARP® With eDiscovery • Integrating GARP® With eDiscovery – Technology (Continued) • Information Governance Tools – ECM/EDM » SharePoint: » -AvePoint DocAve 6 » -HiSoftware: Compliance Sheriff SP, Security Sheriff SP, Privacy » Documentum: » -Records Manager (RM) » -Retention Policy Services (RPS) » -Physical Records Services (PRS) » -Federated Records Services (FRS) – WCM » Web 1.0/2.0: Active Navigation Discovery Center – RDBMS » SQL Server 2008L Master Data Services
  • 29. Integrating GARP® With eDiscovery Source: DocAve
  • 30. Integrating GARP® With eDiscovery • Integrating GARP® With eDiscovery – Reality • “It’s the economy stupid.” – lean budgets, project holds. • Change is difficult. • Keep all mentality pervades. – OR, highest common denominator (retention requirements). • Departments have different retention schedules. • Some organizations are more manual than others. • Some law cases take a LONG time. – Concurrent investigations/lawsuits affect retention. • Fads fade. – Lean Six Sigma in financial services. – Legacy (“old school”) mentality for leadership.
  • 31. Integrating GARP® With eDiscovery • Case Study 1 – Background – Drivers – Technologies – Limitations – Risks – Lessons Learned – Next Steps
  • 32. Integrating GARP® With eDiscovery • Case Study 1 – Background • CIO Wants to Implement SharePoint – Nix File Shares • Financial Services SMB • Staff: IT, 6 FTEs; Compliance, 1 FTE – Drivers • Compliance • Disjointed Processes/Inefficiencies – Technologies • Email: Exchange Server 2010 • EDM: SharePoint 2010 • Discovery: Backups, Then Symantec Enterprise Vault 10.0
  • 33. Integrating GARP® With eDiscovery • Case Study 1 – Limitations • No Records & Info Mgmt (RIM) Program – ARMA, GARP®….huh? • Organizational Behavior/Culture • Budget • Skill-sets • Resources – Risks • Stakeholder Buy-in • CIO Political Capital • Program Upkeep/Maintenance • Capital Expenditure Requirements
  • 34. Integrating GARP® With eDiscovery • Case Study 1 – Lessons Learned • Stakeholder Buy-in Was Huge • Don’t Forget the Fiefdoms • Healthy Dose of Skepticism – Email Backups • Those in the Trenches Were the Champions – Especially Internal Sales
  • 35. Integrating GARP® With eDiscovery • Case Study 1 – Next Steps • Iterative Implementation of SharePoint • Test eDiscovery Functionality • Implement Document Mgmt Training & Awareness • Publish Naming Conventions & RIM SOPs • Scheduled: – Records Retention Schedule (RRS) Update – Records Clean-out – GARP® Self-Assessment
  • 36. Integrating GARP® With eDiscovery • Case Study 2 – Background – Drivers – Technologies – Limitations – Risks – Lessons Learned – Next Steps
  • 37. Integrating GARP® With eDiscovery • Case Study 2 – Background • RIM Program Dealing w/ Multiple Mergers & Acquisitions • Mid-sized Pharmaceutical (Manufacturing & Sales) • Staff: RIM, 1 FTE w/ Other Responsibilities – Drivers • Resource Limitations • Limited Domain Knowledge • Disjointed Processes/Inefficiencies – Technologies • Email: Exchange Server 2008 • EDM: SharePoint 2007 • Discovery: Backups, Then Symantec Enterprise Vault 9.0
  • 38. Integrating GARP® With eDiscovery • Case Study 2 – Limitations • Currently in Litigation Response • Program Conflicts: – Priority – Budget – Interest • Organizational Integration • Disjointed Processes – Risks • Compliance • Program Upkeep/Maintenance • Operating Expenditure Requirements
  • 39. Integrating GARP® With eDiscovery • Case Study 2 – Lessons Learned • Selling Process Improvement Was Huge – Process Workflow – Litigation Response – Archiving • Sell the Program Too – Use by Competitors – Use by Smaller Organizations – Maturity Through GARP® • Don’t Forget the Fiefdoms – Need Decentralized Support Though • Healthy Dose of Skepticism – Verbal Promises
  • 40. Integrating GARP® With eDiscovery • Case Study 2 – Next Steps • Deploy Email Policy • Implement GARP® Training & Awareness • Scheduled: – Records Clean-out – GARP® Self-Assessment – Integrated Litigation Response Test » Offsite Archiving Vendor » Benefits Administrator » Payroll Administrator
  • 41. Integrating GARP® With eDiscovery • GARP® Supplements – Generic – IGRM – MIKE2.0
  • 43.
  • 44.
  • 45. Integrating GARP® With eDiscovery • Presentation Take-Aways – Know Information Governance (e.g. GARP®) – Know eDiscovery – Learn To Integrate The Two Through: – People – Processes – Technologies
  • 46. • Questions? • Contact – Email: steve@ncontrol-llc.com – Twitter: @markes1, @csdadelval2011 – LI: http://www.linkedin.com/in/smarkey – CSA-DelVal: http://www.csadelval.org/