An organization’s data is constantly under attack. Whether it’s through ransomware attacks, cyber-threats or employee misguidedness, all expose organizational data and put it at risk. Encryption and access control are the keys to securing data and cyber resiliency, but most storage systems throughout the infrastructure (primary, secondary and protection storage) treat security as an afterthought reducing flexibility and increasing complexity. In this webinar we discuss the three reasons why storage security is failing.
Apidays Singapore 2024 - Modernizing Securities Finance by Madhu Subbu
Webinar: Three Reasons Storage Security is Failing and How to Fix It
1. Three Reasons Storage Security is Failing
and How to Fix It
Learn three storage security fixes:
1. Encryption
2. Security
3. Reporting
For audio playback and Q&A go to: http://bit.ly/3SecurityFail
8. ● Typically at the final data resting point
● Secondary Storage, Object Storage, Tape
● Primary Storage has almost NO:
○ Encryption
○ Access Control
○ Data Management
The Bottom-Up Approach: Storage Security and
Privacy Today
9. Security and Privacy
are Reactive
● Add software to encrypt data on
primary storage
● Add data protection software
● Add data management
10. Reactive
Security and
Privacy Are
Complex and
Fragile
● Encrypting data requires creating a new
file system of volume
○ Old data has to be copied in
● Data management requires adding
secondary software with limited
integration
● Access control and auditing requires third
party software that scans storage
systems
● All of these add-ons impact performance
12. ● Encryption is inline
○ Always-on and starts on day 1
● Better data protection features
○ Leads to fewer “super-user” accounts
and better access control
● Built-in reporting and auditing
○ Proactive search for attacks
Security Has to Start
with Primary Storage
13. ● Data Management needs to be built in
○ More than a cache needs to move data across
systems
● Has to be granular
○ File by file required to “Right to be Forgotten”
● Needs to support cloud as a destination
○ Limits exposure
○ Cuts costs
○ Must be encrypted
Privacy Has to Start with Primary Storage
14. Still Has to Act
Like Primary
Storage
● Has to deliver primary storage
performance
○ Take full advantage of flash
● Has to have primary storage
features
○ Snapshots, replication, data
protection
○ Multi-protocol - file and block
23. Three Reasons Storage Security is Failing
and How to Fix It
For complete audio and Q&A please register for the On Demand Version:
http://bit.ly/3SecurityFail