Scribd Logo
Upload

Welcome to Scribd!

  • 4 views

    Webinar 2550 Slides

    Uploaded by

    Ranjan Prakash

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content

    You might also like

    Webinar 2550 Slides

    Uploaded by

    Ranjan Prakash
    4 views10 pages

    Original Title

    Webinar-2550-Slides

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    4 views10 pages

    Webinar 2550 Slides

    Uploaded by

    Ranjan Prakash

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 10

    4/30/2019

    Exploring Windows Server’s Sponsored by

    Data Classification
    Infrastructure to Find Private
    Data and Comply with GDPR,
    et al
    © 2019 Monterey Technology Group Inc.

     Made possible by

    Thanks to

    1
    4/30/2019

     File Classification Infrastructure (FCI) which first appeared in


    Windows Server 2008 R2 and continues to be enhanced in later
    versions of Windows
    Preview of key  How classification works
    points  Where data classification types defined
     Where are the classification rules defined and managed?
     Once files are classified what can you go?

    Confidentiality
    Dynamic Access • High
    Rules Control – Resource • Medium

    File Properties • Low


    • None

    Classification
    Infrastructure Classification

    High

    2
    4/30/2019

     Classification
     Defined at file server level
     Schedule
    File  Rules
    Classification  Scope
     Method
    Infrastructure  Parameters specific to method
     Properties

     File server crawls specified folders according to schedule


     For each rule specifying a property should be tagged on the file
     Properties stored in Alternate Data Stream on the file

     Classification methods
     Manual
     End user
    File  Location
    Classification  Folder Classifier
     Content
    Infrastructure  String
     Case sensitivity
     Regular Expression
     Custom
     PowerShell

    3
    4/30/2019

    File  Classification properties


     yes/no
    Classification  date/time
    Infrastructure  multiple-choice list
     ordered list
     Stored in AD and accessible on all file servers in domain

    Multiple File
     Export config from baseline computer
    Servers?  https://blogs.technet.microsoft.com/filecab/2014/06/18/announc
    ing-the-data-classification-toolkit-for-windows-server-2012-r2/

    4
    4/30/2019

     What next?
     Reporting
     Very limited
    Once files are  File management tasks
    classified…  Expiration
     Move to folder
     Email ahead of time
     Rights Management Encryption
     Custom
     Run executable
     Dynamic access control

     Pros
     “Free”
     No client necessary
     Leverages existing AD infrastructure
     Limitations
    Bottom line  Windows Server only
     classification rules must be set on each file server
     make sure that Windows Search is able to index the files you
    want to classify, which might mean installing the Microsoft
    Office Filter Pack, and iFilters for other file types, on your file
    servers
     Reporting isn’t centralized, so you’ll need to touch each server
    to generate a report.

    © 2019 Monterey Technology Group Inc.

    5
    4/30/2019

    Netwrix Auditor
    Know Your Data. Protect What Matters.

    Welcome

    Jeff Melnick
    Netwrix Solutions Engineer
    Email: jeff.melnick@netwrix.com

    6
    4/30/2019

    About Netwrix Auditor

    Netwrix Auditor
    Netwrix Auditor is an agentless data security platform that empowers organizations to accurately identify
    sensitive, regulated and mission-critical information and apply access controls consistently, regardless of where
    the information is stored.

    It enables them to minimize the risk of data breaches and ensure regulatory compliance by proactively
    reducing the exposure of sensitive data and promptly detecting policy violations and suspicious user behavior.

    About Netwrix Corporation

    Year of foundation: 2006

    Headquarters location: Irvine, California

    Global user base: over 300,000

    Recognition:
    7 years among the fastest growing
    software companies in the US

    More than 140 industry awards

    7
    4/30/2019

    Netwrix Auditor Evolution


    Standalone Change Unified Platform for Visibility and Governance Visibility Platform for Data-Centric Audit
    Auditing Tools Change, Configuration Platform for Hybrid Cloud User Behavior Analysis Protection
    and Access Auditing Security and Risk Mitigation

    Predefined Change Compliance Virtual and Cloud Behavior Anomaly Data Discovery &
    Auditing Reports Reports Deployment Discovery Classification Edition

    Interactive Search RESTful API Risk Assessment User Profile

    Dashboards Add-on Store Alerts on Threat Automated Response


    Patterns

    File Analysis Content Services

    2008 2013 2016 2017 2018 2019

    Netwrix Auditor Unified Platform


    Data Discovery & Classification

    Infrastructure Unstructured Data Structured Data Cloud Free Add-ons

    Netwrix Auditor for Netwrix Auditor for Netwrix Auditor for Netwrix Auditor for Add-on for
    Active Directory Windows File Servers SQL Server Azure AD Generic Linux Syslog

    Netwrix Auditor for Netwrix Auditor for Netwrix Auditor for Netwrix Auditor for Add-on for
    Network Devices SharePoint Oracle Database Office 365 Amazon Web Services

    Netwrix Auditor for Netwrix Auditor for Add-on for


    Windows Server EMC ServiceNow ITSM

    Netwrix Auditor for Netwrix Auditor for Add-on for


    VMware NetApp Splunk

    Netwrix Auditor for Add-on for


    Exchange IBM QRadar

    8
    4/30/2019

    Where is My Sensitive Data Located ?

    Gaining a high-level view Prioritizing efforts Discovering sensitive data stored


    of the sensitive data you store and spending on the most outside of a secure location
    critical assets first

    Who Has Access to the Sensitive Files?

    Finding overexposed Identifying owners Streamlining attestations


    pieces of sensitive data of sensitive data of access rights to sensitive data

    9
    4/30/2019

    Netwrix Auditor

    Demonstration

    10

    You might also like