Infographic: Managing Information Security and Data Governance in SharePoint and Office 365
How to Effectively Manage Information Security and Data Governance
Data governance and security are about more than just having strategy in place. You also need the ability to manage risk by identifying issues and potential violations, controlling access to content based on its sensitivity and have auditing capabilities. And most importantly, it needs to be a repeatable process that can be easily adjusted as needed.
This step-by-step illustrated guide lays out each phase; from defining your strategy to using NC Protect to enforce compliance and apply intelligent security to SharePoint, Office 365 and file share content. It also provides tips for a successful and consistent data security and governance program.
Tips for Successful Content Security & Compliance
- Ensure your information security and compliance strategy aligns with the organization’s overall strategy.
- Change your security approach – instead of defining groups, refine user attributes and claims.
- Have key stakeholders review the strategy regularly for changes, new policies and laws.
- Implement a solution to continuously audit content and user actions, detect violations and enforce policies to maintain data integrity, security and compliance.
Protect Data with Dynamic, Content and Context Aware Security
Locate all sensitive and confidential data (PII, IP, Board, Contracts, HR, Cutsomer data, etc.) in both on-premises and cloud environments including SharePoint, Office 365, file shares, etc. Regularly scan content at rest and in motion to detect non-compliant data and violations.
CLASSIFY & RESTRICT ACCESS
Classify data at the file level based on pre-defined policies or users can manually classify data using pre-defined values.
Set file permissions based on metadata and utilize user claims in combination with item metadata to dynamically filter the content displayed in list views, search results or when using an item URL without changing item permissions.
Further secure sensitive content by encrypting it immediately so only properly credentialed users will be able to read the content—whether inside or outside of SharePoint or Office 365.
Prevent users from publishing, distributing, or emailing confidential and sensitive documents. Stop users from adding non-compliant content. Trigger workflows to alert users to fix issues, get manager approvals and quarantine documents.
Track and monitor the movement of confidential and sensitive documents; including who views, prints, and emails the documents.