Document Controls
For Security & Risk Professionals
| Primary Analyst Photo | Document Information | Rate this Document |
|---|---|---|
 |
January 22, 2010 Own Nothing. Control Everything.Five Security Patterns For Securing Data On Devices You Don't Ownby Andrew Jaquith with Robert Whiteley, Ben Echols |
Average: 8
(8 ratings)
|
This is an excerpt
Executive Summary
Security and risk professionals are facing a growing concern: Sensitive data is stored on assets that the company does not own. Increased use of contractors and consultants, increased offshoring and outsourcing, and Tech Populism are driving this concern. Enterprises can begin solving this problem if they abolish the assumption that data control requires the enterprise to own its endpoints. When all endpoints are treated as hostile, enterprises can implement one of five design patterns to secure their sensitive information: thin client, thin device, protected process, protected data, and eye-in-the-sky. Enterprises should also seek to provide high-performance, friction-free alternatives to local data storage, insist that business partners are implementing technical controls where possible, and audit their partners regularly.
TABLE OF CONTENTS
- Sensitive Data Spreads To Non-Company-Owned PCs
- Five Technology Design Patterns Break the Ownership-Control Linkage . . .
- . . . While Policies And Processes Plug Gaps That Technology Can't Fix
RECOMMENDATIONS
- Break The Link Between Device Ownership And Data Control
- Related Research Documents
This is an excerpt
Buy Risk-Free
Price: US $499
Our Service Guarantee: If you are not completely satisfied with this document, notify Forrester within 24 hours of purchase for a full refund.
Already a Forrester Client?
Log in to read this document.
