Apart from the visibility it provides into an organization’s sensitive permissions and exposed data, the capability is also aimed at assisting with the organization’s remediation efforts.
“BigID’s access governance capability doesn’t just detect overexposed data and overprivileged accounts, it also goes one step further,” Young added.“It can help facilitate access remediation management and actions by natively revoking access permissions to users and groups. BigID can manage remediation centrally, or delegate remediation out to other individuals, BigID applications, and tools via API integrations, in addition to opening up ITSM tickets.”
According to the company, BigID connects to and scans for sensitive data across multiple data sources and types, ranging from unstructured and structured data to mainframes, messaging apps, pipelines, big data, NoSQL, Cloud IaaS, SaaS, PaaS, applications, dev environments, etc. The Access Intelligence offering currently supports cloud on-prem data sources, including AWS S3, GDrive, GCS, Sharepoint, OneDrive, SMB, and Box.
With the help of AI, the new capability offers the ability to classify sensitive and overexposed data based on context which can also be tailored based on a business’ organizational needs.
“BigID leverages proprietary advanced AI, ML, and NLP-based data classification techniques to classify more types of data, more accurately, at the enterprise scale,” Young said. “BigID provides customers the ability to customize classification to suit their unique data environment needs, and then fine-tune these classification models for unparalleled accuracy and scalability. This allows customers to get security and risk context and insights around sensitive data, including its sensitivity, location, residency, and accessibility.”
With the proliferation of AI, security, privacy, governance, and compliance risks concerning sensitive data exposure have heightened. This has pushed BigID to arm up specifically against AI-based threats, Young added.