Key Findings

• Most organizations have outdated policies and frameworks, and obsolete tooling that focuses on finding attackers. These tools lack adequate capabilities to secure data for advanced use cases requiring internal and external data sharing.
• Patchworks of use case and silo-specific security controls result in security and risk management (SRM) leaders failing to implement consistent data security policies.
• This complexity causes, for example, an explosion of data policy elements and rules encouraging vendors to rapidly amalgamate disparate data security capabilities into data security platforms. Organizations applying these newer platforms are streamlining data access controls and protection.
• There are four main data security platform (DSP) categories. There are broad-spectrum DSPs (bDSPs) — which provide strong consolidation for structured data in databases located in the cloud — and data security posture management (DSPM), which offers posture management and data discovery across silos. There are also data loss prevention (DLP) and data access governance (DAG) products, which are differentiated tools with a narrower primary focus — providing a solid basis for processing unstructured data.