Upload File

the right way to secure your saas backup · data stored in g suite and o˜ice 365 is the lifeblood...

  • Home
  • Documents
  • THE RIGHT WAY TO SECURE YOUR SAAS BACKUP · Data stored in G Suite and O˜ice 365 is the lifeblood of your business. ... SaaS providers are blind to bad deletion requests DELETION
1
THE RIGHT WAY TO SECURE YOUR SAAS BACKUP Data stored in G Suite and Office 365 is the lifeblood of your business. CAUSES OF SAAS DATA LOSS 64% of data loss incidents are due to human error HUMAN ERROR 1 SaaS providers are blind to bad deletion requests DELETION REQUEST 2 Sync issues with third-party apps puts your critical data at risk – with no undo SYNC ERROR 3 Bad people driven with one idea: steal your precious data HACKERS 4 27% of all electronic crime events are caused by malicious employee action INSIDER THREAT 5 RIGHT QUESTIONS RIGHT ANSWERS RIGHT SAAS BACKUP Rogue soſtware intentionally designed to attack your applications MALWARE 6 Failure to meet industry-scale extortions results in data loss RANSOMWARE 7 KEEP YOUR SAAS DATA SAFE WHAT THE ONLY THING WORSE THAN NO BACKUP SOLUTION — A SLOPPY BACKUP SOLUTION WHAT format is my data transferred and stored in? WHERE is my data stored? HOW does my backup provider connect with my email and collaboration systems? WHO has access to my backup system? UNDERSTAND THE POWER OF ENCRYPTION Secure data at rest with 256-bit AES object-level encryption Generate unique encryption keys Consistently rotate master key protecting the unique keys Provide autonomy to manage keys on your own Robust intrusion detection system Audit logs Password management Dark web monitoring of lost credentials WHERE DATA CENTERS MUST MEET COMPLIANCE STANDARDS HOW WHO ENSURE YOUR APPLICATION ACCESS IS SECURED Compliance with government regulations for data retention SOC 2 compliant Third-party certifications Google and Microsoſt recommend MFA Many SaaS backup providers use service accounts, knowing the dangers all too well Security guaranteed Provider convenience at the cost of your data 60% of IT professionals shared privileged account access credentials with co-workers OAUTH 2.0 SERVICE ACCOUNTS VS AVOID MISUSE OF PRIVILEGED ACCESS FIND ALL THE ANSWERS ‘123456’ and ‘Password’ — rated as the worst passwords account for almost 10% of all passwords. SOURCES SaaS data loss Data breaches by human error Insider threat Shared privileged account access Weak passwords Protects privileged credentials with multi-factor authentication (MFA) The risky practice of storing passwords does not allow for MFA 77% of companies that use SaaS applications suffered a data loss incident over a 12 month period. SAAS BACKUP WHITE PAPER SECURING YOUR SAAS BACKUP - THE WHAT, WHERE, HOW, AND WHO DOWNLOAD WHITEPAPER Copyright © 2019 Spanning Cloud Apps, LLC. All Rights Reserved.

Upload: others

Post on 24-May-2020

2 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: THE RIGHT WAY TO SECURE YOUR SAAS BACKUP · Data stored in G Suite and O˜ice 365 is the lifeblood of your business. ... SaaS providers are blind to bad deletion requests DELETION

THE RIGHT WAY TO SECURE YOUR SAAS BACKUP

Data stored in G Suite and O�ice 365 is the lifeblood of your business.

CAUSES OF SAAS DATA LOSS

64% of data loss incidents are due to

human error

HUMAN ERROR

1

SaaS providers are blind to bad deletion requests

DELETION REQUEST

2

Sync issues with third-party apps puts your critical data at risk – with no undo

SYNC ERROR 

3

Bad people driven with one idea: steal your

precious data

HACKERS

4

27% of all electronic crime events are caused by malicious employee

action

INSIDER THREAT

5

RIGHT QUESTIONSRIGHT ANSWERS

RIGHT SAAS BACKUP

Rogue so�ware intentionally designed to attack your applications

MALWARE

6

Failure to meet industry-scale extortions

results in data loss

RANSOMWARE

7

KEEP YOUR SAAS DATA SAFE

WHAT

THE ONLY THING WORSE THAN NO BACKUP SOLUTION — A SLOPPY BACKUP SOLUTION

WHAT

format is my data transferred and stored in?

WHERE

is my data stored?

HOW

does my backup provider connect with my email and collaboration systems?

WHO

has access to my backup system?

UNDERSTAND THE POWER OF ENCRYPTION

Secure data at rest with 256-bit AES object-level

encryption

Generate unique encryption keys

Consistently rotate master key protecting

the unique keys

Provide autonomy to manage keys on

your own

Robust intrusion detection system

Audit logs Password management Dark web monitoring of lost credentials

WHERE

DATA CENTERS MUST MEET COMPLIANCE STANDARDS

HOW

WHO

ENSURE YOUR APPLICATION ACCESS IS SECURED

Compliance with government regulations

for data retention

SOC 2 compliant Third-party certifications

Google and Microso� recommend MFA

Many SaaS backup providers use service accounts, knowing the dangers 

all too well

Security guaranteed

Provider convenience at the cost of your data

60% of IT professionals shared privileged account access credentials with co-workers

OAUTH 2.0

SERVICE ACCOUNTS

VS

AVOID MISUSE OF PRIVILEGED ACCESS 

FIND ALL THE ANSWERS

‘123456’ and ‘Password’ — rated as the worst passwords account for almost 10% of all passwords.

SOURCES

SaaS data loss Data breaches by human error Insider threat Shared privileged account access Weak passwords

Protects privileged credentials with multi-factor

authentication (MFA)

The risky practice of storing passwords does not allow 

for MFA

77% of companies that use SaaS applications su�ered a data loss incident over a 12 month period.

SAAS BACKUP WHITE PAPER

SECURING YOUR SAAS BACKUP - THE WHAT, WHERE, HOW, AND WHO

DOWNLOAD WHITEPAPER

Copyright © 2019 Spanning Cloud Apps, LLC. All Rights Reserved.

https://spanning.com/resources/whitepapers/securing-your-saas-backup/
https://www.slideshare.net/SpanningCloudApps/preapare-to-recover-fully-protect-your-salesforce-data-salesforce-world-tour-london-2018
https://www.csoonline.com/article/2133631/most-data-breaches-caused-by-human-error--system-glitches.html
https://arxiv.org/pdf/1805.01612
https://www.darkreading.com/operations/identity-and-access-management/shared-passwords-and-no-accountability-plague-privileged-account-use/d/d-id/1321306
https://www.skyhighnetworks.com/cloud-security-blog/office-365-security-for-a-casb-detect-compromised-accounts-and-insider-privileged-user-threats/

8p inverted duplication and deletion - Caravancaravancreate.com/unique/media/information... · Inverted duplication & deletion of 8p Inverted duplication with deletion of 8p, known

CAREER DEVELOPMENT The lifeblood of procurementsigiosagie.com/images/feb2015/The Lifeblood of Procurement - Supply Management - Mar...CAREER DEVELOPMENT Unsurprisingly, the best purchasing

2009 - Copy Deletion

The Lifeblood Of A Squadron

Lifeblood 3

Joel Hayward, "Lifeblood: A Book of Poems"

Racing’s Lifeblood – The Future Landscape for Wagering

RATIONAL DELETION

Lifeblood Website Overview. Message from Roche Medical expertise and artistic inspiration combine to create LIFEBLOOD: a clinically accurate and visually

The Lifeblood of London

Maintaining the lifeblood article

Email: The Lifeblood of Communications for Associations

Essential Pharmaceuticals v. Lifeblood Medical

Prospecting—The Lifeblood of Selling Chapter 7

Racing’s Lifeblood – The Future Landscape for Wageringcorporate.hkjc.com/image/201405/0506_p01_03_Breon_Corcoan.pdf · Racing’s Lifeblood – The Future Landscape for Wagering

The Lifeblood of Luxury Brand Success

 · Prader-WilIi syndrome Chromosome 15q14 deletion syndrome Chromosome 15q25 deletion syndrome HCD Chromosome 15q26-qter deletion syndrome Levy-Shanske syndrome Chromosome 16p deletion

Lifeblood magazine autumn digital

Growing Smart Leaders !! The Lifeblood of Progress

Mission support: The lifeblood of the ELCA€¦ · Mission support: The lifeblood of the ELCA (page 8) Living Lutheran, October 2018 Mission support: The lifeblood of the ELCA (page

Secure Deletion

DUMAUG: TAXATION, COUNTRY'S LIFEBLOOD

CSDAP Deletion

Lifeblood 4

[email protected] Lifeblood Alliance submission to … · 2020. 9. 1. · Lifeblood Alliance submission to Productivity Commission Inquiry into progress with the reform

The Lifeblood of Innovation A Currency of

Antecedent-Contained Deletion as Deletion · ANTECEDENT-CONTAINED DELETION AS DELETION 207 The fact that the pronoun cannot refer to Tom straightforwardly follows from the fact that

Community Newspapers - Community Lifeblood

The Lifeblood of State Commerce - SCCOMPETES

The PI System: The Lifeblood

Finance: Economic Lifeblood or Toxin?

Three Perspectives on SaaS Companies - FLG · PDF fileThree Perspectives on SaaS Companies SaaS CEO/Board Issues – CFO Perspective What makes a SaaS company? SaaS Revenue

Prospecting-- LifeBlood of Selling

PREPARATION: The Lifeblood of a Leader …eb055b4c0fba86282c9b-68cdb13e66f16c7ff96c0ae9d883f68e.r6.cf2…Ezra-Nehemiah: Return-Restore-REBUILD 1/28/18 1 PREPARATION: The Lifeblood

Data Deletion and Recovery. Data Deletion What does data deletion mean in your own words?