AWS Re: Inforce: BigID Aims to Decrease Risk and Automate Cloud Policies

Highlights:

• BigID, a supplier of data intelligence platforms, announced enhanced auto-detection and automated discovery for Amazon Web Services (AWS) accounts and datasets.
• BigID’s goal with its automated discovery feature is to make it simpler for businesses to identify their accounts and data automatically and to extend data security throughout the cloud.

BigID, a supplier of data intelligence platforms, announced enhanced auto-detection and automated discovery for Amazon Web Services (AWS) accounts and datasets, in addition to privacy- and security-aware access control for AWS cloud architecture.

The pretty standard AWS user has multiple accounts, so the addition of the new intelligent access control feature is intended to reduce risk and automate role-based policies across AWS. This includes S3, Redshift, Athena, EMR, and other services, and it also includes extended integrations with AWS Lake Formation and AWS Glue, according to the company.

BigID Enables Intelligent Access for Simplifying Security

According to Eran Gewurtz, director of product management for security at Amazon Web Services (AWS), “The intelligence access control feature is essential because it simplifies and streamlines data security within AWS. This feature does more than find data that is at risk; it also provides IT with the ability to set role-based policies in AWS using intelligence from BigID.”

The aim is to serve AWS customers in automating intelligent access management to permit and limit access to their sensitive data, simultaneously developing business policies depending on the sensitivity of the data and the context in which it is stored. Customers can improve their cloud data risk posture and decrease complexity by automatically securing high-risk data while adding tags and labels to their AWS data depending on the data’s sensitivity and risk.

Automated discovery

BigID’s goal with its automated discovery feature is to make it simpler for businesses to identify their accounts and data automatically and to extend data security throughout the cloud. This will allow BigID to serve its customers better.

Customers can automatically locate sensitive data, assets, and accounts within AWS with the help of the newly introduced capabilities, which do not need any human processes or setups. These features also save time and money by automatically provisioning roles and permissions across their multi-account environments, and they automate data scanning across multiple accounts and data sources. Additionally, these functionalities automatically supply roles and permissions across their multi-account domains.

Organizations utilizing AWS Control Tower may now automate the deployment of BigID via the AWS Marketplace. These augmented features aim to reduce complexity, cost, and time-to-insight for enterprises managing data on AWS.

Experts’ Take

“Automated discovery gives you a head start on finding the most vulnerable data — and accounts — across an organization. This type of granular autodetection layers in automation and machine learning (ML)-powered insight to accelerate actionable data protection in the cloud.” – Gewurtz

Gewurtz stated, “Data in the cloud can be tricky to protect: You have to know what it is, whose it is, where it is — and on top of that, you need to configure everything to have the right protection and access controls. Data at risk is a top priority for security teams, and one of the most important issues is how to protect that data.”