Monday Morning Data Chat

#173 - Bart Vandekerckhove - Data Security Deep Dive

May 8, 2024
Guest
Bart Vandekerckhove
Bart Vandekerckhove, data security expert, discusses challenges faced by data teams using traditional IAM tech. Topics include zero trust concept, breaches, balancing security with efficiency, promoting security culture, incentives for data practitioners, transition to observability-centered security, managing sensitive data with masking rules and access controls.
Ask episode
AI Snips
Chapters
Transcript
Episode notes
ADVICE

Service Account Security

  • Implement least privilege access management and time-bound access for service accounts.
  • This limits potential damage from forgotten or breached accounts.
ANECDOTE

Microsoft Service Account Breach

  • Microsoft suffered a breach due to a forgotten service account with admin privileges.
  • This highlights the risk of long-standing access and the need for ephemeral access.
ADVICE

Data Access Management

  • Data owners or stewards should ideally manage access for their specific data domains.
  • However, a divide between data and identity teams often hinders this.
Get the Snipd Podcast app to discover more snips from this episode
Get the app