Home » Resources » Resolving Audit Failures: Strengthening Data Access Controls
Resolving Audit Failures: Strengthening Data Access Controls
In one of the largest investment banks in the world, a high visibility audit revealed inappropriate access to project and application shares. Board-level stakeholders were made aware of the failed audit and the severity of the findings required immediate remediation of the access control issues.
The Challenge: Data Collection
The client leveraged internally developed tools to scan storage devices on their network. However, process failures and limited functionality resulted in poor coverage and data inaccuracies. Additionally, due to the combination of legacy and new storage devices within the environment, many different and nuanced data collection requirements were needed. The client also desired to take advantage of high-confidence datasets already in place, so that the necessary data could be incorporated into the source feeds to enable accurate analysis of the unstructured data environment. It was also important to build a sustainable and repeatable process to ensure that the remediated shares remain compliant as per the defined policies and standards and that new violations are identified and immediately resolved including the root cause of the violation.
