SharePoint is a widely-deployed enterprise collaboration tool. Although collaboration with SharePoint increases the value organizations get from their unstructured data, protecting broadly accessible SharePoint data from internal and external threats is an ongoing challenge.
User access rights to SharePoint data often do not align with business needs, leaving sensitive data vulnerable, and extranet and public-facing SharePoint web sites face traditional web-based threats and hackers.
"While we might have a fairly good handle on structured data in databases, we don't have this same knowledge about what's in our file shares and in our collaboration systems," said Neil MacDonald, VP & Gartner Fellow. "To securely enable the sharing of sensitive information via collaboration, we first need to understand what is being shared, how and when it is being shared and with whom it is being shared. However, most organizations don't have this level of visibility, creating a significant security blind spot."
SecureSphere for SharePoint features include:
Access Rights Visibility, Audit Trail & Policy Control: Aggregate and consolidate user rights across SharePoint sites, files and folders; continuously monitor file activity and respond when data access deviates from corporate policy.
Data Owner & Stale Data Identification: Use file and folder access patterns to identify data owners and provides better compliance with security standards; identify and archive or delete data stored in SharePoint that is not being used, reducing management overhead and increasing available data storage.
Web Application & Database Security Protection: Protect SharePoint against current and future online security threats such as SQL injection; monitor and/or block access to SharePoint's Microsoft SQL database to limit access to users with a legitimate data use.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.