BigID is doing interesting things around the under-addressed topic of identifying how sensitive data is used across a customer’s organization, especially around applications that are adjacent to traditional data loss prevention (DLP) use cases, according to Ryan Kalember, Proofpoint’s executive vice president of cybersecurity strategy.
It’s difficult for organizations to figure out and understand how they’re using data that might be sensitive to subject to regulatory requirements like the European Union’s GDPR, Kalember said. Finding all this data across an organization and all its applications is a nontrivial task, Kalember said, and is far more complicated that simply putting together a policy document that describes how data is used.
Companies like BigID are actually trying to find unstructured data both in the cloud and on-premises and build real controls around it, Kalember said. As more security departments become responsible for privacy as well, Kalember expects to see more interest in the capabilities BigID can bring to bear.