How is your company managing cybersecurity when working with  tools that work on top of your core ERP? e.g visualization, control towers,  decision making tools etc..

Security & GRC
446 viewscircle icon1 Upvotecircle icon2 Comments
Sort by:
Chief Information Security Officer in Healthcare and Biotech2 years ago

Outsourcing policy, Information security policy and Data Governance policy are 3 high-level guidelines to ensure risks are managed appropriately  

President and National Managing Principal in Software2 years ago

For us (internally at our firm) we start with a data governance policy that spells out in detail what type of information that each person (or role) within the firm is able to see across all applications and platforms. That enforcement starts at the core system of record which for us is our ERP and HCM platform; our scheduling system; and our service delivery platform. Least privilege access is enforced at those endpoints.

For there, that policy guides all access across all systems and when our BI team creates reports and connections, access rights are pulled from those primary tools and enforced such that when the BI tool is able to generate advanced reporting based on the data, those reports are limited to the people that had access to the underlying systems in the first place and that access cannot not be circumvented through the use of the BI SaaS tool.

The danger comes when companies start using privileged system accounts to pull data into a BI/visualization platform and the resume is access to individuals that were otherwise unauthorized.

Lightbulb on2

Content you might like

Has anyone drafted an SOW for a cloud-based SIEM with setup, migration, and maintenance? I’m working on a FedRAMP-authorized SIEM SOW, migrating from on-prem Splunk, covering data, searches, alerts, dashboards, and models.  Scope includes Environment Setup:  Cloud provisioning, configuration, testing. Connectors/Parsers: Custom data source integration. Content Development: Rules, use cases, threat feeds. Performance Tuning: Query/index optimization. Runbooks: Operational procedures. Also required: 24x7 support, maintenance, lifecycle and application management, role-based training, and documentation.  Must comply with NIST SP 800-53, CJIS, and FedRAMP Moderate+. Goal: Secure, scalable SIEM for rapid deployment. I may be missing elements, so suggestions are welcome. Please share redacted SOWs or tips if possible.

Where does your organization have the greatest cyber skills shortage currently?

Risk & Compliance18%

Security Analysis47%

Application Security20%

Cloud Security12%

Other (please share below)

View Results

How are you currently managing SIEM costs? Have you found effective ways to actually reduce storage costs for your SIEM?

Read More Comments

What would make cybersecurity training more enjoyable?

If it were presented in simpler language.18%

If it was more fun (i.e. gamification)63%

If it were broken into shorter courses16%

Nothing, it's boring no matter what!2%

View Results

With AI adoption accelerating across enterprises, what do you view as the top information security challenge that leaders should address? How can CISOs, VPs and Director’s align governance, risk and security investments to enable AI innovation without creating new exposures?

Read More Comments