Help Center
News
Help Center
News
Popular
Architecture and High-level Information
Scans
Agents
How to Use Dashboards
How to Use Data Asset Inventory
How to Use Tags
How to Manage Business Processes
How to Work with Data Assets and Targets
How to Get Started with Data Asset InventoryData Assets and Targets - OverviewData Assets and Targets - Data AssetsHow to Use the SDV3™ DashboardWhat is an Asset?Example Data Asset Inventory SetupHow to Create New Data AssetsHow to View Details About Data AssetsHow to Search for a Data AssetWhat is a Target?How to View Target Details and Search for a TargetHow to Add a Cloud TargetHow to Add a Collaboration Tools TargetHow to Add a Database TargetHow to Add an E-Mail TargetHow to Create an Exchange Online TargetHow to Add a Remote Machine TargetHow to Add a Website TargetHow to Edit a TargetHow to Remove a TargetHow to Bulk Import TargetsHow to Bulk Assign Tags to TargetsHow to Manage a Target PermissionHow to Remove a Target PermissionWhat is Remediation?
How to Install\Uninstall and Set Up Spirion Sensitive Data Platform
How to Use Logs
How to Manage Users and Roles
Settings and Resources
Additional Resources
Reports
Reporting API
Customer Support Articles

What is Remediation?

What is meant by the term "Remedation," or "Data Remediation," and how is it applied in Spirion Sensitive Data Platform and represented in charts and graphs?

For user level remediation, see "What is ULR (User Level Remedation)?"

Remediation, or data remediation, refers to any action taken to minimize the impact of sensitive data, protect sensitive information, or destroy or anonymize it to protect against and reduce the risk of a data breach or exfiltration.

This is a proactive way to address vulnerabilities, risks, and ensure data is secure and private, mitigating risks and adhering to regulations.

Example: Remediate Exposed Passwords

After performing a scan in Spirion Sensitive Data Platform, your scan results indicate a directory on a company laptop contains hundreds of passwords in plain text.

As a remediation you decide to redact all of the password text from the files in the offending directory.

The remediation action can be performed a number of different ways, such as:

  • An automated action defined in a Scan Playbook (rules created by you or someone else that define what to do when scanning files and locations).
  • A manual action in a Scan Playbook
  • A manual override via the end user. See ULR (user level remediation).

Remediation within Spirion Sensitive Data Platform

Scan Playbooks (or "Playbooks") list the following actions under the "Remediation" category:

  • Restrict Access
  • Quarantine
  • Shred
  • Redact
  • Execute Script
  • Take No Action
  • Ignore

Of all of the options listed, the Remediated Risk tile in the SPIglass Dashboard displays the value of sensitive data that has been remediated via the Shred or Redact methods only.

Compensating Controls versus Remediation

Compensating Controls are actions applied to sensitive data discovered in your environment to mitigate risks.

These actions include the following:

  • Restricted Access: Limiting who can view or interact with the data
  • Script Execution: Running scripts to manage or remediate data
  • Quarantine: Isolating sensitive data to prevent unauthorized access
  • Ignore: Choosing not to act on certain sensitive data matches or sensitive data locations

Note: Not included here is Classification, User Action, Assign, Notify, MIP Label, Shred, React, Take No Action

  • Compensating Controls are NOT the equivalent of Remediation actions
  • Compensating Controls and Remdiation are mutually exclusive terms
  • Data which has received the Remediation actions Shred or Redact are excluded from any chart, graph, or report which measures or captures sensitive data that has received Compensating Controls (that is, the following actions: Restricted Acccess, Script Excution, Quarantine, Ignore)
  • Sensitive data which has received Compensating Controls actions is referred to as "Managed data." Managed data is sensitive data that has not been fully remediated, but it is not as vulnerable as data that has not been acted upon.


Was this article helpful?

Powered by Product Fruits