Cybersecurity Glossary: Data Security

Data Security regards the process of protecting files, databases, and accounts on a network by adopting a set of controls, applications, and techniques that identify the relative importance of different datasets, their sensitivity, regulatory compliance requirements and then applying appropriate protections to secure those resources.

Similar to other approaches like perimeter security, file security or user behavioral security, data security is not the be-all, end-all for a security practice — it’s one method of evaluating and reducing the risk that comes with storing all kinds of data.

The core elements of data security are: confidentiality, which ensures that data is accessed only by authorized individuals; integrity ensures that information is reliable, as well as accurate; and availability, which ensures that data is both available and accessible to satisfy business needs.

Here are a few data security considerations:
Where is your sensitive data located? You won’t know how to protect your data if you don’t know where your sensitive data is stored.
Who has access to your data? When users have unchecked access or infrequent permission reviews, it leaves organizations at risk of data abuse, theft or misuse. Knowing who has access to your company’s data at all
times is one of the most vital data security considerations to have.
Have you implemented continuous monitoring and real-time alerting on your data? Continuous monitoring and real-time alerting are important to meet compliance regulations and they can detect unusual file activity, suspicious accounts, and computer behavior before it’s too late.

Related articles:
Proactive Ways to Defend Your Data

View the Cybersecurity Glossary