Data Store Risk Rating

Overview

Netskope One DSPM's Data Store Risk Rating answers the question, “Which are the riskiest data stores?” The score is assigned to data store for the overall risk based on misconfiguration, over-privileges and concentration of sensitive data. This score will help you prioritise actions to keep your data stores secure.

Data Store Risk Rating and related risk scores are displayed on Dashboard widgets and Data Store pages. To learn more, please visit our Dashboard article.

Data Store Risk Components

Each data stores's risk rating is based on:

Misconfiguration Risk
Over Privileged Data Store Risk (Stale)
Data Store Sensitive Data Access Risk

Each data store risk score is on the scale of 0 to 100, with the score 100 assigned to the data store with maximum risk when compared to other data stores.

Misconfiguration Risk

Risk score assigned to data store due to incorrect or suboptimal security configuration that leaves sensitive data vulnerable. Netskope One DSPM checks for public accessibility, encryption and backup configurations. Inability to track any of these configurations is also considered as risk. This score will help you monitor and assess data stores configurations and take actions to keep data secure. To learn more, visit our Configuration Analysis article.

Over Privileged Data Store Risk (Stale)

Maximum risk score assigned to a data store having multiple users with stale privileges. Netskope One DSPM computes staleness based on when the data store was last accessed by user. This score will help you monitor and assess users with privileges that they are no longer using and take access management actions.

Data Store Sensitive Data Access Risk

Maximum risk score assigned to a data store having high concentration of sensitive data. Score is higher for data type with higher sensitivity level. This score will help you monitor data stores with highly sensitive data and take actions if required.

Required Data Stores Capabilities

Data-in-use Monitoring and Privilege Analysis capabilities are required for Netskope One DSPM to be able to calculate complete Data Store Risk Rating for all data stores.

Data In Use Monitoring, for Over Privileged Data Store Risk (Stale)
Privilege Analysis for Sensitive Data Access Risk

If Data-in-use Monitoring and Privilege Analysis are disabled, then Data Store Risk Rating will be calculated based on misconfiguration analysis only.

Data Store

Data Store Inventory

The Data Store Inventory page with where all discovered and connected data stores are listed. Data Store Risk Rating is displayed for connected data stores.

The individual components of the risk can also be viewed by expanding the data store record.

Users can sort or filter list of connected data stores by the Data Store Risk Rating or any of the above mentioned individual risks.

Misconfiguration Analysis

The Misconfiguration Analysis page displays data store misconfiguration related information. Misconfiguration Risk score is displayed against each listed data store on this page. Users can sort or filter list of data stores by the Misconfiguration Risk score.

Privilege Analysis

The Privilege Analysis page displays data store privilege related information. Sensitive Data Access Risk and Over Privileged Data Store Risk (Stale) scores are displayed against each listed data store on this page. Users can sort or filter list of data stores by these risk scores.

Welcome to the Netskope One DSPM Knowledge Base

You will find your answers here!

Sorry, we didn't find any relevant articles for you.