Intelligent CISO Issue 9 - Page 76

Using cloud encryption in such a way also allows an organisation to get ahead of GDPR regulations. with pointers to the encrypted data associated with the relevant keywords in the index. When a user searches for data, the search query is executed against this local index, returning all of the associated pointers to the CASB. It then searches the application for those pointers and retrieves the encrypted files or records, decrypting the data for the user on the fly. From there, sensitive data is divulged on a need-to-know basis. Because it’s encrypted in the app, it’s not readable by prying eyes such as the rogue cloud vendor employee or the occasional over-reaching government entity. Even within the business, access is provided by policy, giving the security team complete control over who can access what and when. Using cloud encryption in such a way also allows an organisation to get ahead of GDPR regulations. For many businesses, data security headaches are causing security teams to resent public cloud applications. Cloud encryption offers a solution, but businesses shouldn’t have to make a difficult choice between app functionality and data security. The split index approach to encryption will allow businesses to enjoy all the benefits of public cloud applications, while giving security teams full control and visibility of the data, ensuring it remains secure at all times. u 76 Issue 09 | www.intelligentciso.com