SecuPi leads with overarching data protection capabilities and broad zero-code platform support, from Cloud analytics platforms (Snowflake, GCP, AWS, Azure stack and Databricks) to SQL Server, Oracle, no-SQL data stores, Denodo, Trino and every custom / packaged data application.
SecuPi is the innovation leader of the Data Security Platform (DSP) market, providing a complete data security platform that starts with patented Application plugin technology (other tools require code changes to apply fine-grained access control within data-applications when data applications connect using anonymous service accounts) and continues to be the most comprehensive security solution for your sensitive data.
Simple Deployment, Comprehensive Visibility, Unparalleled Protection Capabilities
With SecuPi, a simple, 3-step configuration enables you to get up and running quickly. Within days, you can configure SecuPi to your analytical platforms, native Cloud applications, ingestion and direct DB tools gaining real-time visibility that goes broad and deep while providing fine-grained access Control, dynamic authorization and de-Identification using Format Preserving Encryption (FPE), Type Preserving Encryption and tokenization. These overarching capabilities protect your critical data and enforce ever-increasing compliance requirements.
Real-time Data Activity Monitoring and UEBA
Ability to monitor in real-time all access to sensitive data
x
Learn More >>
xdepends on Cloud data source audits , blind when data applications connect with service accounts
Ability to classify and assign risk to sensitive user activity
xxAbility to analyze user activity over time, with self and peer-comparison based on activity risk
xxBlock in real-time suspicious access to sensitive data based on User Behavior Analysis, taking into consideration self and peer comparison over time
x
Learn More >>
xad-hoc preventive controls
Ability to monitor in real-time application user’s access to sensitive data despite the application use of a single service account (connection pool) to connect to the database
Learn More >>
xNot supported (Database see only anonymous service account). Blind to all data applications pulling sensitive data from production databases
Ability to Block malicious request before reaching the data source (Data Firewall)
xxAbility to -add Single sign on)SSO/MFA to direct DB tools such as DBeaver
xxIntegration with Collibra, Alation, Purview, BigID, Informatica data catalogs
xxDynamic Data Masking (Coarse Grained data protection)
Dynamic Masking
xxAttribute-Based Access Control (fine-grained Access Control)
Ability to define data-attributes, user-attributes and context-attributes based policies to restrict access to sensitive data (row, column and cell level) and integrate/import them from all sources.
Learn More >>
xSecuPi can integrate and import from sources such as:
– Data attributes or data tags on tables, columns (including tag inheritance) and rows
– User attributes such as location, citizenship, role, hierarchy, organization/business unit – e.g., integration with Azure AD, Okta via SAML Assertion, Workday employee hierarchy
– Business attributes such as product type, customer category, asset class
Learn More >>
xPartial and incurring high-implementation costs (requires long implementation costs to add all attributes to the data source and creating views to add attributes to every table that requires filtering)
Segregation of Duties (SoD)
Cloud Account Admins and Privileged Users can never modify policies or bypass the tool
xxDe-Identification (protection of data at-rest)
FPE Encryption, Tokenization
xxKey Management and key rotation support
xxEnsure cleartext data (decryption) is only possible outside of the Cloud data platform with full Segregation of Duties (SoD) and compliance with Sovereignty laws (decryption can only be performed in-country and not using External functions)
xxPlatform support
Cloud Analytics
Learn More >>
x(using either independent Data Airlocks or using native policies)
Learn More >>
xPartial (using native policies)
Data Applications
xxDirect DB Tools
xxOn-Prem data sources
xxOracle, SQL Server
xx
