SecuPi and Collibra Integration
SecuPi provides Collibra customers with de-identification at-rest and in-use, real-time activity monitoring and fine-grained access control (ABAC) for all Cloud and on-prem environments. With SecuPi’s fine-grain data access controls, the data consumption is governed so that users get access only to data they are entitled to view, and no more.
With Collibra Catalog integrated, the SecuPi enforcement points monitor and audit all sensitive user activity while applying fine-grained access controls (alerting, masking, filtering & encryption) across critical applications (Native Cloud & on-Prem) and Analytic environments (e.g., Snowflake, BigQuery & Redshift)
Collibra & SecuPi address all Data Governance requirements: fine-grained access control, de-identification at-rest (Tokenization, FPE encryption, retention-based deletion) and protection in-use (Policy-based Access Control, masking, filtering).
SecuPi provides Collibra users with:
- Enhanced RBAC into ABAC in Collibra and other applications with zero code changes
- Real-time monitoring to all sensitive user activity
- Enhanced data protection includes FPE Encryption, Tokenization, Dynamic and Physical Masking, Redaction and blocking of unauthorized requests
How SecuPi works with Collibra?
SecuPi Policy Server pulls context and attributes from multiple sources, applies policy using self-contained zero-code Policy Enforcement Points (PEPs) that monitor sensitive data activity, control access and decrypt authorizes usage cross Cloud.
SecuPi PEPs configured on Collibra application servers continuously review every query to ensure the query conforms to the Users entitlements as defined by the data access governance rules. If the query does not confirm to policy for given users and attributes involved at the time,
SecuPi automatically rewrites the query by adding the relevant constraint or by filtering the result-set returned from the data source including any filtering, decryption, encryption or masking of sensitive data.
SecuPi’s policy definition console enables to ‘point and click’ to develop and implement highly customizable data access rules using plain language and logical operators. These data access rules incorporate attribute variables, so as attribute values vary, the data access decisions adjust dynamically and automatically.
“With the fast evolution of privacy regulations, sovereignty, intercompany and external data-sharing contracts, accompanied by the risks and liability associated with sensitive data, SecuPi aids Collibra customers with de-identification at-rest and in-use, real-time activity monitoring and fine-grained access control (ABAC) for all Cloud and on-prem environments. In short, SecuPi’s integration with Collibra provides central data visibility, security, and protection platform ensuring Collibra customers avoid compliance incidents and prevent data breaches”.
Bas van Reeuwijk, Global Director, Technology Partnerships, Collibra
Learn more about Collibra Protect powered by SecuPi