Why Is Cloud Security So Hard? (Hint: It’s Not)
Securing a new environment without knowing the rules of the road can be hard. Take the time to learn the rules and avoid speedbumps.
It might seem challenging to set up an easy, shareable audit folder structure, but we break it down here in a few easy steps here.
I received a question from an astute IT Director on how to structure folders to achieve the following goals:
Here are some tenets that will help guide structure:
My recommendation would be to structure folders beginning with the team structure, how teams work, then based on data sensitivity. So if the team is working on sensitive data, then a separate subfolder in their folder would house that data. Extra controls can be placed on those folders, and teams would logically understand where to put sensitive data.
This should also reflect data ownership, where data owners can determine who or what systems should have access.
If multiple teams need to access data, the data will live with the data owner.