Qostodian

Qohash supports data security with its DSPM (Data Security Posture Management) technology. This technology provides an overview of sensitive information stored in a variety of unstructured data sources. Qohash's Qostodian platform continuously finds, inventories and monitors individual data elements on workstations, attached and shared drives, and Microsoft 365 cloud applications. Qostodian provides granular information, enabling companies to continuously monitor their security posture, identify and resolve security issues as they arise, address the most significant risks and implement the necessary controls to continuously improve the organization's overall security posture.

QOSTODIAN brings two essential elements of data privacy—inventorying of sensitive data and monitoring insider risk—into a single platform. Banks can use QOSTODIAN to monitor employee interactions with sensitive data and identify threats before a breach occurs.

The vendor offers 4 main reasons companies drive sensitive data risk mitigation and compliance with QOHASH:

1-- 24/7 sensitive data monitoring for insider risk and lineage tracing for breach notifications

CISOs and auditors view quantified risk levels by employee, department, info type and more, so that they’re never caught by surprise. They receive alerts the instant risky accumulation, deletion or exfiltration occurs. Keyword search is utilized to look up specific data elements and track data lineage. See the exact location where the data got out of an environment, where it ended up, and every touch point in between.

2-- Sensitive data inventory and business critical answers faster

Produces a complete inventory of sensitive, unstructured data at-rest, across every data source. Discovery, labeling, classification, custom RegEx and keyword searches, plus quantified, ranked and contextualized risk are included for one, predictable fee.

3-- Fulfillment of data deletion requests for compliance

Keyword searches can be by name, date, and credit card number, to find all copies of sensitive data across business systems. This displays which categories of sensitive data are stored on business systems. Data can be deleted directly within the platform to show compliance with data deletion requests in any location, including endpoints.

4-- Access control lists for quick identification and correction of exposure points

Generates access control lists, a foundational step for conducting risk assessments and passing audits. Users can evaluate whether those with access have a legitimate business need for it, and see how much sensitive data is on business systems and who has access to it. Then policies can be put in place, with risk levels configured to the business, and notifications can be sent when policy violations occur.