>
    Analyze the Data Risk Dashboard
    Focus
    Download PDF
    Focus
    1. Home
    2. Enterprise DLP
    3. Enterprise DLP Administration
    4. Monitor Enterprise DLP
    5. Data Risk
    6. Analyze the Data Risk Dashboard
    Download PDF
    Enterprise DLP

    Analyze the Data Risk Dashboard

    Table of Contents

    Analyze the Data Risk Dashboard

    Analyze the Data Risk Dashboard to understand risky behavior on your network.
    Where Can I Use This?
    What Do I Need?
    • Prisma Access (Managed by Strata Cloud Manager)
    • SaaS Security
    • NGFW (Managed by Strata Cloud Manager)
    • Enterprise Data Loss Prevention (E-DLP)
       license
    • Prisma Access (Managed by Strata Cloud Manager)
      Prisma Access
       license
    • SaaS Security
      SaaS Security
       license
    • NGFW (Managed by Strata Cloud Manager)
      —Support and
      AIOps for NGFW Premium
       licenses
    Or any of the following licenses that include the
    Enterprise DLP
     license
    • Prisma Access
       CASB license
    • Next-Generation CASB for Prisma Access and NGFW (CASB-X)
       license
    • Data Security
       license
    Analyze the Data Risk Dashboard to understand your overall data risk score and get an assessment of your overall security posture. It helps you identify data security hotspots where data risk may be high and needs priority attention. The Data Risk Dashboard provides a granular Risk Breakdown that allows you to explore potential data risks across your control points, applications, and data profiles. By default, the Risk Breakdown displays the risks for what
    Enterprise DLP
     has calculated to be your riskiest data asset exposures. However, you can modify and change the Risk Breakdown as needed. The default Risk Breakdown display is restored when the page is refreshed. The Data Risk Dashboard recalculates your data risk every 24 hours.
    Additionally, actionable Recommendations are provided. These are contextual recommendations made by
    Enterprise DLP
     based on your data risk model. The recommendations are sorted and displayed based on the highest impact changes to your security posture. These actionable recommendations address platform-wide changes you can make rather to applications, data assets, or users rather than addressing an individual data asset.
    1. Log in to
      Strata Cloud Manager
      .
    2. Select
      Manage
      Configuration
      Data Loss Prevention
      Data Risk
      .
    3. Review the high-level summary for your data risk exposure.
      To begin, apply the time filter for which you want to review. You can select
      Past 7 Days
       (
      default
      ),
      Past 30 Days
      , or
      Past 90 Days
      .
      • Risk Summary
         —Your overall data risk score out of
        100
         across all your data profiles, instances, applications, and control points. Additionally, a widget displays whether your data risk score has improved or gotten worse over the specified time period.
      • Risk Trend
        —Line graph to show you how your data security posture has improved or gotten worse over the specified period of time.
      • Recommendations
        —Actionable security recommendations you can take to strengthen your security posture. Each recommendation allows you to:
        • View App Details
           to understand which applications are impacted by the recommendation.
        • View Assets
           to understand which files and file types are impacted by the recommendation.
    4. Review the Risk Breakdown.
      The Risk Breakdown provides in-depth details about each node in your data security deployment. As each node is displayed, you can apply additional filters as needed. You can filter each node independent of one another to display to review the risk breakdown that is most important to you.
      • Data Profiles
        Enterprise DLP
         data profiles with traffic matches.
      • Instances
        —Application instances for applications onboarded to
        SaaS Security
        .
      • Applications
        —Applications onboarded to
        SaaS Security
         that has seen activity such as data profile matches, uploaded assets, or downloaded assets.
      • Control Points
        —The security enforcement points where data security incidents have occurred.
    5. Click a specific data risk node to view detailed information for assets matching that group.
      • Total Risk
        —Average Data Risk for all assets matching that specific group.
      • Total Assets
        —Total number of unique and sensitive data assets inspected.
      • Users
        —Total number of unique users who have either owned, uploaded, or downloaded assets with sensitive data.
      • Publicly Shared Assets
        —Data asset on a SaaS application that is publicly accessible by anybody with the public link.
      • External Assets
        —Data asset created using your corporate domain that is shared with a specific user outside of your corporate domain.
      • Uploaded Assets
        —Files uploaded to a SaaS application.
      • Downloaded Assets
        —Files downloaded from a SaaS application.
      • Data Profile Matches
        —Number of
        Enterprise DLP
         data profiles that were matched.
      • Applications
        —Total number of applications with inspected traffic that generated a data security risk.
      • Top 10 Risky Assets
        —List of data assets sorted by Data Risk. The
        Asset Name
        ,
        Owner
        , and
        Risk Score
         are displayed. Additionally, you can expand the Actions and
        View Asset
         or
        View Related Incident
        .
    6. View Related Incident
       to view more details about the specific DLP Incident.

    Recommended For You

    © 2024 Palo Alto Networks, Inc. All rights reserved.