>
    Strata Copilot
    What Is Data Risk?
    Focus
    Download PDF
    Focus
    1. Home
    2. Enterprise DLP
    3. Monitor Enterprise DLP
    4. Data Risk
    5. What Is Data Risk?
    Download PDF
    Enterprise DLP

    What Is Data Risk?

    Table of Contents

    What Is Data Risk?

    Data Risk provides a data risk assessment for your organization and the ability to analyze and take preventative action to strength your security posture.
    On May 7, 2025, Palo Alto Networks is introducing new Evidence Storage and Syslog Forwarding service IP addresses to improve performance and expand availability for these services globally.
    You must allow these new service IP addresses on your network to avoid disruptions for these services. Review the Enterprise DLP Release Notes for more information.
    Where Can I Use This?What Do I Need?
    • NGFW (Managed by Strata Cloud Manager)
    • Prisma Access (Managed by Strata Cloud Manager)
    • Enterprise Data Loss Prevention (E-DLP) license
      Review the Supported Platforms for details on the required license for each enforcement point.
    Or any of the following licenses that include the Enterprise DLP license
    • Prisma Access CASB license
    • Next-Generation CASB for Prisma Access and NGFW (CASB-X) license
    • Data Security license
    Data Risk provides quantifiable metrics to measure the overall data risk for your organization. It provides administrators the ability to analyze and take preventative action to strengthen your data risk security posture using the Data Risk Dashboard.
    • Visibility—Provides administrators visibility to measure risk down to an individual data asset. Additionally, it allows the administrator to group and filter risk at an aggregate level to identify risk hotspots.
      The Data Risk Dashboard offers a Risk Breakdown to identify risk across multiple clusters and individual nodes, giving you visibility into the riskiest assets on your network. In addition to the data asset and document level risk measurement, the Data Risk Dashboard also provides a high-level summary of the Data Risk score across your deployment. This includes a risk trend for the past 7, 30, or 90 days and visibility into the industry average to help you compare your data risk security posture against your industry peers.
    • Customization—Administrators can configure the Data Risk risk model weights and severity for contextual risk analysis.
      This allows you to customize the Data Disk Dashboard with visibility into only data exposures you're interested in preventing. Data Risk weighs three categories of risk factors; data, application, and users. You can configure the overall data risk score based on each of these three data risk categories. Within each data risk category, you can configure individual risk factors related to each.
    • Remediation Recommendations—The Data Risk Dashboard provides administrators with actionable recommendations to address risky hotspots and improve your security posture.
      Enterprise DLP provides insights based on security gaps that most impact your overall Data Risk score. This allows you to immediately take action to address the weakest security points and strengthen your security posture.

    How Is Data Risk Calculated?

    The customized data security risk scoring framework draws inspiration from the NIST Cyber Risk Scoring (CRS) model to create a flexible and transparent approach to evaluating your organization's data security posture. Customized risk scoring offers a dynamic and adaptable approach to assessing your data security risk, aligning it with your organization's unique needs, and provides actionable recommendations for improving your data security posture.
    Identification of Key Risk Factors—Data Risk begins by identifying critical attributes within three main categories: application, data, and users. These attributes are carefully chosen by security experts, incorporating their knowledge, threat intelligence, and industry insights.
    Configurable Risk Factors—Administrators have the flexibility to configure the risk score ranges, risk factor importance, and data profile severity settings to align with your organization's specific business processes and technical requirements. Enterprise DLP uses these importance settings to determine the weighting (multiplier) for each risk attribute.
    Assessing the Likelihood of a Breach—The attributes help assess the likelihood of a data breach. Data Risk considers factors like application configurations, user behavior, and data exposure. This analysis helps in quantifying the potential threats an organization faces.
    Evaluating the Impact of Data Breaches—Data Risk also factors in the potential impact of a data breach by examining data sensitivity and data profiles. This enables a more nuanced evaluation of the consequences of security incidents.
    Aggregated Risk Score—Using these attributes and assessments, Data Risk calculates an aggregated risk score for all discovered assets. This score provides a comprehensive overview of the risk associated with sensitive data stored in SaaS applications.
    Incorporation of SaaS App Compliance Data—Risk scoring attributes incorporate data related to SaaS application compliance, ensuring that regulatory and industry standards are part of the risk assessment.
    Continuous Monitoring and Change Tracking—Use the Data Risk Dashboard for ongoing monitoring. It continuously monitors changes in data asset properties and tracks the effectiveness of implemented security and privacy controls. This ongoing monitoring provides insights into shifts in your organization's overall risk posture.
    Insights and Recommendations—Data Risk goes beyond just providing a risk score and offers insights into the specific security and privacy controls that significantly influence the risk score. It also provides actionable recommendations for improving the organization's security posture, allowing for informed decision-making and risk mitigation.

    © 2025 Palo Alto Networks, Inc. All rights reserved.