book

Data Governance: The Definitive Guide

by Evren Eryurek, Uri Gilad, Valliappa Lakshmanan, Anita Kibunguchy-Grant, Jessi Ashdown

March 2021

Beginner to intermediate

251 pages

7h 37m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Preface
Why Your Business Needs Data Governance in the CloudFramework and Best Practices for Data Governance in the CloudData Governance FrameworkOperationalizing Data Governance in Your OrganizationThe Business Benefits of Robust Data GovernanceWho Is This Book For?Conventions Used in This BookO’Reilly Online LearningHow to Contact UsAcknowledgments
1. What Is Data Governance?
What Data Governance InvolvesHolistic Approach to Data GovernanceEnhancing Trust in DataClassification and Access ControlData Governance Versus Data Enablement and Data SecurityWhy Data Governance Is Becoming More ImportantThe Size of Data Is GrowingThe Number of People Working and/or Viewing the Data Has Grown ExponentiallyMethods of Data Collection Have AdvancedMore Kinds of Data (Including More Sensitive Data) Are Now Being CollectedThe Use Cases for Data Have ExpandedNew Regulations and Laws Around the Treatment of DataEthical Concerns Around the Use of DataExamples of Data Governance in ActionManaging Discoverability, Security, and AccountabilityImproving Data QualityThe Business Value of Data GovernanceFostering InnovationThe Tension Between Data Governance and Democratizing Data AnalysisManage Risk (Theft, Misuse, Data Corruption)Regulatory ComplianceConsiderations for Organizations as They Think About Data GovernanceWhy Data Governance Is Easier in the Public CloudLocationReduced Surface AreaEphemeral ComputeServerless and PowerfulLabeled ResourcesSecurity in a Hybrid WorldSummary
2. Ingredients of Data Governance: Tools
The Enterprise DictionaryData ClassesData Classes and PoliciesData Classification and OrganizationData Cataloging and Metadata ManagementData Assessment and ProfilingData QualityLineage TrackingKey Management and EncryptionData Retention and Data DeletionWorkflow Management for Data AcquisitionIAM—Identity and Access ManagementUser Authorization and Access ManagementSummary
3. Ingredients of Data Governance: People and Processes
The People: Roles, Responsibilities, and HatsUser Hats DefinedData Enrichment and Its ImportanceThe Process: Diverse Companies, Diverse Needs and Approaches to Data GovernanceLegacyCloud Native/Digital OnlyRetailHighly RegulatedSmall CompaniesLarge CompaniesPeople and Process Together: Considerations, Issues, and Some Successful StrategiesConsiderations and IssuesProcesses and Strategies with Varying SuccessSummary
4. Data Governance over a Data Life Cycle
What Is a Data Life Cycle?Phases of a Data Life CycleData CreationData ProcessingData StorageData UsageData ArchivingData DestructionData Life Cycle ManagementData Management PlanApplying Governance over the Data Life CycleData Governance FrameworkData Governance in PracticeExample of How Data Moves Through a Data PlatformOperationalizing Data GovernanceWhat Is a Data Governance Policy?Importance of a Data Governance PolicyDeveloping a Data Governance PolicyData Governance Policy StructureRoles and ResponsibilitiesStep-by-Step GuidanceConsiderations for Governance Across a Data Life CycleSummary
5. Improving Data Quality
What Is Data Quality?Why Is Data Quality Important?Data Quality in Big Data AnalyticsData Quality in AI/ML ModelsWhy Is Data Quality a Part of a Data Governance Program?Techniques for Data QualityScorecardPrioritizationAnnotationProfilingSummary
6. Governance of Data in Flight
Data TransformationsLineageWhy Lineage Is UsefulHow to Collect LineageTypes of LineageThe Fourth DimensionHow to Govern Data in FlightPolicy Management, Simulation, Monitoring, Change ManagementAudit, ComplianceSummary
7. Data Protection
Planning ProtectionLineage and QualityLevel of ProtectionClassificationData Protection in the CloudMulti-TenancySecurity SurfaceVirtual Machine SecurityPhysical SecurityNetwork SecuritySecurity in TransitData ExfiltrationVirtual Private Cloud Service Controls (VPC-SC)Secure CodeZero-Trust ModelIdentity and Access ManagementAuthenticationAuthorizationPoliciesData Loss PreventionEncryptionDifferential PrivacyAccess TransparencyKeeping Data Protection AgileSecurity Health AnalyticsData LineageEvent Threat DetectionData Protection Best PracticesSeparated Network DesignsPhysical SecurityPortable Device Encryption and PolicyData Deletion ProcessSummary
8. Monitoring
What Is Monitoring?Why Perform Monitoring?What Should You Monitor?Data Quality MonitoringData Lineage MonitoringCompliance MonitoringProgram Performance MonitoringSecurity MonitoringWhat Is a Monitoring System?Analysis in Real TimeSystem AlertsNotificationsReporting/AnalyticsGraphic VisualizationCustomizationMonitoring CriteriaImportant Reminders for MonitoringSummary
9. Building a Culture of Data Privacy and Security
Data Culture: What It Is and Why It’s ImportantStarting at the Top—Benefits of Data Governance to the BusinessAnalytics and the Bottom LineCompany Persona and PerceptionIntention, Training, and CommunicationsA Data Culture Needs to Be IntentionalTraining: Who Needs to Know WhatBeyond Data LiteracyMotivation and Its Cascading EffectsMaintaining AgilityRequirements, Regulations, and ComplianceThe Importance of Data StructureScaling the Governance Process Up and DownInterplay with Legal and SecurityStaying on Top of RegulationsCommunicationInterplay in ActionAgility Is Still KeyIncident HandlingWhen “Everyone” Is Responsible, No One Is ResponsibleImportance of TransparencyWhat It Means to Be TransparentBuilding Internal TrustBuilding External TrustSetting an ExampleSummary

A. Google’s Internal Data Governance
The Business Case for Google’s Data GovernanceThe Scale of Google’s Data GovernanceGoogle’s Governance ProcessHow Does Google Handle Data?Privacy Safe—ADH as a Case Study
B. Additional Resources
Index

Content preview from Data Governance: The Definitive Guide

Chapter 7. Data Protection

One of the key concerns of data governance is that of protecting data. Owners of data might be concerned about the potential exposure of sensitive information to individuals or applications without authorization. Leadership might be wary of security breaches or even of known personnel accessing data for the wrong reasons (e.g., to check on the purchase history of a celebrity). Users of the data might be concerned about how the data they rely on has been processed, or whether it has been tampered with.

Data protection has to be carried out at multiple levels to provide defense in depth. It is necessary to protect the physical data centers where the data is stored and the network infrastructure over which that traffic is carried. To do this, it is necessary to plan how authorized personnel and applications will be authenticated and how that authorization will be provisioned. However, it is not enough to simply secure access to the premises and the network—there is risk involved with known personnel accessing data that they are not supposed to be accessing, and these personnel are inside the network. Additional forms of protection such as encryption are required so that even if a security breach happens, the data is obfuscated.

Data protection needs to be agile because new threats and attack vectors continue to materialize.

Planning Protection

A key aspect of data governance is determining the level of protection that needs to be afforded to different ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9781492063483Errata Page

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Data Governance: The Definitive Guide

by Evren Eryurek, Uri Gilad, Valliappa Lakshmanan, Anita Kibunguchy-Grant, Jessi Ashdown

Chapter 7. Data Protection

Planning Protection

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.