How to Give Everyone Access to Your Data and Still Keep it Safe
by Rob Richardson, Developer Advocate, Cyral
About Me
Rob Richardson is a software craftsman building web properties in ASP.NET and Node, React and Vue. He's a frequent speaker at conferences, user groups, and community events, and a diligent teacher and student of high quality software development. You can find this and other talks on https://robrich.org/presentations and follow him on twitter at @rob_rich.
While in an audit,
how do I document I've given
the minimum required permissions?
Securing the Data
The Approval Process
Infrequent or Unusual Tasks
Just grant them access forever
or
They just can't get the job done
or
Use a shared service account
... and lose the audit trail
Applications
What if we could store our
data access policies
as code?
Policy as Code
Policies are standardized into records readable by both the people who manage them and the systems that enforce them.
The Goal
Demo
Data maps and Policies
Demo
GitOps for Policies
Demo
ChatOps for policies