The "SharePoint Security - A Survey on Compliance and Recommendations to Achieve True Security" whitepaper provides some very interesting points regarding how organizations use SharePoint for secure data storage and how secure your data actually is
However, access controls do not prevent a fully authenticated user from placing sensitive content in a place where it is inappropriately exposed. So for true security of data, a layered approach to data security that bases security on the sensitivity of the information (content) itself, or one that is “content-aware”, is required versus just looking at access controls. Below is a list of some best practices that will ensure true security of your SharePoint data: Content needs to be monitored in both real time and on a schedule, using rule based automated processes in such a way as to provide systematic protection of information
1 Comment - no search term matches found in comments.