“Granting and revoking access to data is such a headache”, a lead data engineer complained. “Why do I even need to be involved? Why can’t data owners be responsible for this process like they are in Google Drive or Dropbox?” Many other frustrated data engineers have expressed a similar sentiment about the lack of streamlined services in this realm. The existence of self-service and just-in-time access provisioning would save data teams a great amount of time, which can then otherwise be used to drive actual value for the company.
We at Satori believe that a crucial part of DataSecOps is giving companies the right tools to deal with data access at scale, so, to combat the aforementioned issues, we set out to build a self-service data access platform with the following concepts in mind:
Second, the data engineer defines the data steward(s) for the specific dataset. The steward(s) will then be able to define who can access this dataset, define access and anonymization policies, and approve or reject new access requests from data consumers.
Data stewards’ permissions are limited to the dataset(s) they own, allowing the organization to securely and compliantly distribute data access governance across multiple departments and business units. The organization does all this while maintaining ownership compartmentalization without writing a single line of code.
Pasting the url in this message into a browser will launch the following webpage, where the data consumer can input their business justification for this access request.
Once the access request has been submitted, the data steward receives a notification to review the new request, decide on the most appropriate permissions and revocation policy, and approve or reject the request at that moment.
If a request is approved, Satori will automatically provide the data consumer with immediate access to the requested dataset.
Gain access to these benefits today and schedule a personal demo of Satori Self-Service Data Access.
- It needs to be simple so that data owners can control access to their data without needing constant help from data engineering teams.
- It needs to allow workflows for granting data access, including a self-service, no-friction option.
- It needs to be easy to use without requiring changes in the IdP or involving IT, as these requirements would slow down data access.