“Granting and revoking access to data is such a headache”, a lead data engineer complained. “Why do I even need to be involved? Why can’t data owners be responsible for this process like they are in Google Drive or Dropbox?” Many other frustrated data engineers have expressed a similar sentiment about the lack of streamlined services in this realm. The existence of self-service and just-in-time access provisioning would save data teams a great amount of time, which can then otherwise be used to drive actual value for the company. We at Satori believe that a crucial part of DataSecOps is giving companies the right tools to deal with data access at scale, so, to combat the aforementioned issues, we set out to build a self-service data access platform with the following concepts in mind:
- It needs to be simple so that data owners can control access to their data without needing constant help from data engineering teams.
- It needs to allow workflows for granting data access, including a self-service, no-friction option.
- It needs to be easy to use without requiring changes in the IdP or involving IT, as these requirements would slow down data access.