Şubat 7, 2023

Taming the Data ROT Beast

Make sure your data remains an asset and not a liability
Kevin Oliveira

Data is the new oil…or is it?  Practitioners often equate data with oil when they seek to justify spending on digital transformation projects. These projects often set organizations on the path of creating huge amounts of data.  Other factors like the massive increase in connected devices, IoT, and the rapid growth in cloud computing also contribute to massive data growth. The outcome is today companies find themselves awash in way more data than they had in the past.

When managed properly, data often serves as a tremendous resource that brings real top-line and bottom-line value to organizations.  Like oil, however, data needs to be refined and processed to unlock its full value.  But what happens when data flows unmanaged—in and out of devices throughout an organization? Things get chaotic and data can go from being an asset to a liability. That’s where data ROT (redundant, outdated, and trivial) can quickly become a massive problem if it goes unmanaged.

Data within organizations tends to literally multiply through duplicates, duplicates of duplicates, etc.  This is a problem often referred to as redundant data.  Data also can no longer be valid.  Version control, where multiple variations of documents exist, quickly becomes an issue. In other cases, data may have been time bound and expired in some way.  Some data may remain untouched for years without any modification—in lots of cases, that untouched data becomes obsolete data. However, obsolete data can still be important when it contains sensitive information. The last area is data that is just not important to the business and is called trivial data

When organizations treat data like oil, the natural instinct is to treat all data similarly – assigning it equal value.  That is akin to what hoarders do – not wanting to throw away anything, thinking that everything has equal value or at least some value.  They end up buried in tons of stuff, often what others would call outright garbage.  They need an intervention and often professional help to get control of their lives.  In many cases, ROT data has a similar effect on an organization.  It builds with the assumption that all data is valuable and the more the better.  In the end the opposite is true.

Here's what eWEEK Editors had to say in The Dangers of Obsolete and Redundant Data:

"Businesses believe that retaining all their data will help mitigate potential risks, but the opposite is true."

"The more unaccounted-for data a company has, the higher the risk of falling victim to a cyberattack.”

Most modern organizations with lots of unstructured data will likely develop a ROT data problem.  And these problems are compounded when ROT data contains sensitive data like Personal Identifiable Information, Protected Health Information (PHI), financial information (i.e. credit card numbers, bank account info), intellectual property, login credentials and more.  For many companies with rampant data ROT problems, an organization’s data surface increases exposure to all kinds of bad things like potential data exfiltration risks, hacker activity, all types of data breaches, the risk of non-compliance with privacy regulations and more. 

 What steps can your organization take to deal with data ROT?  Start by asking yourself these three questions:

  1. How big is your ROT issue at your organization today?  Many organizations aren’t even aware of ROT data.  It’s there – how big has it become for your organization?
  2. What steps are you able to take to effectively and accurately deal with ROT?  Dealing with ROT requires a multi-pronged approach and a commitment to taming the problem. Organizations must be deliberate in putting together a complete practice to eliminate ROT data.
  3. How can you keep tabs on ROT on a regular basis to ultimately manage ROT?  What tools do you have in place today that can help you get a sense of the scope of the problem? Do you currently have any tools that can help with ongoing monitoring?


How Forcepoint Helps Tame ROT

In 2022 Forcepoint introduced Forcepoint Data Visibility (FDV) to customers.  It allows organizations to run rapid scans of all unstructured data (main area where most ROT exists) quickly, and on demand. 

While many of our competitors charge for each individual scan of a company’s overall data, Forcepoint Data Visibility works differently. It allows for unlimited scans with no additional charges.  This allows you to see your ROT today, tomorrow, next week, weekly, monthly – whatever cadence meets your needs so you can see your exposure to ROT today, monitor ROT improvement as you put practices in place to remediate and measure progress and then continue to monitor to maintain the lowest levels of ROT.

To take a deeper look into the steps to deal with ROT, check out this video:


Visit the Forcepoint Data Visibility web page to learn more about Forcepoint Data Visibility and how it can help Tame the ROT beast.

Kevin Oliveira

Kevin serves as Senior Product Marketing Manager for Forcepoint’s Data Security products and solutions.  He has over 20 years experience helping enterprises with their data and security initiatives with leadership positions at Dell EMC and IBM. 

Read more articles by Kevin Oliveira

Forcepoint hakkında

Forcepoint, dijital dönüşüm ve büyüme sağlarken kurumları koruması için güvenilen, kullanıcı ve veri koruma alanında lider siber güvenlik şirketidir. Çözümlerimiz, insanların verilerle etkileşime girme şekillerine gerçek zamanlı olarak uyum sağlar ve erişim güvenliği sağlarken, çalışanların değer üretmesine de imkan tanır.