SAP Datasphere Interview Quick Revision QnA – 7

Ques:

You suspect unauthorized access to sensitive data in SAP Datasphere. How do you investigate this incident, and what tools within the platform can help you track access patterns?

Ans:

If we suspect any unauthorized access to the sensitive data, we can act quickly and investigate the incident.

Many built-in tools and processes can help us track, analyze, and remediate the access issues.

Here’s what we can do:

–          Using the monitoring tools for checking the activity logs and identifying who accessed the data and when, or how, or from which space or external tools.

–          Now review the space level access and role assignments to check which roles or users have access and whether the sensitive datasets or eols are assigned to the right target or not.

–          Look for all the recent changes that have happened to the role assignments.

–          Validate the data models or views that are affected by using the lineage tool in the data builder or business builder.

This will help in tracing the views or entities exposed to the sensitive data.

–          Take all the immediate remediation steps by revoking access to the affected data by unsharing views or models. We should also fix the roles and authorization misconfigurations.

–          If any personal data was involved, we should notify all the compliance or data protection officers.

The basic tools that we can use in SAP Datasphere for tracking access involve the activity log, monitoring dashboard, security settings, space management, lineage graph, and analysis authorizations.  

Some pointers we should remember are to use least privilege principles while assigning the roles and to conduct regular access audits.

For More Such QnA on Datasphere for Quick Revision, you can check out: https://topmate.io/vartika_gupta11/1639897