With limited IT funds, it made the decision to store a significant percentage of it its production data on a single network attached storage (NAS) device. The county’s Director of Information Technology Services explains more: “Over the years, we’ve seen a data explosion in line with our county’s population growth. We now have many terabytes of unstructured data captured in over 150 million files. We didn’t have any automated data management processes in place, and our staff is just not equipped to keep track of the data being stored by all county employees. This means we had little visibility into the age and value of our data. As a government organization, it is vital to get a clear handle on where our data resides and who has access to it so that we can start to apply structured data governance rules.”

The county is a long-term user of NetIQ Identity Manager and Identity Governance to manage its user provisioning and access processes, so it made sense to look to NetIQ for this particular challenge. OpenText (formerly Micro Focus) recognizes the risks inherent in storing unstructured data and has developed industry-leading solutions for identifying what data organizations store, where it is housed, and who has access to it. With an automated means of remediating access permissions, moving data, and even disposing of it as specified by regulations or policies, NetIQ Data Access Governance (DAG) consists of a set of integrated products with proven technology.

DAG felt like a natural extension to our existing NetIQ identity and access solutions. Its built-in and custom reports ensured that our IT department now has automated and dynamic reports identifying our ROT data so that we can take remediating actions immediately.

資訊科技服務總監
美國縣政府

Identifying ROT data leads directly to storage and backup savings

Although the decision for DAG was easily made and justified, that was just the start of the county’s work to extend its data access governance beyond the structured data managed and secured through Identity Manager and Identity Governance. The team needed a good understanding of the opportunities DAG presents, and a tailor-made OpenText (formerly Micro Focus) workshop gave them a high-level overview of how DAG could support the county’s objectives. The county was particularly interested in identifying its redundant, obsolete, or trivial (ROT) data so that it could focus on reducing and restructuring its data footprint, which for an organization of its size is quite substantial. An in-depth OpenText (formerly Micro Focus) training helped with this and ensured that the team felt empowered to implement DAG components to great effect.

Part of the county’s challenge was to unravel complicated NTFS permissions and highlight any anomalies that could present a security risk. A key first step is to analyze the existing environment and review permissions. File Reporter, as part of DAG, was implemented to inventory metadata and NTFS permissions. The solution provides comprehensive reporting and analysis of user access to data stored on the network file system. The county generated an automated data analytics dashboard for full visibility.

“Out-of-the-box reports in File Reporter gave us a clear overview of our ROT data,” says the Director of Information Technology Services. “We created an automated duplicate file report as duplicate data forms the low-hanging fruit that we could address straight away to save on storage and back-up costs.” In addition, the team used the designer feature within File Reporter to create some custom reports, with support from OpenText (formerly Micro Focus). These custom query reports provided detailed and actionable information on both ROT and ad hoc data, including NTFS permissions.

Out-of-the-box reports in File Reporter gave us a clear overview of our ROT data. We created an automated duplicate file report as duplicate data forms the low-hanging fruit that we could address straight away to save on storage and back-up costs.

資訊科技服務總監
美國縣政府

DAG automation and scalability provides data visibility and regulation compliance

As a government organization, the county is subject to stringent audits and regulatory requirements, so understanding data growth trends, the types of data it holds, and its relevance is vital. File Dynamics, as part of DAG, provides the ability to apply agreed data management policies automatically, including data cleanup. By taking coordinated action with Identity Manager, it uses identity and role as its central driver, so that data security is consistently driven through identity.

The Director of Information Technology Services concludes: “DAG felt like a natural extension to our existing NetIQ identity and access solutions. Its built-in and custom reports ensured that our IT department now has automated and dynamic reports identifying our ROT data so that we can take remediating actions immediately. With a small staff looking after our IT infrastructure and managing over 150 million data files, we realize that automation and scalability are essential. We now work efficiently and ensure our regulatory compliance. We were pleased to reduce our data footprint with associated cost savings.”