DeNexus Trusted Ecosystem (DTE)
DTE is a combination of processes and organizational commitment from the DeNexus team to the safe collection, storage, and transfer of highly sensitive cyber data from physical critical infrastructures.
By adhering to these best practices, DeNexus safeguards collected data and enhances its reputation and credibility as a trusted data custodian in an increasingly security and privacy conscious world.
Data Governance
The governance implemented in DTE defines how to manage data throughout its lifecycle. This includes data lineage, encryption, retention policies, data archival, and data disposal procedures to minimize the risk of data leaks or unauthorized access to data.
Data Encryption
With multi-key encryption, a robust security measure involving multiple encryption keys to protect data, DTE encrypts data at rest and in transit using different keys.
Even if one key is compromised, the data remains secure because attackers need access to all keys to decrypt it.
With multi-key encryption, DeNexus and its customers have control over their encryption keys, ensuring that data sovereignty remains within their jurisdiction and under their control.
Data Lineage
Data lineage provides a comprehensive record of where data originates, how it is transformed, and where it is ultimately consumed.
The transparency provided by DeNexus with tracking and visualization as the data moves through processes and systems is invaluable.
In addition to trust in the data, data lineage allows DeNexus and his stakeholders to understand the data journey from source to destination clearly, providing accountability, while multi-key encryption safeguards the data.
By incorporating these practices into DTE, DeNexus can foster a data trust and security culture amongst all stakeholders in an increasingly data-centric world that must comply with numerous data protection regulations.
Access Control
Controlling who can access what data is crucial. Role-based access control (RBAC) and attribute-based access control (ABAC) are methods used to grant permissions based on predefined roles or attributes. Implementing fine-grained access control, the DTE ensures that only authorized individuals or systems can access specific data, reducing the risk of data breaches.
Data Integrity
DTE must maintain data quality and integrity. Data validation checks, checksums, and data profiling tools ensure data accuracy, consistency, and reliability. Monitoring data access and changes is essential for maintaining trust. DTE implements comprehensive data auditing and monitoring systems that allow for real-time detection of suspicious activities.
Secure Data Sharing
Sharing data across organizational boundaries is often necessary. DTE implements secure data-sharing mechanisms through APIs with OAuth2 authentication. This ensures that data is shared only with authorized parties and maintains confidentiality during transit.
Data Security
Technical failures and disasters can disrupt data ecosystems.
Robust disaster recovery and backup strategies, including off-site backups and automated failover mechanisms ensure data availability and integrity.
DeNexus makes training on data security best practices an essential practice for its employees because technical measures alone are not enough.
DeNexus is SOC2 Type 2 certified and follows robust standards to establish and maintain trust.
