Fortinet black logo

Online Help

Home FortiCASB 23.1.0 Online Help
23.1.0
24.1.b
24.1.a
23.4.a
23.3.a
23.2.b
23.2.a
23.1.0
22.4.0
21.4.0
21.2.0
21.1.0
20.4.1
20.4.0
20.3.0
20.2.0
20.1.0
4.2.0
4.1.0
2.1.0

SOX-COBIT - Access to Sensitive Data

SOX-COBIT - Access to Sensitive Data

Description

Access to Sensitive Data policy monitors and tracks access to sensitive data located in the cloud account. Sensitive data location can be configured through file path Regex.

Policy Configuration

Follow the steps below to enable and configure the policy

  1. Click on any Cloud Account drop down menu from FortiCASB dashboard, e.g. Salesforce, Office365, etc.
  2. Go to Policy > Compliance, then select SOX-COBIT tab.
  3. Expand SOX/COBIT - Access to Sensitive Data by clicking > button.
  4. Enable the policy by clicking to toggle switch button.

  5. Click on Severity level drop down menu to select a severity level (Critical, Alert, Warning, Information).

    6. Note: this policy generates both alert in Alert page and data in Compliance Report.

  6. In File Path Regex, enter a valid Regex of the target file path to be monitored. Here are examples of file path Regex:
    1. ".*" targets all files in the cloud account.
    2. "^(?:[\w]\:|\\)(\\[a-z_\-\s0-9\.]+)+\.(txt|gif|pdf|doc|docx|xls|xlsx)$" targets files begin with x:\ or \\ with files ending in the following types of extensions: txt, gif, pdf, doc, docx, xls, xlsx. Here are the file paths that will this file path Regex matches:
      1. \\192.168.0.1\folder\file.pdf
      2. c:\my folder\abc abc.docx
  7. In Data Patterns, click on the field and select the data patterns (financial, personal identity information, etc.) to be monitored.
  8. Click Save Changes to upgrade the configuration.

After the policy is enabled and configured, whenever any targeted sensitive file is accessed, an alert will be triggered in the alert page. For more details, please refer to Alert.

Compliance report will also record any alerts generated by this policy, for more details, please see Generate Compliance Report.

Previous
Next

SOX-COBIT - Access to Sensitive Data

Description

Access to Sensitive Data policy monitors and tracks access to sensitive data located in the cloud account. Sensitive data location can be configured through file path Regex.

Policy Configuration

Follow the steps below to enable and configure the policy

  1. Click on any Cloud Account drop down menu from FortiCASB dashboard, e.g. Salesforce, Office365, etc.
  2. Go to Policy > Compliance, then select SOX-COBIT tab.
  3. Expand SOX/COBIT - Access to Sensitive Data by clicking > button.
  4. Enable the policy by clicking to toggle switch button.

  5. Click on Severity level drop down menu to select a severity level (Critical, Alert, Warning, Information).

    6. Note: this policy generates both alert in Alert page and data in Compliance Report.

  6. In File Path Regex, enter a valid Regex of the target file path to be monitored. Here are examples of file path Regex:
    1. ".*" targets all files in the cloud account.
    2. "^(?:[\w]\:|\\)(\\[a-z_\-\s0-9\.]+)+\.(txt|gif|pdf|doc|docx|xls|xlsx)$" targets files begin with x:\ or \\ with files ending in the following types of extensions: txt, gif, pdf, doc, docx, xls, xlsx. Here are the file paths that will this file path Regex matches:
      1. \\192.168.0.1\folder\file.pdf
      2. c:\my folder\abc abc.docx
  7. In Data Patterns, click on the field and select the data patterns (financial, personal identity information, etc.) to be monitored.
  8. Click Save Changes to upgrade the configuration.

After the policy is enabled and configured, whenever any targeted sensitive file is accessed, an alert will be triggered in the alert page. For more details, please refer to Alert.

Compliance report will also record any alerts generated by this policy, for more details, please see Generate Compliance Report.

Previous
Next