Skip to content
  • There are no suggestions because the search field is empty.

Security Configuration: Data Security Settings

Tags: Version 11.4

Data security settings are designed to enable the definition of controls to prevent data permanently stored by RSA NetWitness Platform from being disclosed in an unauthorized manner.

Securing Data

To help protect online data, such as current database, log, and configuration files, RSA recommends that you restrict access to the files and database and configure permissions so that only trusted administrators are allowed to access them.

RSA recommends that you back up your sensitive data, encrypt it, and keep it in a secure physical location in accordance with your corporate disaster recovery and business continuity policies.

The backup can be done in the following ways:

  • Regular backup of Configuration and Data files – You can back up and restore data and configuration files for the core host and services and all the modules of NetWitness Platform. For more information, see "Back Up and Restore Data for Hosts and Services" topic in the System Maintenance Guide.
  • Regular backup of critical configuration – You can export configurations using the Export option available on the UI. For example, you can take a backup of critical rules, reports, alerts, ESA rules, dashboards, investigation profiles, meta groups, event sources, global notifications, and so on. For more information, see topics:
    • "Export a Rule, Export an Alert and Export a Report" in the Reporting Guide.
    • "Rule Library View and Dashboard" in the Alerting using ESA Guide.
    • "Manage Profiles Dialog  and Export a Meta Group" in the Investigation and Malware Analysis Guide.
    • "Events View and Export Event Sources" in the Event Source Management Guide.
    • "Global Notifications Panel Toolbar" in the System Configuration Guide.

Data Privacy

Data Privacy is very integral and helps you manage privacy-sensitive data. You can achieve data privacy using the Data Privacy Officer (DPO) role. The DPO can configure NetWitness Platform to limit the exposure of meta data and raw content (packets and logs) using a combination of techniques. The methods available to protect data in NetWitness Platform include:

  • Data Obfuscation
  • Data Retention Enforcement
  • Auditing Logging

For more information, see topics in the Data Privacy Management.

Default Storage Passwords

The default storage passwords for database accounts that store alerts in ESA, Respond Service, and Data Science can be changed. For more information, see "Change Default Storage Passwords" topic in the Host and Services Configuration Guide.

Previous Topic: Network Encryption
Next Topic: Alert System Settings
You are here
Table of Contents > Security Configuration Settings > Data Security Settings