Neil MacDonald

A member of the Gartner Blog Network

Entries Tagged as 'SharePoint Security'

Why Does Identifying Data Owners Have to be so Hard?

by Neil MacDonald  |  November 10, 2010  |  Comments Off

One of my readers sent in this picture from one of their offices. They are moving locations, so all of the file cabinets need to be indentified with clear owners. Take a look: The pink labels (on every file cabinet) say “unidentified cabinet” – meaning the cabinet has no clear owner and the contents are […]

Comments Off

Category: Information Security Next-generation Security Infrastructure     Tags: , ,

This Just In: IPS is now DLP

by Neil MacDonald  |  February 4, 2010  |  3 Comments

Just program your IPS to look for credit card numbers (or similarly sensitive data) and presto, you now have content-aware DLP (well, a tiny piece of it at least). I’ve got vendors of antivirus solutions for SharePoint that can perform general expression pattern matching while they crawl the SharePoint content repository doing DLP. Seems everything […]


Category: Information Security     Tags: , ,

Six Trends That Will Further Reshape Information Security in 2010

by Neil MacDonald  |  January 4, 2010  |  3 Comments

Food for thought to kick off 2010. The convergence of these trends (listed in my opinion of the order of impact) will radically reshape the future of information security – both the vendor landscape and how we architect and manage information security internally: Convergence onto Security Platforms: The movement of related security controls into “security […]


Category: Endpoint Protection Platform Information Security Next-generation Security Infrastructure SharePoint Security Virtualization Security     Tags: , , , , , ,

From the Gartner Information Security Summit on SharePoint Security

by Neil MacDonald  |  July 27, 2009  |  2 Comments

We had a crowd of several hundred people for my presentation on SharePoint security at the recent Gartner Information Security Summit. It’s pretty much as I suspected – just like virtualization projects where security tends to be an afterthought (if considered at all), SharePoint deployments are pretty much following the same course. When I polled […]


Category: SharePoint Security     Tags: , , ,

Getting Ready for the Summit

by Neil MacDonald  |  June 22, 2009  |  1 Comment

I’ve been absent for a few weeks from my regular blogging activities performing research and building the final presentations for next week’s Gartner Information Security Summit in Washington DC. This is Gartner’s single largest event focused exclusively on all aspects of information security. All of the information security analysts will be there discussing topics as […]

1 Comment »

Category: Next-generation Security Infrastructure SharePoint Security Virtualization Security     Tags: , , , ,

A Refreshing CIO Perspective on Information Security

by Neil MacDonald  |  May 4, 2009  |  Comments Off

I’m here at the Midsize Enterprise Summit in Miami, Florida and I had the opportunity to sit down and discuss security issues with several CIOs this afternoon. One of the CIOs had a number of questions on SharePoint security. They described the grass roots adoption of the technology in their organization as “phenomenal” (consistent with […]

Comments Off

Category: SharePoint Security     Tags: , ,

The Phantom Security Menace: Rogue SharePoint Sites

by Neil MacDonald  |  March 24, 2009  |  10 Comments

You can’t secure what you don’t know about and can’t see. We estimate that 30% of SharePoint servers are deployed outside the management of the IT department. It’s not SharePoint’s fault. It is a popular software solution precisely because it enables users to share information in the way that works best for them. In many […]


Category: SharePoint Security     Tags: , ,

Does Securing Information Require a Different Mindset?

by Neil MacDonald  |  March 12, 2009  |  2 Comments

In my discussions with clients on how to securely implement SharePoint, I’ve seen two major reoccurring issues: 1. Many of the operations and security professionals I talk with about how to securely deploy solutions like SharePoint are very good at protecting discrete things – servers, desktops, hubs, switches, routers, ports and protocols. Even when we […]


Category: Information Security SharePoint Security     Tags: ,

SharePoint Security Best Practices

by Neil MacDonald  |  February 25, 2009  |  14 Comments

  I’m sure you’ve experienced the growth of SharePoint in your organizations firsthand (and those are only the deployments you know about!). SharePoint is a flexible product with a pretty powerful security architecture and it got even more powerful with the latest release. But with this flexibility comes complexity. In discussions with clients on securing […]


Category: SharePoint Security     Tags: , ,