What is DSPM?


Gartner® Innovation Insight: Data Security Posture Management
Get Report

Reduce Data Access Risks

Enforce Data Governance
Eliminate Abandoned Data

Secure PaaS Data

Enable Use of AI

DSPM for Snowflake


The Normalyze Platform
Supported Environments
Platform Benefits


DSPM-chat-Richard Stiennon-Ravi-Ithal-Normalyze
DSPM for Dummies:

Your guide to Data Security Posture Management

Get Your Copy


CYBER 60: The fastest-growing startups in cybersecurity
Get Report

Securing Block Storage, Private Clouds and On-Premises Data Stores

Gautam Kanaparthi
July 18, 2022

Normalyze Security Platform is expanding the number and types of data stores where it discovers, classifies, and detects risks to data. Enterprises have a complex set of requirements for their data workloads and this leads to the adoption of a variety of data stores across on-premises and cloud environments. 

While cloud adoption and migration of data workloads to the cloud has accelerated, many enterprises have now realized that some of their data workloads may never move out of their private data centers. This calls for a hybrid approach to their cloud data security strategy because a cloud-only solution doesn’t scale for their needs. 

Even within the cloud environment, many data stores are set to be private (e.g. deployed in a private VPC) and are not reachable to be scanned by a third-party classification engine. 

Normalyze has added product capabilities to address these complexities of enterprise data environments:


Scanning and monitoring of block storage

While object storage (e.g. S3) gets mentioned most often in discussions of cloud data workloads, many customers have a huge amount of data stored in block storage (e.g. EBS volumes). Block storage offerings have largely been ignored by data security solutions until now. With Normalyze, customers now can automatically and continuously discover, classify, and detect risks to data in block storage of their cloud accounts. 


Classification of data in private cloud environments

For security & privacy reasons, many enterprise data stores are cordoned off in an isolated environment (e.g. VPC). However, this also makes it more challenging for a third party to continuously monitor these data stores and detect risks such as the presence of shadow data, dormant/excessive privileges, and risky resources opening up attack paths to data. To address these needs, Normalyze has now launched a ‘standalone data scanner’. This scanner can be downloaded as a container & deployed in any private VPC to scan any datastore in the VPC that isn’t reachable from outside the VPC. The data scan results from the standalone scanner will be synced to the Normalyze control plane and available to customers in the Normalyze product console.


Scanning on-premises data stores

While cloud native data security works for cloud environments, it doesn’t scale with customers’ need for consistent tracking of data security posture across on-premises and cloud. Normalyze is the first and only solution in the Data Security Posture Management (DSPM) domain to  offer customers the ability to monitor both on-premises and cloud data workloads in a consistent manner against the same set of data security policies. 

Normalyze provides all of these capabilities via its unique platform – and patented proprietary risk detection mechanism – purpose-built for securing data in modern, multi-cloud and hybrid cloud environments. 


Try Normalyze in Your Environment!

We invite you to try Normalyze for free in your own environment. Sign up for a free trial. Setup takes just 10 minutes, after which you can see for yourself how the power of Normalyze will provide your security teams with 100 percent visibility and control of cloud-resident sensitive data.

Gautam Kanaparthi

Gautam is the Head of Product at Normalyze. He is passionate about building and scaling market-changing cybersecurity products. At Netskope, Gautam built multiple products from the ground up to help the company address new customer problems, including Nextgen Secure Web Gateway, Advanced Analytics, and Malware Scanning. Before Netskope, he was the principal product manager for Symantec Endpoint Security.