惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

美团技术团队
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
博客园 - Franky
有赞技术团队
有赞技术团队
博客园 - 司徒正美
量子位
N
News and Events Feed by Topic
T
Threatpost
Last Week in AI
Last Week in AI
D
Darknet – Hacking Tools, Hacker News & Cyber Security
酷 壳 – CoolShell
酷 壳 – CoolShell
C
CERT Recently Published Vulnerability Notes
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
I
Intezer
人人都是产品经理
人人都是产品经理
T
Tenable Blog
IT之家
IT之家
雷峰网
雷峰网
腾讯CDC
博客园 - 聂微东
V
Visual Studio Blog
S
SegmentFault 最新的问题
Scott Helme
Scott Helme
Spread Privacy
Spread Privacy
月光博客
月光博客
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
V
V2EX
大猫的无限游戏
大猫的无限游戏
Apple Machine Learning Research
Apple Machine Learning Research
爱范儿
爱范儿
T
Tailwind CSS Blog
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
罗磊的独立博客
N
Netflix TechBlog - Medium
J
Java Code Geeks
宝玉的分享
宝玉的分享
F
Full Disclosure
WordPress大学
WordPress大学
A
Arctic Wolf
小众软件
小众软件
AWS News Blog
AWS News Blog
Attack and Defense Labs
Attack and Defense Labs
NISL@THU
NISL@THU
AI
AI
Hugging Face - Blog
Hugging Face - Blog
F
Fortinet All Blogs
云风的 BLOG
云风的 BLOG
N
News | PayPal Newsroom
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org

WhatIs

Strategic IT outlook: Tech conferences and events calendar | TechTarget 8 AI use cases in manufacturing Enterprises are making an AI native transformation Zero trust in the IT ops stack: Securing hybrid workloads How algorithmic value sets enhance clinical decision-making Top methods for collecting customer feedback Build a data governance team that delivers results How to calculate the total cost of ownership of ERP software Communities call for transparency in AI data center deals Scalable IT infrastructure: Balancing speed with stability How health systems are tackling 'Kill the Clipboard' obstacles Understanding the science behind AI-based hiring assessments Tape's strategic role in modern data protection How to choose an HR software system in 2026: A complete guide The UC stack gets the policy job Top zero-trust use cases in the enterprise 13 top IT infrastructure conferences in 2026 SNMP vs. CMIP: What's the difference? 3 essential network analytics use cases AI Security Risks Force CIOs to Rethink Strategy Red Hat Summit 2026 news and conference guide | TechTarget What is HR technology (human resources tech)? Understand, optimize and track customer journey touchpoints Should IT use Apple Business Manager without MDM? Build and organize an effective machine learning team The storage modernization imperative in a fast-changing IT landscape Procurement automation use cases for CSCOs to consider 3 steps for health system leaders to drive patient safety culture What is DevOps? Meaning, methodology and guide Enterprises Face New Storage Bottlenecks as AI Grows A guide to Intune Suite licensing for endpoint management Epic controls 42% of the US EHR market. Does that help or hurt interoperability? SAP Sapphire 2026 news, trends and analysis | TechTarget How to develop a data governance strategy: 7 key steps 12 generative AI tools for marketing and sales teams Top 9 smart contract platforms to consider in 2026 Top 8 e-signature software providers for 2026 Rise with SAP vs. S/4HANA Cloud: What are the differences? How businesses use KPIs to measure AI's performance 5 clues your network has shadow AI How do digital signatures work? Collaboration security and governance must be proactive Compare SAP greenfield vs. brownfield approach for S/4HANA Merck, Home Depot tap Gemini Enterprise for AI agent development Rural challenges may dampen digital healthcare's potential Build an ethical AI framework: 12 top resources The great workload reshuffle: Choices for AI and analytics How to remove a device from Intune enrollment Cisco unveils quantum network advancements 3 BYOD security risks and how to prevent them 10 of the top carbon accounting software 8 trends powering machine learning's dynamic new roles Network engineers must take the lead to push DDI to the cloud How does Microsoft 365 Copilot pricing and licensing work? ONC highlights behavioral health EHR adoption trends, data exchange barriers LLMs struggle with clinical reasoning, study finds Democratizing AI in business: The good, bad and ugly What can organizations do to address BYOD privacy concerns? Fix the service path before you optimize it with AI How AI reshapes upselling in customer experience platforms When collaboration starts becoming operational drag Balancing health AI management with growing vendor sprawl Career cure for AI phobia: Be a beekeeper, not a worker bee 16 top applicant tracking systems for 2026 How a rural community hospital deploys AI to detect heart disease 8 examples of document version control Guide to 30+ sustainability certifications for professionals AI agents are only as smart as the data that feeds them AI could earn trust in transactional work first How to fix keyboard connection issues on a remote desktop How to add and enroll devices to Microsoft Intune 11 DevSecOps best practices to prioritize in 2026 6 key components of a successful data strategy How to enable Copilot in Microsoft 365: A step-by-step guide What CIOs need to know about Meta's proposed CEO AI agent Top AI recruiting tools and software of 2026 How contact centers detect and prevent fraud 10 essential skills for modern contact center agents Beyond the chatbot: Engineering the agentic enterprise AI in business intelligence: How to manage it effectively Why legacy networks are a growing liability Failure is an option as an IT leadership tool How HR can create a successful change management strategy HR AI is becoming a change management story Digital transformation: Balancing speed and governance RSAC 2026 Conference: Key news and industry analysis | TechTarget 8 best practices for a bulletproof IAM strategy 5 customer journey phases businesses should understand 12 top HR software and tool options to consider in 2025 6 contact center trends shaping the future of customer service Contact center monitoring best practices for CX leaders Cloud vs. local backup: Which is right for your organization? 6 steps for when remote desktop credentials are not working How governance maturity affects M&A integration outcomes Inside the push to turn AI agents into suite functionality How should contact centers use AI today? Accenture global health lead on scaling AI in healthcare with governance and intent 10 best free DevOps certifications and training courses in 2026 What is compensation management? What CIOs must know about bossware strategy
How to secure data at rest, in use and in motion
Damon Garn · 2026-06-04 · via WhatIs

Data is the lifeblood of modern commerce; securing it properly requires a top-level, strategic commitment that dovetails with risk management and competitive advantage.

Data security is a non-negotiable strategic imperative cloaked with business implications for risk management and competitive advantage.

Organizations today face ever-increasing cybersecurity risks -- both internal and external. Safeguarding data against financial losses, regulatory penalties and reputational damage is not merely a technical issue; it is an enterprise priority.

To that end, data encryption is a key component in modern AI, cloud and collaboration ecosystems.

Data exists in three phases:

  • Data at rest. Data stored or saved on devices such as local computers, file servers or cloud storage. It is not actively in use or being moved.
  • Data in use. Data being processed, accessed or temporarily held in a system's memory or processors while operations are performed on it.
  • Data in motion. Data being transferred between locations, such as across networks, between devices or over the internet.

Each phase requires different technologies and approaches to mitigate threats. Organizations that operationalize data security across all phases gain a measurable competitive advantage.

Aligning encryption with business goals and risk management

Executives must establish data encryption as a strategic control that delivers enterprise value. Organizations that adopt a risk-based encryption approach can identify and prioritize data according to its impact on business.

CISOs and their teams should align data security with regulatory compliance -- e.g., data sovereignty laws and industry standards; customer trust and brand protection; and digital transformation initiatives, such as cloud, data sharing and AI.

Governance must include clear executive ownership for data assets across business units. Mandate accountability for encryption key management and technical support.

Executive insight: Protect data where it reduces material risk exposure.

How to secure data at rest: Foundation of data protection

Data at rest encompasses databases, cloud storage, endpoints, backups and other static data repositories. In today's distributed environments spanning regional data centers, edge computing and IoT, these locations can be very diverse.

To protect stored data, prioritize the following five specific actions:

  • Data discovery and classification. Identify and label what matters most to the business. An organization cannot protect what it does not know about.
  • Encryption strategies. Determine whether full encryption -- encrypting all data -- or selective encryption -- encrypting only specific, sensitive data -- is best based on sensitivity and performance requirements. Endpoint systems in particular will require attention and support.
  • Infrastructure security. Secure cloud and on-premises environments, including patching, monitoring, key management and physical security.
  • Access governance. Limit access based on roles and business needs, and implement MFA and zero-trust security where possible.
  • Human risk mitigation. Conduct encryption training and awareness.

An effective system to manage data encryption and secure storage offers several positive business outcomes, such as reduced breach likelihood, reduced breach impact, stronger compliance posture with reduced penalties and improved audit readiness.

How to secure data in use: Protecting active data

Data in use includes information that is being processed, accessed or analyzed by users and systems.

Four leadership priorities exist to secure data in use:

  • Access control and minimal privileges. Configure fine-grained access controls that adhere to the principle of least privilege to mitigate common data risks.
  • Data minimization. Use masking, tokenization and obfuscation to help hide data that users aren't authorized to access.
  • Emerging technologies. Use approaches such as confidential computing, secure enclaves and memory protection.
  • Insider threat mitigation. Establish user behavior and access patterns using logging and data monitoring.

Beneficial business outcomes include reduced insider risk from deliberate or accidental threats, safer analytics and AI adoption, and improved collaboration and data sharing.

How to secure data in motion: Protecting data flows

Data in motion includes information moving across on-premises, cloud and public networks. Data in transit can be intercepted, blocked or modified, posing a significant risk to critical business operations.

Top leadership priorities for protecting data in motion include:

  • End-to-end encryption. Integrating data encryption across all connections, including the internal network, is essential. Key technologies include TLS, HTTPS, VPNs and secure tunnels.
  • Network security architecture. Establish zero-trust principles in network authentication and access control to mitigate impersonation and hijacking attacks.
  • Third-party and supply chain risk management. Secure data exchanges with partners and vendors. Set clear security requirements for all communications between these entities.
  • Continuous monitoring. Use monitoring tools to detect anomalies in data movement that suggest misuse or an attack.

Securing data in motion on all networks brings several crucial business benefits, including mitigation of data interception, modification and exfiltration; secure digital ecosystems and partnerships, and reduced data exposure in cloud environments.

Visibility, metrics and KPIs for encryption effectiveness

Measuring success is crucial to justifying investments, maintaining auditability and satisfying compliance requirements.

Key metrics for measuring encryption and data security performance include:

  • Percent of data identified and classified.
  • Percent of data encrypted in each phase -- data at rest, in use and in motion.
  • Time to remediate encryption gaps.
  • Key management incidents or failures.
  • Mean time to detect and mean time to respond to data threats.
  • Unauthorized access attempts blocked.
  • Compliance audit success rates.
  • Compliance audit failure rates.
  • Third-party data compliance.

These metrics directly tie to risk reduction and compliance outcomes, both of which are fundamental to an organization's data management strategy. CISOs should provide stakeholders with dashboards for easy visibility and reporting.

Strategic recommendations and next steps

Treat data security as a board-level requirement with enterprise strategy implications. Establish a lifecycle-based security strategy that allocates resources according to data value and risk. To do this, first assess where critical data resides. Then, align encryption to risk and compliance goals. Finally, invest in the technologies, training and governance needed to protect data in all three phases.

Organizations that act now will reduce risk, strengthen trust and enable secure growth as they secure data at rest, in use and in motion.

Damon Garn owns Cogspinner Coaction and provides freelance IT writing and editing services. He has written multiple CompTIA study guides, including the Linux+, Cloud Essentials+ and Server+ guides, and contributes extensively to Informa TechTarget, The New Stack and CompTIA Blogs.

Next Steps

Enterprise database security best practices

Key factors to achieve data security in cloud computing

Symmetric vs. asymmetric encryption: What's the difference?

Dig Deeper on Data security and privacy