Webinar: Stop Playing Games with Data Privacy Data Masking Solutions for the Gaming Industry April 12, 2016 Speakers MarcHebert ChiefOpera,ngOfficer Estuate 510-468-7132 [email protected] AllanMar4n CTO ABMar,nGroup 408-464-3820 Allan@abmar,n.com 2 JohnL.Wells GlobalDevelopmentServicesManager LasVegasSandsCorpora,on [email protected] Discussion Topics 1 2 3 4 5 6 • Data Security Challenges in the Gaming Industry • Securing Structured and Unstructured Data • Gaming Industry Case Study • Summary and Q&A • About ABMartin • About Estuate 3 Discussion Topics 1 2 3 4 5 6 • Data Security Challenges in the Gaming Industry • Securing Structured and Unstructured Data • Gaming Industry Case Study • Summary and Q&A • About ABMartin • About Estuate 4 Data Security Challenges in the Gaming Industry Ø Inthepastyearrecordnumberofdatabreaches–781intotalthatleT 169,068,506peopleexposed,accordingtotheIden,tyTheTResource Center Ø Stringent regulations on the casino industry are increasing Ø A perfectstormishiYngthegamingindustryrightnow.Departmentof Jus,ce(DoJ)focusingitsan,-moneylaunderingonthegamingindustry Ø FinancialCrimesEnforcementNetwork(FinCEN)istakingmore aggressivestancesagainstcasinooperators Ø Atexactlythesame,me,theuseof“bigdata”tocapturecustomer habitsisbecomingmoreprevalent Ø Illegalhackingandstealingofsensi,vedataandcustomerdataare becomingmorefrequent The cost of a breach? Ø Regulatoryfines Ø Name Recognition Ø Reputation Ø Trust Ø Lost business Ø Cost of a single record containing confidential information? $145 to $154* (*Cost of a Data Breach Study: 2015) Ø Averagetotalcost:$3.8million(23%upsince2014) Ø 47%arebymaliciousagacks Ø Costofresolu,onandreac,onisincreasing Discussion Topics 1 2 3 4 5 6 • Data Security Challenges in the Gaming Industry • Securing Structured and Unstructured Data • Gaming Industry Case Study • Summary and Q&A • About ABMartin • About Estuate 7 Typical Test Data Creation: Produc4on Test QA Test Dev. 2TB 2TB 2TB 2TB 8 … • Simple-requires ligleknowledgeof thedatamodelor infrastructure • Realis4c-createsan exactcopyof produc,on Typical Test Data Creation: Prod Test QA Test Dev. 2TB 2TB 2TB 9 • Costly–significantstorage • Risky–sensi,veinforma,onfromproduc,on usedintest • Timeconsuming–copyingallofproduc,on • Inefficient–developer/testerdown,me 70%breachesoccuronthetestside 70%ofthosearefromtheinside 70%ofdatastoredinunstructured format Optim Data Privacy and Test Data Management DataPrivacy Ø Outoftheboxmaskingtechniquestode-iden,fy data. Ø Obfusca,onisirreversible Ø Ensuremaskeddataiscontextuallyappropriate tothedataitreplaced–likeforlike Ø Maintainreferen,alintegrity Ø AccessDefini,ons–templates. Ø Toolstodiscoversensi,vedata TestDataManagement Ø Ø Ø Ø Ø Sub-setandmake“right-sized”databases Reducestoragecosts Repurposesystems Fasterrefreshesandrefreshautoma,on Developmentandtestlifecyclereduced JASON MICHAELS ROBERT SMITH 10 2TB 200GB 50GB Data Privacy for the Gaming Industry! Ø AccessDefini,ons,wedidtheworkso youdon’thaveto Ø Datadiscoveryforcustom applica,ons Ø Completebusinessobjectacross applica,ons,systems,and environments Ø Automa,onandrepeatableprocesses Ø Beyonddatabases–Unstructured data iSeries SQLServer Web DB2 SQLServer Oracle Sybase Informix Teradata Oracle … Filesystem ACSC Infinium Custom… An,MoneyLaundering CasinoManagementSystem 11 Maintainreferen,alintegrity iSeries.Linux.Unix.Windows… Unstructured Data Masking Structured Relational databases Unmasked Masked Unstructured Complete the compliance circle PDF’s Scanned images 12 Office docs Web logs Flat files... Unstructured Data Masking Unmasked Masked q q q Unstructured 13 Maskover48differentfiletypesincludingImages,PDF,CSV,Email,Images,Officedocs… Maintainreferen,alintegrityensuringdataismaskedconsistentlybothwithinthedatabase andwithinthefiles Runstandaloneorinconjunc,onwithOp,m Complete the compliance circle Discussion Topics 1 2 3 4 5 6 • Data Security Challenges in the Gaming Industry • Securing Structured and Unstructured Data • Gaming Industry Case Study • Summary and Q&A • About ABMartin • About Estuate 14 Gaming Industry Case Study Optim Pilot Results Summary (Infinium HR/PY) Storage • Modules were sub-setted and data obfuscated leveraging the Optim toolset. • QA and UAT successfully conducted testing for data integrity File Size Before 2.39gb File Size After 0.32gb Storage Reduction 2.07gb 87% reduction • Application is now compliant and possibility for breach has been mitigated • Because of smaller footprint, performance on backups/restores, testing, and development has increased Execution Data Refresh Time Before Data Refresh After Time Time Savings • Extra storage can be repurposed for other projects without requiring to purchase more disk • SOX-404 $7,800,000 penalty has been avoided 4.5 hours 15 minutes 4.0 hours 89% reduction Projected Results (iSeries) • • • • All data will be secured and risk mitigated Estimate immediate reduction by 40% Continued reduction to 60% by EOY Back up storage costs reduced by 60% (+/-) (based on cost of back up tapes) • Data Refresh times reduced by an estimated 78% • Back-up times reduced by an estimated 50% Execution Data Refresh Time Before 4.5 hours Data Refresh Time After 1 hour Time Savings 3.5 hours 78% reduction* Storage Storage Before 4.8tb Storage After 2.4tb Storage Reduction 2.4tb 50% reduction* • Current projects (Anti Money Laundering and Impact) MUST be obfuscated before roll out • Obfuscate data maintaining referential integrity between applications • Get in Compliance’ Increase productivity * estimated Why Optim? Why now? • PII, PCI and Gaming data is currently exposed across enterprise – Systems at Risk! • With Optim, obfuscation cannot be reverse engineered. • Optim ensures test data has ‘production like’ data reducing risk of failure when final rollout to production. • Ensures relationships and data is masked consistently across all applications and environments. • Optim is a single mature certified product can be used on all platforms and applications for both obfuscation and sub setting • Pilot successfully completed. Optim experts onsite, vetted, and ramped up on current environment. • Repurpose storage savings now for upcoming projects instead of purchasing more disk space Breach Loss Cost There Is Potential Of Private Data In Global Test Environments That Increases Business Risk Thepoten)allossesresul)ngfromabreachcanbesignificant 500,000 $98.50M $197 Averagenumber ofaffected recordsinany givendataloss scenario x Thecostper recordat99,000 records = Poten4alTotal DataLossCostsper Event 90.0% Proposedimpact datasani4za4oncan haveonpreven4nga disclosureevent = $1.77M annually Poten4alDataLoss RiskMi4ga4onvia Sani4za4on 2.0% x = $1.97M Poten4alExpectedData LossCostsperEventat 2.0% Probability Proposedprobabilityof disclosureeventoccurring Discussion Topics 1 2 3 4 5 6 • Data Security Challenges in the Gaming Industry • Securing Structured and Unstructured Data • Gaming Industry Case Study • Summary and Q&A • About ABMartin • About Estuate 19 Summary and Q&A • Gaming Industry companies are especially vulnerable to data breaches Data breaches are particularly painful and expensive to fix, and cause lasting damage to customer loyalty There are proven, packaged solutions to protecting sensitive data in non-production copies of gaming industry databases ABMartin and Estuate have partnered with IBM Optim to offer packaged data masking for structured and unstructured data for the leading gaming industry applications from: • Bally • Infor • Agilysis • Q&A • • • AboutABMar4n q Establishedin2009 q Informa,onManagementSpecialists q SpecializinginComplexDataPrivacy,TestDataManagement,andDecommissioning q Unstructureddatamaskingleader q Heterogeneoussystemsexper,sespanningacrossMainframe,iSeries,Distributed,toHandheldand Embeddedsystems q AllrangesofDBMS:Rela,onal,ObjectOriented,Hierarchical q Aboveandbeyondservices:toolsets,products,soTwareu,li,es SuccessStories:DataPrivacy q HSBC q BankOfAmerica q DellInc. q ICBC q StandardInsurance q HealthPartners q NewYorkState q WellsFargo q OREGONstate(ODOT) q FederalDHS–VeteransAffairs q RegionsBank q ZionBank q SANDSCorpora,on q CatholicHospitalsEast q EntertainmentPartners q MarriogVaca,onWorldwide q AlaskaAirlines q CSX q EntertainmentPartners q StJude'sChildren'sHospital SuccessStories:Archiving|Decommissioning q SAP q BusinessObjects q SouthernCompany q NGSMedicare q Kimberly-Clark q DicksSpor,ngGoods q Penske q PressGaney q Bayer q Ericsson q WellsFargo q Zirmed q CanadaYellowPages q DollarGeneral q TorranceHospital q Nortel q OPERS About Estuate – 10 Years and Counting… - Celebra,ng10yearsinJan,2015 - SiliconvalleyHQ,officesinCanada,UK,UAEand India - 350+employeesworldwideandgrowingrapidly - Establishengineeringrela,onshipwithISVsand gotomarketstrategy - Referencedrivengrowth - PreferredvendorforUSgovernmentagencies CustomerFocus - CustomersfromstartupstoFortune50 - Highestcustomersa,sfac,onandasourceofrepeatbusiness - Outstandingvalue,notlowestprice - Trustedadvisors,beyondcontractualrela,onships TechnologyFocus - TechnologyandApplica,onsImplementa,on - ProductEngineering - BigDataandBusinessIntelligence - Informa,onLifecycleGovernance&Security Execu4onFocus - Emphasisonmasteryoftechnology–SMEs,state-of-the-artlabs, expertdevelopers - Productengineeringrela,onship - Personalizedresourcepooltomeeteachcustomerstyle - Can-doaYtude,obsessionwithprojectsuccess 24 Information Lifecycle Governance & Security Practice LargeDefense IndustryClient We have built a great track record of 300+ ILM client successes SERVICES / CLIENTS STRATEGY & ARCHITECTURE ARCHIVING ü ü ü ü TEST DATA MANAGEMENT RETIREMENT FACTORY MODEL CUSTOM APPLICATION DISTRIBUTED ü ü MAINFRAME SUPPORT / MAINTENANCE UPGRADES 25 ü ü ü ü ü ü DATA PRIVACY PACKAGED APPLICATION ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü ü
© Copyright 2026 Paperzz