| CPC H04L 63/1433 (2013.01) [G06F 21/577 (2013.01); G06F 21/6218 (2013.01); H04L 63/1425 (2013.01); G06F 21/106 (2023.08); G06F 21/16 (2013.01); G06F 2221/034 (2013.01)] | 20 Claims |
|
1. A computer-implemented method for sensitive data analysis, the method comprising:
receiving sensitive data parameters associated with an enterprise;
configuring a tool based on the sensitive data parameters;
distributing the tool to a plurality of computing systems in the enterprise, wherein at each computing system the tool is executed for:
scanning, in a stealth mode in a background of the computing system, the computing system to identify a plurality of files associated with the computing system,
analyzing each of the plurality of files to identify sensitive files including sensitive data matching at least one of the sensitive data parameters,
assigning an identifier to each of the sensitive files,
transferring each of the sensitive files to a data store that stores each of the sensitive files along with the corresponding identifier,
deleting each of the identified sensitive files from the computing system,
generating a sensitive data report including file information associated with each of the identified sensitive files,
sending the sensitive data report to the data store; and
deleting the tool from the computing system after the sensitive data report is sent to the data store;
obtaining a plurality of sensitive data reports associated with the plurality of computing systems from the data store, each sensitive data report associated with one of the plurality of computing systems;
generating a sensitive data map for the enterprise, the sensitive data map identifying each of the plurality of computing systems in the enterprise and the file information associated with each of the plurality of computing systems; and
causing an alert including the sensitive data map to be provided to an enterprise management system.
|