Have built a zero trust foundation that protects customer data and reduces business risk
What is our primary use case?
The main use case for Securiti in my organization is to safeguard the physical assets as well as the digital assets. The prime motive behind deploying the SOC or the security, cyber security solutions, or for that matter, the information security solutions within the bank is to safeguard the physical assets as well as the digital assets. Coming back to the digital assets, the focus is primarily on safeguarding the customer data, which is paramount to the day-to-day operations within the banking sector.
A specific example of how I use Securiti to safeguard customer data involves our crown jewel applications or the applications which are customer facing such as core banking, INB, internet banking, mobile banking, loan lifecycle management system, or tab banking. For all these customer facing applications, we have implemented ZTNA 1.0 and ZTNA 2.0 implementation is in progress. That means the zero trust network architecture is implemented for all the mission critical customer facing applications, wherein we have adequate safeguards in place for protecting people, processes, and related technologies.
What is most valuable?
The best features Securiti offers in my experience primarily safeguard the digital assets. I would say the prime purpose of security is to safeguard the digital assets. That means the data, underlying platform, and be it the storage, compute, network, data, and applications. These major five pillars are what security solutions aim to protect. Security is in today's context, whether it is IS security or a subset of it, cyber security, it is very much required to reduce the business risk, business continuity risk which may arise because of the disruptions of compromised IT apps.
Of those features, I find the zero trust network, zero trust architecture, ZTA, most valuable and unique in Securiti. If you look at the zero trust architecture, it's the three main principles under this, which include principle of least privileges and microsegmentation of the network and role-based access control, fine-grained access control. With these three tenets of zero trust architecture, we are quite confident that the mission critical customer facing applications which are hosted in their respective production region, remain up, alive, and uncompromised.
What needs improvement?
To improve Securiti, I would say that ultimately the IT team as well as the business team, there has to be an amalgamation of their thought process, convergence of their thoughts, objectives, aspirations for achieving the business objective of a particular organization. The way forward is to form the fusion team wherein there is a judicious mix of business and IT and both the teams understand each other's limitations and the aspirations and the common objectives.
As far as needed improvements in Securiti, I would say that automation is key. If you look at the kind of huge amount of data which SOC integrated devices are generating in terms of alerts, automation or the appropriate use of AI is the way forward. That will lead to the overall improvement in the efficiency as well as the threat intelligence will be much more accurate. To my mind, automation with the augmented use of GenAI or the agentic AI solution is the way forward.
I choose eight for Securiti because for it to be a nine or 10, ultimately the uptime has to be improved, it should be nearing 100%. Apart from that, there has to be more unified communication happening between various customer facing applications. These siloed applications having their own kind of security solutions implemented also have to be brought on a uniform platform. Until that happens, there is always a gap which has to be filled. The processes within the SOC, whether it is SIEM, NBAD, or your DAM, alert analysis, logs analysis, these have to be predictive analysis, and the thwarting of the cyber attacks still requires more effort.
For how long have I used the solution?
I have been using Securiti since 2012, where I was responsible from the department's perspective for setting up the security operation center within the bank, security SOC 1.0. Thereafter, I was also SPOC from the department side for SOC 2.0. While performing my role as SPOC for the SOC, SPOC for the internal audit for the SOC initiative within the SBI, I was responsible for the asset integration into SOC. Thereafter the configuration of SIEM agent, DAM agents, NBAD, and cyber security incident closure. Those were the initial SOC 1.0 days wherein I have handled these challenges. Additionally, VA closure is one of my areas of expertise and passions.
What do I think about the stability of the solution?
Securiti has positively impacted my organization in a way that addresses the prime concern of the board of the bank or the business that the evolving cyber security, ever-evolving cyber security threat should not lead to the disruption in the applications, key customer facing applications availability. The top executive or the C-level executives want to understand the impact of implementing the various cyber security solutions in terms of the reduction, tangible reduction in the business risk. There we have proved that the return on investment is quite acceptable to the board's aspiration.
A specific metric that demonstrates this ROI with Securiti involves our customer facing applications. If you look at core banking, INB, or ATM, treasury, or mobile banking, the uptime is upwards of 99%. With that kind of high availability and the continuous threat exposure management, CTEM, we are quite sure and we have proved our worth to the business in implementing the cyber security solutions. Apart from the uptime, the kind of rating which our application gets from independent agencies such as scorecard also proved the efficacy of the IT security solutions implemented within the bank.
What do I think about the scalability of the solution?
Securiti's scalability is impressive; it is capable of handling a large workload for a bank having 25,000 plus branches and a customer base of around 400 million customers. It can be scaled with the required hardware, either horizontally or vertically, without much disruption.
How are customer service and support?
Customer support for Securiti is quite reasonable, and if I have to rate them, I would say nine out of 10. They are prompt and they take care of most of the use cases or they provide prompt solutions.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
We have been using Splunk for SIEM, and Imperva which is now acquired by Thales for DAM, as well as Qubro solutions for network security from inception. We have relied upon these solutions for almost a decade and do not foresee a need for an immediate shift as long as the assets are well protected and the uptime is maintained.
How was the initial setup?
Before choosing Securiti, we evaluated other options, but now we are using Securiti for data privacy. It is one of the important components of the SOC, apart from other components I have mentioned, whether it is SIEM or DAM. Securiti solutions are now largely responsible for safeguarding the data privacy within the bank.
In my experience, Securiti is quite robust, reliable, and scalable as far as data privacy is concerned, and it caters to most of the use cases across different business verticals.
What was our ROI?
I have seen a return on investment with Securiti. With more automation in the SOC and the implementation of the next generation SOC, the headcount required for around-the-clock monitoring of ever increasing IT assets has gone down drastically. There is also a tangible benefit in terms of the money with the reduced year-on-year application downtime, even though the cyber security threats are ever evolving.
What's my experience with pricing, setup cost, and licensing?
Regarding my experience with pricing, setup cost, and licensing for security solutions, we usually enter into an enterprise license agreement for a bank of our size. Whether it is Splunk or whether it is RSA Archer or it is Qubro solutions or any other IT security solution provider, we find them to be flexible. With the kinds of hundreds of thousands of IT assets we have for integration, we usually find the IT security solutions providers' pricing as well as their licensing structure to be quite flexible. They also offer price protection.
What other advice do I have?
More and more automation, whether reduction of the exposure or automated remediation of the vulnerabilities, and the prompt reporting in the GRC tool, those are the key initiatives we have taken for last few years in safeguarding the bank's digital assets.
My advice for others looking into using Securiti is to first compile your use cases for a particular sector where you are operating. Thereafter, perform the POC of those use cases followed by pilot implementation before a full-blown rollout. It makes sense to examine or assess the efficacy of security solutions prior to a full-blown rollout.
I rate Securiti eight out of ten.
Which deployment model are you using for this solution?
On-premises
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Data Inventory and Classification
What do you like best about the product?
Securiti.AI is a powerful platform renowned for its robust data intelligence capabilities, particularly in the areas of data scanning, inventorying, and classification.
Its data scanning capabilities allow organizations to discover sensitive and regulated data across a myriad of data stores, both on-premises and in the cloud. This comprehensive scanning ensures that no data remains unmonitored.
The platform excels in data inventorying, automatically creating a detailed and up-to-date catalog of all discovered data assets. This inventory provides a holistic view of an organization's data landscape, detailing where data resides, its format, and its relationships.
Furthermore, Securiti.AI offers advanced data classification capabilities. It intelligently categorizes data based on its sensitivity, compliance requirements, and business context, leveraging AI and machine learning to accurately tag and group data. This classification is crucial for enforcing data governance policies, managing risks, and ensuring regulatory compliance.
In essence, Securiti.AI streamlines data discovery and organization, enabling businesses to understand, secure, and govern their data effectively
What do you dislike about the product?
N/A - nothing to report in this space yet
What problems is the product solving and how is that benefiting you?
Data scanning, inventorising and classification
Enhancing Privacy Management with Securiti.ai: A Two-Year Experience at Asana
What do you like best about the product?
What I appreciate most about Securiti.ai is its user-friendly interface and the ease with which it can be implemented, allowing for straightforward integration into existing privacy management workflows. The introduction of the new table training method is particularly impressive, as it offers innovative ways to streamline processes and adds significant value for regular users. Furthermore, Securiti.ai's strong customer support ensures that any issues or questions are resolved promptly, which greatly improves the overall user experience. With its wide array of features and smooth integration capabilities, Securiti.ai stands out as a comprehensive solution for effectively managing privacy programs.
What do you dislike about the product?
While Securiti.ai has proven to be an extremely valuable tool, I have encountered some difficulties when creating workflows related to Data Subject Rights. Despite these challenges, they have led to productive collaboration with the Securiti.ai support team, who have been exceptionally responsive and dedicated in their efforts to improve these workflow features. This ongoing process of enhancement highlights a strong commitment to continually refining and upgrading the platform's functionality.
What problems is the product solving and how is that benefiting you?
Automating Data Subject Requests, which were previously handled manually, has provided the greatest return on our investment. Additionally, the capability to locate personal data within our data systems has proven invaluable whenever the company undertakes discovery efforts.
Securiti AI
What do you like best about the product?
Extensive capabilities to discover and classify data across multiple enterprise repositories
Highly customizable content inspection rules with keyword and regex based detections
Can inspect the vast majority of file types, from images to plaintext
Decent built-in workflow automation tool with a good enough API that supports actions via scripts.
Simple integrations across data systems
What do you dislike about the product?
For Sensitive Data Intelligence module (Data Discovery and Classification):
Does not provide the user with an efficient way to validate results after a scan
Keyword/regex matches must be verified one file at a time in the web UI and cannot be exported in bulk
AI capabilities are limited
No “AI learning” feature where the engine can learn on its own or based on user feedback after a scan
The AI / ML model Securiti offers can only be trained on heavily structured data
Files are clustered together based on how likely they are to be exact duplicates, not on content similarity
Data classification features are limited in the following ways:
Cannot add a tag within a files properties without also applying an MIP label (reduces flexibility)
Highly dependent on “Content Profiles”, which are defined by the user
What problems is the product solving and how is that benefiting you?
Securiti gives your org an overview into what data is saved where and allows you to classify that sensitive data based upon prebuilt policies. It integrates with nearly every data system and supports hundreds of file extensions for scanning.
Securiti.AI is a must have for Data Security and Governance teams
What do you like best about the product?
Automated scanning of data and complete inventory makes it easy to understand data
The data classification technology is really great
It has 200+ connectors which is one of the most
What do you dislike about the product?
Some of the UI elements for Data Governance are not clear
What problems is the product solving and how is that benefiting you?
We are using it to create an inventory of data assets to understand data estate
Strengthened Compliance Posture & Data Retention Process w/ Securiti
What do you like best about the product?
I like Securiti's Sensitive Data Intelligence (SDI) solution, it leverages AI/ML to classify sensitive data across our lakehouse services. The classification results feed into our compliance & retention processes. And currently working w/ Securiti support to integrate in our data catalog.
What do you dislike about the product?
The workflow orchestration engine felt somewhat convoluted for our use case i.e., syncing table / column classification to the Alation data catalog. However, this process has seen significant improvement w/ newly released Metadata Registration Policy, and further Alation support is currently being rolled out.
What problems is the product solving and how is that benefiting you?
Securiti is helping us classify sensitive data in our lakehouse services, primarily Snowflake. This supports internal processes for purging data in accordance w/ our data privacy agreements & compliance requirements.
Securiti.ai implantation and support
What do you like best about the product?
Securiti.ai has provided admirable end‑to‑end support from RFP through platform implementation, demonstrating consistent professionalism and the proactive prioritization of enhancement requests. The platform is overall intuitive and easy to use.
What do you dislike about the product?
Currently there are system integration issues that we are working to correct, but none that impact full functionality of the modules we have in place.
What problems is the product solving and how is that benefiting you?
Securiti provides a single platform for website cookie compliance, privacy-related assessment, and automated data subject request management workflows. This helps Pure Storage ensure compliance with privacy regulation across the globe.
Securiti platform review
What do you like best about the product?
The Privacy center feature which allows access to multiple areas on one landing page.
What do you dislike about the product?
The multi-org option can be frustrating because it doesn't let you proceed unless the correct organization is selected.
What problems is the product solving and how is that benefiting you?
Efforts such as revalidation and data mapping, along with monitoring individual rights and establishing privacy centers, are important aspects to consider.
The integration was straightforward and the support team was responsive and on target.
What do you like best about the product?
Product and implementation team support and ease of integration.
What do you dislike about the product?
Not having the time to become fully versed in all the capabilities.
What problems is the product solving and how is that benefiting you?
The DSPM is filling the void of data governance and it's benefitting us by informing us where our sensitive data is stored.
Comprehensive Data Posture and Security Management with Securiti Data Command
What do you like best about the product?
I really appreciate how Securiti Data Command provides a holistic view of data posture and security management across the organization. It brings together insights on data usage, risk, and compliance in one place, making it much easier to understand and address potential vulnerabilities. Having this unified perspective helps streamline governance efforts and strengthens overall data security.
What do you dislike about the product?
While the platform is powerful, the learning curve can feel steep for new users, especially those without prior experience in data governance tools. Some dashboards and reports could be made more intuitive, with simplified navigation and more out-of-the-box templates. In addition, integration guides for common enterprise systems could be expanded to speed up onboarding and adoption.
What problems is the product solving and how is that benefiting you?
Securiti helps us quickly discover and manage PII across our environment, turning what used to be a manual, fragmented process into an automated and consistent one. This visibility not only reduces compliance risk but also builds trust with stakeholders and customers by showing that sensitive data is being governed and protected responsibly.
