Your information safety is our precedence
At Databricks, we all know that information is one in all your most useful property and at all times needs to be protected – that is why safety is constructed into each layer of the Databricks Lakehouse Platform. Like most software-as-a-service (SaaS) platforms, Databricks operates underneath a Shared Accountability Mannequin which signifies that the shopper should consider the safety features obtainable and appropriately configure these obligatory to securely meet their danger profile, shield delicate information, and cling to their inside insurance policies or regulatory necessities. Summarized succinctly – Databricks is answerable for the safety of the platform, and the shopper is answerable for the safety in the platform.
Safety Greatest Practices impressed by our most security-conscious clients
Our safety group has helped hundreds of clients deploy the Databricks Lakehouse Platform with these options configured appropriately. As a consequence of this experience, we’ve got recognized a menace mannequin and created a finest follow guidelines for what “good” appears to be like like on all three main clouds.
Some clients have valued listening to how we got here up with this checklist of finest practices. The story began at a lunch with the Databricks Monetary Providers account groups in New York Metropolis in 2021. One in all our Resolution Architects made a passionate case to assist clients validate their configurations to keep away from inadvertently lacking something that is likely to be crucial to assembly their compliance or regulatory necessities. We realized that monetary companies firms processing delicate information would apply virtually the identical safety controls to their Databricks deployments. For instance, they’re going to run their enterprise and design their structure in a different way, however virtually all will use customer-managed keys (CMK), Non-public Hyperlink, and retailer question outcomes inside their account.
As a way to cater for as many purchasers as doable, we cut up the checklist into “most” and “excessive safety” deployments. We additionally mapped out a menace mannequin based mostly on clients’ major issues about Databricks and the principle areas we needed our clients to grasp.
The end result was a set of safe configuration guides that present evidence-based suggestions for deploying Databricks securely, all pushed by the controls relied upon by our most security-conscious clients. You’ll be able to obtain these safety finest follow suggestions from our Safety and Belief Heart or test them out instantly by way of the hyperlinks under:
Safety Evaluation Instrument (SAT)
After all, even higher than finest follow suggestions is an automatic safety well being test that does the evaluation for you. In November, we launched the Safety Evaluation Instrument (SAT). SAT measures your workspace configuration towards our safety finest practices, programmatically verifying them utilizing customary API calls and reporting deviations by severity, with hyperlinks that specify how one can prolong your safety setup to satisfy any extra stringent necessities derived out of your inside insurance policies. And as of February, the SAT has now gone multi-cloud, thereby enabling clients to measure their safety well being towards one of the best practices for every of the three main clouds.
Conclusion
We all know that safety is prime of thoughts for all our clients, and that is why we’ve got made our safety finest follow guides available on our Safety and Belief Heart. At the moment, you possibly can obtain the suggestions in your chosen cloud(s) and begin with the Safety Evaluation Instrument (SAT). However we additionally advocate you bookmark the web page and return to it commonly to test the newest and best suggestions for securing your information. The dangerous guys aren’t standing nonetheless, and neither do you have to!