With Wiz adding ”DSPM” or rather data classification, do you see there being much need for DSPM on top of CSPM? I feel like the DLP and Detection and Response are way more important than CSPM checks, but is that just me?

1.3k views6 Comments

Sort by:

CISO in Software6 months ago

They are distinctly different postures and needs. They are not overlapped.

Director of Information Security in Healthcare and Biotech6 months ago

CSPM and DSPM sit with slight overlap but in distinct capability towers. I see CSPM being more of a misconfiguration detector to shift right and through the cycle. Thye tool and capability shared with infrastructure and IT. DSPM on the other hand is used by privacy, Audit, Cyber and Data governance teams and has a much broader audience. DLP is just a tool to protect sensitive data but DSPM gives you a more holistic view and scope for DLP.

Chief Information Security Officer in Healthcare and Biotech2 years ago

The need for DSPM and CSPM is different. It depends on the organisation's security posture and how they want to manage their digital risk.

CISO in Software2 years ago

It is about vendors moving to provide an entire suite of services versus businesses needed to individually deploy and integrate a whole set of independent security products and solutions

CIO in IT Services2 years ago

There are wonderful vendors available in both the DPSM and CSPM spaces and I worry that Wiz is taking on too many functions for their platform. It's hard to be a unicorn, the pressure must be over the top - but when is it too much?

Content you might like

Are you concerned about network security for your remote workers?

Not concerned at all8%

Slightly concerned49%

Moderately concerned26%

Significantly concerned14%

It’s our top priority1%

View Results

Which of the following category of endpoints represents the weakest security in your organization?

Laptops18%

Mobile devices49%

IoT16%

Network infrastructure7%

Servers2%

Cloud infrastructure3%

Other (please comment below)1%

View Results

Any tips or best practices you can share for developing a cryptographic bill of materials (CBOM)? What’s the best way to get started?

We're facing a challenge in R&D: our current DRM solution effectively protects sensitive TSIP (Trade Secret and Intellectual Property) data, but it prevents researchers from searching across encrypted files—hindering their work.

While we’ve considered relying solely on SharePoint permissions and Entra capabilities, the growing risk of insider threats makes this a last resort.

Has anyone solved a similar issue? Are there DRM or encryption solutions that allow secure, searchable access to protected content?

Does anyone have experience / insights in the integration of Microsoft Purview data governance controls with the iManage Work document management system?

With Wiz adding ”DSPM” or rather data classification, do you see there being much need for DSPM on top of CSPM? I feel like the DLP and Detection and Response are way more important than CSPM checks, but is that just me?

Sort by:

Content you might like

Are you concerned about network security for your remote workers?

Which of the following category of endpoints represents the weakest security in your organization?

Any tips or best practices you can share for developing a cryptographic bill of materials (CBOM)? What’s the best way to get started?

Does anyone have experience / insights in the integration of Microsoft Purview data governance controls with the iManage Work document management system?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

CrowdStrike Outage: Impact And Recovery

Advancing Data Literacy

Take Your Insights On-the-Go