For example, many organizations do a poor job at data classification and data tagging, two vital steps for ensuring adequate security controls are applied to sensitive data, he says. “We’ve seen countless examples where the right guardrails aren’t in place,” he adds.
Many IT leaders are also finding that some technologies they implement for data protection are not capable of addressing their needs as AI advances, particularly for agentic AI deployments, Mellen says. For instance, not all data loss prevention (DLP) tools monitor lateral data movement between servers or workloads and instead only deliver perimeter defense, he says.
Mike Baker, vice president and global CISO at DXC Technology, uses the term “data sprawl” to describe the growing amount of data on the move, something that accelerated first with cloud computing and now with AI.
