Skip to content
Vol. 1 · Ed. 2026
CyberGlossary
日本語
Entry № 401

DSPM (Data Security Posture Management)

DSPM (Data Security Posture Management) とは何ですか?

DSPM (Data Security Posture Management)A class of tools that discover, classify, and continuously monitor sensitive data across multi-cloud, SaaS, and data-lake environments, then surface posture risk such as exposed PII or over-permissioned datasets.

Data Security Posture Management (DSPM) emerged as a recognized category around 2022 to cover what CSPM and DLP missed: the data itself. A DSPM platform crawls cloud storage (S3, GCS, Azure Blob), databases (RDS, BigQuery, Snowflake, Redshift), data lakes, SaaS apps (Drive, Box, Salesforce), and unstructured stores, then classifies what's there (PII, PHI, payment card, source code, secrets) and links each data store to its access graph — which IAM principals, applications, and humans can reach it, and how. The output is a posture view: 'this Snowflake database contains EU PII, is accessible by a service account whose key is also in a public Lambda environment variable, and has not been read in 14 months.' DSPM features overlap with CSPM (configuration), CIEM (identities), and traditional DLP (egress), and the categories are converging into broader CNAPP and 'data-first' security platforms. Vendors in the space include Cyera, Dig (acquired by Palo Alto Networks), Sentra, BigID, Rubrik (Laminar), Wiz Data Security, and Symmetry.

  1. 01

    A DSPM scan finds an S3 bucket containing customer payment-card exports, with public read enabled and last-touched four months ago.

  2. 02

    DSPM-driven alerts replace quarterly access reviews by continuously flagging shadow copies of regulated data in non-production environments.

よくある質問

DSPM (Data Security Posture Management) とは何ですか?

A class of tools that discover, classify, and continuously monitor sensitive data across multi-cloud, SaaS, and data-lake environments, then surface posture risk such as exposed PII or over-permissioned datasets. サイバーセキュリティの クラウドセキュリティ カテゴリに属します。

DSPM (Data Security Posture Management) とはどういう意味ですか?

A class of tools that discover, classify, and continuously monitor sensitive data across multi-cloud, SaaS, and data-lake environments, then surface posture risk such as exposed PII or over-permissioned datasets.

DSPM (Data Security Posture Management) はどのように機能しますか?

Data Security Posture Management (DSPM) emerged as a recognized category around 2022 to cover what CSPM and DLP missed: the data itself. A DSPM platform crawls cloud storage (S3, GCS, Azure Blob), databases (RDS, BigQuery, Snowflake, Redshift), data lakes, SaaS apps (Drive, Box, Salesforce), and unstructured stores, then classifies what's there (PII, PHI, payment card, source code, secrets) and links each data store to its access graph — which IAM principals, applications, and humans can reach it, and how. The output is a posture view: 'this Snowflake database contains EU PII, is accessible by a service account whose key is also in a public Lambda environment variable, and has not been read in 14 months.' DSPM features overlap with CSPM (configuration), CIEM (identities), and traditional DLP (egress), and the categories are converging into broader CNAPP and 'data-first' security platforms. Vendors in the space include Cyera, Dig (acquired by Palo Alto Networks), Sentra, BigID, Rubrik (Laminar), Wiz Data Security, and Symmetry.

DSPM (Data Security Posture Management) からどのように防御しますか?

DSPM (Data Security Posture Management) に対する防御は通常、上記の定義で述べたとおり、技術的統制と運用上の実践を組み合わせます。

DSPM (Data Security Posture Management) の別名は何ですか?

一般的な別名: Data Security Posture Management, Cloud data security。

関連用語