Term · 27. Emerging Categories 2024-2026
Cloud Data Access Governance
Definition
Discovery, classification, and access control for sensitive data across cloud data stores (S3, Snowflake, BigQuery, Databricks, Redshift) with identity-centric policies. Maps which identities (human + non-human) can access which data, detects toxic access patterns, and automates remediation. Convergence of Data Security Posture Management (DSPM) and Identity Governance.
- Synonyms
-
- Cloud DAG
- Multi-Cloud Data Governance
- Application
- Regulatory: Gartner Magic Quadrant / Hype Cycle · ISO/IEC 24760 / 27001 / 29115 · NIST SP 800-63 (Digital Identity Guidelines)
- Standards & regulations
-
- Gartner
- ISO
- NIST
- Sources
-
- Immuta — Data Access Governance industry commentary
Related terms
-
Identity Governance and Administration (IGA)
Gartner-defined category combining identity governance (policies, access reviews, compliance) with administration (provi …
-
Role Explosion
Pathology of RBAC implementations where role count grows uncontrollably — each exception or special case spawns a new ro …
-
Access Control (AC)
Mechanism that determines whether a principal is permitted to perform a specific action on a specific resource. Includes …
-
Access Management (AM)
Discipline of granting and enforcing access to resources after identity has been established. Encompasses authentication …
-
Attribute-Based Access Control (ABAC)
Authorization model evaluating attributes of subject (role, department, clearance), object (sensitivity, owner), action …
-
Audit Trail
Chronological record of identity events — authentication, authorization decisions, provisioning actions, configuration c …