This is what you have to do
As a vendor protecting my data, your job comes down to 5 things:
- Knowing where my data is
- Controlling access to it
- Monitoring anomalies
- Taking action if something goes wrong
- Making sure that the monitoring works properly
To be successful, you need to figure out how to do this on a continuous basis, and to get better at it over time.