Arguably, data security is on every industry leader’s mind. For security professionals it’s definitely at the forefront because a serious data breach on your watch, could be a career-defining moment and not in the good way. Perhaps you’ve invested heavily in multiple layers of prevention – firewall, AV, SWG, IPS, and endpoint security. And beyond that, your data may even be isolated on a server with no connection to the Internet. Sounds good, but how about all the people with access to your data? If they also have an Internet connection, your data has access to the Internet. If your user gets a malware infection, he can pass that on to the server where your data resides. In the case of the Target breach, the third-party vendor whose credentials were stolen turned out to have access to sensitive data on the server totally unrelated to the service he was providing.