Data-Centric Security and Privacy Engineering_ How episode artwork

EPISODE · Dec 16, 2025 · 45 MIN

Data-Centric Security and Privacy Engineering_ How

from Siber Kafe: Sohbetle Güvende Kal · host Görkem Hınçer

In 2025, security leaders stopped treating the network as the main boundary and started treating data as the perimeter. In this episode, we unpack what “data-centric security” really means with Can POLAT (15+ years in security & privacy engineering) and turn it into a practical roadmap: data classification and modern DLP, encryption across the full data lifecycle (at rest, in transit, and increasingly in use), confidential computing/secure enclaves, and the telemetry/observability you need to continuously watch how sensitive data is accessed and moved. We also explore how privacy engineering and privacy-by-design are converging with security under regulatory pressure—and why many organizations are building a single, unified “data protection” strategy instead of separate privacy and security programs. Key takeawaysStart with a data inventory + classification model before expecting DLP to be effective. Treat encryption as a baseline (rest + transit) and plan for “data in use” protection. Use telemetry + observability to detect abnormal data access and enable rapid containment. Follow a repeatable framework: inventory → access controls → protection → monitoring → incident response → continuous improvement.

In 2025, security leaders stopped treating the network as the main boundary and started treating data as the perimeter. In this episode, we unpack what “data-centric security” really means with Can POLAT (15+ years in security & privacy engineering) and turn it into a practical roadmap: data classification and modern DLP, encryption across the full data lifecycle (at rest, in transit, and increasingly in use), confidential computing/secure enclaves, and the telemetry/observability you need to continuously watch how sensitive data is accessed and moved. We also explore how privacy engineering and privacy-by-design are converging with security under regulatory pressure—and why many organizations are building a single, unified “data protection” strategy instead of separate privacy and security programs. Key takeawaysStart with a data inventory + classification model before expecting DLP to be effective. Treat encryption as a baseline (rest + transit) and plan for “data in use” protection. Use telemetry + observability to detect abnormal data access and enable rapid containment. Follow a repeatable framework: inventory → access controls → protection → monitoring → incident response → continuous improvement.

NOW PLAYING

Data-Centric Security and Privacy Engineering_ How

0:00 45:35

No transcript for this episode yet

We transcribe on demand. Request one and we'll notify you when it's ready — usually under 10 minutes.

Frequently Asked Questions

How long is this episode of Siber Kafe: Sohbetle Güvende Kal?

This episode is 45 minutes long.

When was this Siber Kafe: Sohbetle Güvende Kal episode published?

This episode was published on December 16, 2025.

What is this episode about?

In 2025, security leaders stopped treating the network as the main boundary and started treating data as the perimeter. In this episode, we unpack what “data-centric security” really means with Can POLAT (15+ years in security & privacy engineering)...

Can I download this Siber Kafe: Sohbetle Güvende Kal episode?

Yes, you can download this episode by clicking the download button on the episode player, or subscribe to the podcast in your preferred podcast app for automatic downloads.
URL copied to clipboard!