SecurityBrief UK - Technology news for CISOs & cybersecurity decision-makers
United Kingdom
Franklin
#
Storage
#
Data Protection
#
Cloud Security

From DSPM to data protection: Closing the last mile on sensitive data in the era of AI

Fri, 10th Apr 2026
By Franklin Nguyen, Director of Product Marketing, Cyberhaven

The first time the team saw the new data security posture management (DSPM) dashboard, it felt like a win. They found S3 buckets untouched for years, Shadow SaaS instances filled with customer exports, and "temporary" databases that had become permanent fixtures. For the first time, data risk was a tangible list.

After the honeymoon phase had passed, questions started to come in regarding DSPM operations. "Now that we see the risk, what are we doing differently? If a developer zips up that bucket or points an LLM at that database tonight, does this dashboard stop them?"

Unfortunately, there weren't any great answers. The stand-alone DSPM tool was great at visibility, but more was needed.

The disconnect in this anecdote highlights a reality with security. Visibility is only one aspect to a data security program. To properly secure data, especially in the face of advancements like agentic AI, organisations must be able to know when data moves, where it's moving to, if that movement is creating risk, and to take action on it. Only then can organisations achieve real data protection.

How To Stop Your DSPM Program From Stalling

Discovery feels like progress when a DSPM rollout finally puts names and risk scores to data stores within the environment. It's easy for security teams to feel good about this progress. 

But your organisation isn't static. 

In an era where your employees, contractors, and now AI agents can move data at the speed of a copy-paste, knowing where data sits is no longer enough. 

To bridge the gap between "we know it's there" and "we've secured it," teams must execute three specific shifts within their DSPM program.

1. Treat DSPM as a source of intent, not a destination

A list of high-risk data stores can't protect anything by itself. But it can drive specific decisions:

  • Who or which teams need to be in the room
  • What policies do you want to apply to certain types of content 
  • Which data flows should trigger an immediate response

This might sound like: "Anything derived from these customer data stores must never reach a public AI tool." Or: "These code repos don't leave sanctioned environments, period."

Without this clarity, a DSPM finding is just another alert in an already crowded queue. When you define intent, you turn a static finding into the design requirements for your security controls.

2. Map the routes, not just the terrain

In practice, modern data exfiltration rarely looks like a bulk file transfer. It looks like:

  • A user exporting a report instead of viewing a dashboard
  • A copy-paste into a chat window
  • An agent reading and rewriting content in place

You can't write meaningful policy against behaviours with a static inventory of where your sensitive data sat at the time of the last scan. You need to understand how that data actually flows, in near real-time.

This is where data lineage matters. Data lineage isn't just a buzzword. It is the connective tissue and your operational record. 

This dataset in the warehouse produced this file in storage, which fed this dashboard, which a user screenshotted into a doc, which then got pasted into an AI assistant.

That kind of data tracing ability gives you two things:

  • Signal over noise by understanding behaviour: Is a sales rep hitting a dashboard 50 times a day normal, or is this a one-off export to a personal drive by someone in their notice period?
  • A bridge from classification to enforcement: You can connect DSPM's view of "this is sensitive" to the actual places controls work: endpoints, browsers, collaboration tools, and AI interfaces.

Without lineage, every follow-up DLP rule is either vague ("block patterns everywhere") or brittle ("block this file from this path"). With it, you can align enforcement with what the data is and where it came from, not just where it happens to sit.

3. Integrate intent and routes into existing operations

The "last mile" of DSPM integration is often messy because it involves ticketing systems, SOAR runbooks, and SIEM schemas. The DSPM you use shouldn't be another dashboard your team has to remember to check. Instead, it should be the context provider for the tools they already use.

In practice, this means:

  • Automated context: When an analyst opens an alert, they see the full data story. This content came from that dataset, which DSPM flagged weeks ago, and here's the chain of custody.
  • Actionable orchestration.  When a new high-risk store surfaces, a ticket lands in the right queue with enough context for someone to own it. Not a generic alert that sits in a backlog.

For AI-specific scenarios, it means building explicit reflexes: "Content derived from these training logs going to any external model is always blocked." Or: "Moves from these repos into unsanctioned coding assistants require justification and get logged."

You don't have to automate everything on day one. But you want to avoid a world where DSPM findings only live in its own dashboard, waiting for someone to remember to act on them.

What DSPM looks like when it works

This shift in DSPM operations and maturity doesn't land as a big bang. It shows up gradually in how teams operate.

CISOs stop describing DSPM as a project and start referencing it as the way their internal security program decides what to care about. When asked what an AI incident might expose, they point to specific stores and flows instead of hypotheticals.

Security architects stop gesturing at "cloud risk" and start pointing to concrete paths. How critical data moves, where guardrails exist, which flows the org has consciously accepted.

Security engineers stop being the glue between three different consoles and start tuning a unified policy set that understands both posture and behaviour. They can model "what if we treated this data store more strictly?" before making changes.

Analysts stop hunting through disconnected tools when an insider risk alert fires. The incident arrives with context already attached: what the data was, where it lived, how it moved, and whether this pattern is new.

AI teams get something better than a blanket "no." They get concrete guidance on which datasets and outputs are sensitive, and which flows into and out of models are monitored or constrained by design.

The bottom line

None of this means giving up on DSPM. It means being honest about what discovery alone can and can't do. DSPM tells you what you have and where it sits. DSPM is a powerful opening move, but it's not the endgame.

To close the last mile:

  1. Decide what you intend to protect and from whom.
  2. Watch how data actually moves, especially into and out of AI workflows.
  3. Connect those observations to the places you can act: policies, controls, and operational workflows that already exist.

Get that right, and DSPM shifts from a stalled project with a nice dashboard, or worse, shelfware, to what it was supposed to be: The foundation of a holistic AI and data security program that still works even as the way people use information changes around it.

Related stories
Anthropic launches Claude Opus 4.7 with stronger coding
CIQ launches Linux compliance platform ahead of deadlines
Your.Cloud acquires Pure Cloud Solutions in UK push
Emerson & OPSWAT strike global reseller deal for OT patching
OVHcloud adds Quandela Belenos quantum computer to platform

Top stories

Team Cymru launches Total Insights Feeds for threat data
FIRST conference highlights AI & CVE disclosure push
Protegrity launches AI Team Edition for secure inferencing
CERN joins OpenSearch foundation as associate member
OpenAI launches Trusted Access for Cyber with major names