Operator Essentials 1
Operator Essentials 1
Module:
BigID Operator Essentials 1
A general introduction to BigID's User Interface and the core
Data Discovery concepts. In addition to core discovery, learners
explore the Action Center, Inventory, and API integration.
*Mandatory prerequisite for the entire BigID Operator track, and must be
taken prior to any other Operator Module.
BigID User Interface
User Interface DEMO
1. Explore and describe the different aspects of the Dashboard
2. Show the sidebar and connected screens and menus
3. Open the tasks list and explore the main tasks listed
4. Open application management and identify a few key apps
5. Use the search function - Enter johnsmith then try Users
6. Open the administration menu and point out “Next Steps”
7. Open the Reports Menu and show Activities Highlight Report
Tasks –
Your to-do list
Sidebar -
navigation to core
discovery screens
▪ Report includes:
○ Data sources scanned
○ Objects & records containing PI
○ Attributes found
○ Open access objects
○ Risk scores
○ Triggered policies
Web
Web UI
Route + Auth Gateway
NER +
Me Agent
DocVec
Data Sources
Orch Orch2
Orch2 Catalog
Catalog Cache
Scanner
Aho-Corasick /
Bloom-Filters
Reporting ML Config Correlator
NER +
DocVec
2. Observe the results of the last Scan in the column on the left
○ Notice the NER ML microservice findings and classic RegEx findings
3. Select the “metadata” tab and observer the “rdb” column discovered with
the letters “User” in the column name.
4. Select the “Document” tab and observe the document types that
were discovered.
B. Catalog
C. Cluster Analysis
D. Correlation
B. Catalog
C. Cluster Analysis
D. Correlation
B. Catalog
C. Cluster Analysis
D. Correlation
B. Catalog
C. Cluster Analysis
D. Correlation
B. Catalog
C. Cluster Analysis
D. Correlation
B. Catalog
C. Cluster Analysis
D. Correlation
B. Catalog
C. Cluster Analysis
D. Correlation
B. Catalog
C. Cluster Analysis
D. Correlation
2. Observe the following: “Query filter” field, Residencies, Attributes, Data sources,
Applications and the filters section on the left.
3. Select United Kingdom (purple) from the Residencies element, then the Username (red)
from the Attributes and Share (red) from the data sources.
○ Observe the query filter showing the syntax for this Query and the Risk score changing based
on these choices with each selection.
4. Scroll down the page to observe the geo-map highlighting your selections.
5. Then continue scrolling to the Drilldown section giving details about the Share in Brazil.
6. Then continue scrolling to the Entities section listing the actual entity records found.
Detailed Views: info about people or things that you track, or data processing or storage
Query Risk Score reflects the average risk of PII records in scope given
specific filter query criteria. Query Risk Score equals Global Risk on the
left-hand side when no filtering criteria are applied. Risk scoring
calculation is configured in the “Risk” section.
Above Data Sources reflect only those which contain Citizen Above Applications reflect only those which communicate with
IDs of German residents. Data Sources containing Citizen IDs of German residents.
To search for a specific entity, simply type its display name into the Query Filter field, or search by its
unique ID by prefixing it with ‘id=‘:
An asterisk here means that this attribute was found for other
entities, but not for this one. It could happen if sampling didn't
pick up this attribute for this entity so it's not in the inventory.
Define Query
■ Save the currently applied filter as saved Query. To reapply the filter,
enter query.name=value into the Query Filter field.
Define Policy
■ Create a new policy based on the current query.
■ Enter a Policy Name, Description, and Triggering Threshold. The Policy Owner is automatically set to
the currently logged-in BigID user. The Triggering Query is automatically set to the Inventory page's
current query.
■ Select Save to save the Policy, which you can then view under Policies.
BigID offers a publicly, well documented, API interface for seamless integration with other
applications and interfaces. Some Examples: