IBM’s purchase of Israel-based application data security startup Polar will see that company’s data security posture management technology integrated into IBM’s Guardium lineup of products. Credit: chombosan / Getty Images IBM has purchased application security startup Polar Security, in an attempt to address the security of application data in the cloud and help organizations track vulnerable information.In a statement issued this morning, IBM said that the increased cloud adoption driven by the pandemic has strained organizational capacity to track certain aspects of their application frameworks, including certain types of app data, permissions and more. The company said that this has led to “shadow data,” which isn’t being actively tracked, as well as siloing of information.The company called Polar a pioneer of “data security posture management,” which focuses on discovery and organization of sensitive information — the idea is identify where sensitive data is stored and what it’s being used for, as well as identifying potential issues in security policy, data usage and configurations.Polar’s platform is agentless and, IBM said, can be up and running in “minutes” on a client’s systems. “Polar Security can automatically find unknown and sensitive data across the cloud, including structured and unstructured assets within cloud service providers, SaaS properties, and data lakes,” the company’s statement said. “Once discovered, Polar Security classifies the data, maps the potential and actual flow of that data, and identifies vulnerabilities, such as misconfigurations, over-entitlements, and behavior that violates policy or regulations.”Polar then offers automatically generated reports that prioritize threats according to risk, as well as practical guidance on correcting any issues. IBM said that Polar’s technology will be incorporated into its Guardium line of data security offerings, enabling it to cover data stored anywhere. Polar was founded in 2021 in Israel. Terms of the deal were not disclosed, though unconfirmed reports place the price tag at $60 million. IBM has been active in the mergers and acquisitions market in recent months, having purchased GraphQL specialist StepZen in February, and announced plans to snap up network automation SaaS vendor NS1 in the same month. In 2022, the company announced takeover bids for digital product engineering company Dialexa in September, followed by IT modernization vendor Octo in December. Related content news UK government plans 2,500 new tech recruits by 2025 with focus on cybersecurity New apprenticeships and talent programmes will support recruitment for in-demand roles such as cybersecurity technologists and software developers By Michael Hill Sep 29, 2023 4 mins Education Industry Education Industry Education Industry news UK data regulator orders end to spreadsheet FOI requests after serious data breaches The Information Commissioner’s Office says alternative approaches should be used to publish freedom of information data to mitigate risks to personal information By Michael Hill Sep 29, 2023 3 mins Government Cybercrime Data and Information Security feature Cybersecurity startups to watch for in 2023 These startups are jumping in where most established security vendors have yet to go. By CSO Staff Sep 29, 2023 19 mins CSO and CISO Security news analysis Companies are already feeling the pressure from upcoming US SEC cyber rules New Securities and Exchange Commission cyber incident reporting rules don't kick in until December, but experts say they highlight the need for greater collaboration between CISOs and the C-suite By Cynthia Brumfield Sep 28, 2023 6 mins Regulation Data Breach Financial Services Industry Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe