Securing Hidden Risks in Non-Production Data

Delphix's Jensen on Balancing Innovation and Protection to Reduce Threat Exposure Tom Field (SecurityEditor) • November 20, 2025

Organizations often concentrate their defenses on production systems while overlooking non-production environments that contain copies of sensitive data. Attackers exploit these weaker systems to access customer information, account numbers and other valuable assets.

See Also: Agentic AI and the Future of Automated Threats

Aaron Jensen, director of solutions engineering at Delphix, said organizations must strike a balance between innovation and protection. Security that slows development pushes teams into bypassing controls, and ignoring safeguards leaves data exposed, he said. Effective masking replaces personal information with realistic but non-sensitive substitutes while preserving data integrity for testing.

"We surgically replace things like names, addresses and phone numbers with realistic data. And we do it in a way to preserve referential integrity across all the systems so that the data is still usable and testable without ...