Governed Data Sharing & Collaboration at Scale: Deep Dive On Security Best Practices for Zero-Trust Architectures

Sharing data openly shouldn't mean sharing it insecurely. As enterprises scale Delta Sharing to hundreds of recipients across clouds and platforms, security and governance architectures quickly become the bottleneck. This session dives into how Databricks enables governed, zero‑copy collaboration using open Delta Sharing, Clean Rooms for multi‑party analytics without exposing raw data, and Private Exchanges in Databricks Marketplace for curated partner ecosystems. We'll tackle the three pillars of secure sharing at scale: OIDC token federation for secretless auth with external identity providers, attribute‑based access control (ABAC) for fine‑grained row/column policies, and the Storage Network Gateway for one‑time network setup that eliminates manual firewall/IP allowlisting. You'll see a live zero‑trust reference architecture, backed by Unity Catalog lineage and audit logging, powering cross‑cloud Databricks‑to‑Databricks and open recipients, plus monitoring. Expect code, configs, and field‑tested patterns, including a security checklist, ABAC policy templates, and an OIDC integration guide you can apply Monday morning to scale governed collaboration without replication.