FlowSight

In a fast-paced design sprint for Trail Security (now acquired by Cyera and rebranded as Cyera DLP), I explored how to make enterprise data vulnerabilities feel instantly understandable and actionable.

The goal was to visually map out where sensitive data exposure happens across an organization—who’s sending what, where it’s going, and what policy violations are being triggered along the way.

We ditched the traditional table-heavy UI in favor of an organic, cluster-based view that highlights flows and hotspots at a glance, giving security teams a birds-eye view of potential risks across departments and communication channels.

At the heart of the design is a Sankey-style visualization that links internal roles like Legal or Biz Dev to external destinations like Email or Google Drive, showing exactly how data is moving—and misbehaving.

Combined with detailed, human-readable alert cards, this system tells the story behind each incident, including context, intent, and automated reasoning. It’s built to reduce alert fatigue and help teams take action faster, whether by investigating, blocking, or preventing similar events in the future.

The result is a DLP experience that feels less like detective work and more like mission control.