With the recent attack on Sony, followed by an attack on Xbox networks, clearly indicates that security is still not taken seriously by even organisation expected to be leader in their respective industries. It is indeed a wake-up-call for all enterprises who feel that their security is adequate enough. The question that needs to be asked is not who is accessing data but what are they doing with this data. Authentication, though important, is not adequate enough to protect an enterprise. Identity can not longer ensure that data is safe. Real time visibility on how is being used for sent out of the network has become far more important. Context aware security can provide the required visibility and help organisation to protect their data.