Why Is Data Loss Prevention Important?
Data loss prevention (DLP) is and should be the top priority for Chief Information Security Officers CISOs. Data loss prevention (DLP) is any solution or process that identifies confidential data, tracks that data prevents unauthorized disclosure of data while the data is transferred to and fro within an organizations network. This process can be protected and achieved by creating and enforcing disclosure policies. Confidential data can reside on a numerous computing devices (physical servers, virtual servers, databases, file servers, PCs, point-of-sale devices, flash drives and mobile devices) and move through a variety of networks (wireline, wireless, VPNs, etc.). Nowadays, a huge number of solutions that are tackling the problem of data loss, data recovery, and data leaks have emerged. I would like to talk about a kit for CISO designed and developed by Veracode.
CISO KIT FOR APPLICATION SECURITY
Some of the data that is of Prime focus and needs sensitive attention and immediate prevention from Data Loss includes:
- Intellectual Property: source code, product design documents, process documentation, internal price lists
- Corporate Data: Financial documents, strategic planning documents, due diligence research for mergers and acquisitions, employee information
- Customer Data: Social Security numbers, credit card numbers, medical records, financial statements
Data Loss, Data Leak Solutions
- Network-based data loss prevention (DLP) is focused on protecting data while it is in motion. These monitor network traffic to detect sensitive data that is being leaked or sent out of the organization. Solutions for this type of data leak usually investigate email traffic, instant messaging, social media interactions, web applications and SSL traffic.
- Datacenter or storage-based data loss prevention (DLP) focuses on protecting data at rest within a company’s data center infrastructure, such as file servers, SharePoint, and databases. These data loss prevention techniques locate the confidential data resides and enable users to determine if it’s being stored securely. When confidential information resides on insecure platforms, it is a sign of poorly executed data protection policies.
- Endpoint based data loss prevention (DLP) focus on monitoring PC-based systems (laptops, tablets, POS, etc.) for all actions such as print or transfer to CD/DVD, webmail, social media, USB and more. End-point is monitoring for specific user actions, such as sending an email, copying a file to a USB, leaking data or printing a file.
- Content-aware data loss prevention (DLP) tools address the risk of accidental exposure of sensitive data outside authorized channels, using monitoring, blocking and remediation functionality. They are based on Data Classification.
Pro-Techi 
Leave a comment