For CIOs, however, solutions that prevent the loss of critical data demand serious examination. After all, it is the CIO who is responsible for the company’s information, and preventing it from being lost. To that end, the CIO must also be able to identify the tools that will enable them to strategically plan and effectively execute on a program to substantially reduce the risk of data loss.
Meanwhile, the debate continues over where DLP should be deployed: on the network or the endpoint? What about stored data? And does it matter whether DLP is deployed as a standalone solution or as a feature in a broader product portfolio? To address those questions, organizations must first understand what DLP is, why it is important, and how it works.
What is DLP?
DLP solutions help CIOs and CISOs answer three very basic questions: Where is my confidential information? How is this data being used? And how can I best prevent it from being lost?
To answer these questions, Data Loss Prevention (DLP) DLP does three basic things: (1) deep content inspection, (2) automatic protection of sensitive data across endpoint, network and storage systems, and (3) incident response workflow to enable corrective action with employees.
DLP allows you to see which databases, file servers, laptops and desktops hold sensitive data. It tells you when someone is sending out source code via email or copying a customer list to a USB drive. And it allows you to enforce policy by blocking network transmissions that contain confidential data, preventing copies to USB drives, iPods and the like, and automating other enforcement actions such as sender notification, routing of emails for encryption, and ensuring that sensitive data is not left exposed on file systems.
Today, unlimited access to the Internet and unprecedented mobility are changing the global landscape. In this new, wide open world, information can be easily shared and accessed anytime and anywhere by employees, partners, consultants, outsourcers, and more.
Homes are outfitted with high-bandwidth Internet connections that enable workers to easily transfer large amounts of data to and from the office. Mobile devices are smaller yet more powerful than ever. Today it is possible to copy the personal data of every U.S. citizen onto and iPod and still have room for music. Sensitive data may be sent through unprotected Web email. Confidential files may be exposed on a shared server or copied to a laptop that is then taken home or on the road.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.