Data Loss Prevention (DLP) is typically defined as any solution and/or process that identifies confidential data, tracks that data and prevents unauthorized access to it. Data has multiple forms. There is data in motion (endpoint actions), data at rest (storage) and data in use (network traffic). Each of these makes security and integrity difficult to ensure with constantly changing regulations, large fines and evolving attack methods. In today's growing mobile world, devices and file sharing software are compounding the problem by giving employees multiple ways to put company information at risk for data loss, such as identity theft, data breaches and fraud.
Here are some excellent articles that outline DLP and give a variety of suggestions for creating and maintaining a data loss protection strategy for your company.
Defining a DLP Strategy This CS Magazine article offers guidelines for defining a DLP strategy. It presents several requirements to consider in the context of data at rest, in transit and in use. Jeffrey Brown explains the pros and cons of deploying a gateway versus an endpoint monitoring solution, which is considered a key decision point. It also recommends starting small and keeping control of the project scope since most DLP plans are said to evolve over many years.
Top Ten Tips for Preventing Data Loss
This recent article in The Social Media Monthly provides ten excellent tips to help organizations keep their data secure. The author, Bob Fine, describes how growth in the BYOD movement, data overall and computer hacking make it imperative that businesses create defense mechanisms against data loss. Automation of those mechanisms is emphasized.
The $100 Billion Problem No One Is Talking About
This article discusses the growing concern of data security and data protection cost controls. According to the Forbes author, Eric Savitz, the current trends of globalization, piracy, lack of cyber-security training and increased BYOD all put company data at increased risk. Thoughts on how to buck these trends and other strategic considerations are discussed.
Four Keys to DLP Success
This article from Information Security focuses on the Data Loss Prevention technology as well as ways to make DLP technology a success. Crystal Bedell discusses the importance of 1) companies understanding the technology and its capabilities 2) having broad support from all the data owners across the organization and 3) having the legal department provide clarity and consistency in the actions taken.
3 Steps To Protecting Your Company Against Data Breaches
This Forbes article by Eric Savits and Chris Poulin discusses ways of preparing and protecting against a data breaches. Insurance is a new option that offers coverage for potential costs related to a breach, including legal defense, forensic investigations, and crisis management. Technology that addresses the organization’s DLP needs is suggested and should include the control of a network’s information flow, protection of end systems, and data encryption.
How to Protect Your Company’s Data
In this BizJournals article, Bridget Bothello reviews a few of the statistics and stories regarding data loss and how you can begin to create a data loss protection plan. Suggested data security practices from the US Chamber of Commerce and additional data security tips are included.
Three Questions You Should Ask About Your Cyber-Security
This post published in the Harvard Business Review helps senior management focus on the critical pieces of information needed to create a DLP strategy. James Kaplan and Allen Weinberg discuss the importance of a multi-faceted approach towards data loss protection, including techniques for sharing dating with strategic alliances.
Image Credit : DellPhotos