Research: Data Loss Prevention
Risk Intolerant: Defense in Depth And the Rise of Data Loss Prevention
Between Web 2.0 apps, instant messaging, file sharing, smartphones, Facebook, Twitter and other as-yet-to-be-invented communication channels, employees have ample opportunity to lose data. Security professionals understand this and realize that a paradigm shift is under way, from endpoint and network protection toward safeguarding information. The adjustment is logical and necessary, because the crown jewels of your organization aren't notebooks and smartphones, but the digital business assets stored on them.
The trick is balancing wants and needs. Knowledge workers want access to their data at any time, on the platform of their choice, using their preferred sets of tools and applications. The CEO wants controls to make sure your organization won't be the next data loss poster child, without adversely impacting productivity. The CIO wants some aspirin, because it's shaping up to be another trying budget season.
With so many avenues open to outside attackers and insider threats, and with so many operating system and browser deficiencies being exploited by ever-more-clever malware developers, IT needs to accept that it's almost impossible to prevent data leakage by concentrating defenses on desktops, servers and the network perimeter. The term "defense in depth" is taking on additional intensity. A concern about emerging data loss prevention (DLP) technologies cited by many security professionals we’ve spoken with is employee resistance to IT scanning their communications, because of both privacy and performance concerns.
In this InformationWeek Analytics report, we'll investigate the macro-level dynamics that are driving comprehensive DLP initiatives worldwide and discuss some ancillary tools and technologies that will help solve data leakage problems. But a discussion of market trends does nothing for IT groups that need a strategy, now. For them, we'll map out a battle plan complete with tools, technologies and best practices that can keep your information assets from slipping through your fingers and into the hands of professional data thieves the world over. (670609)
Survey Name: InformationWeek Analytics Data Loss Prevention Survey
Survey Date: March 2009
Region: North America
Number of Respondents: 218
Table of Contents
5 Author's Bio
6 Executive Summary
8 Research Synopsis
9 A Holistic Approach to DLP
10 Impact Assessment
19 The Genesis of Network DLP
21 Big Brother Is Watching
24 Regulatory Compliance Is Driving This Train
27 ROI Analysis: Data Loss Prevention
28 Strategy for DLP Success From Network to Endpoint
36 Appendix
About the Author
Randy George has covered a wide range of network infrastructure and information security topics in his six years as a contributor to InformationWeek and Network Computing. He has 15 years of experience in enterprise IT and has spent the past 10 years working as a senior-level systems analyst and network engineer in the professional sports industry. Randy holds various professional certifications from Microsoft, Cisco and Check Point, a BS in computer engineering from Wentworth Institute of Technology and an MBA from the University of Massachusetts Isenberg School of Management.
Be the first one to comment.