3D illustration of computer keyboard with the script "Data Loss Prevention" on two adjacent pale blue buttons

Introduction

Our last blog examined what Data Loss Prevention is, and the three major types data categories of DLP Systems which are as follows:

  • In Use Protection;
  • In Motion Protection;
  • At Rest Protection.

In this blog, we examine the controls that are needed to prevent data loss.

The Required Controls for Data Loss Prevention

Before any DLP technologies can be evaluated, it is first important to understand the controls that are needed for each focus area of the data described in the last section.  Once this has been established, then the appropriate DLP software package can be selected and deployed.  The following depicts the necessary controls for each type of data:

Data in Motion

Focus Area:

  • Perimeter Security
  • Network monitoring
  • Internet Access Control
  • Data collection and exchange with third parties
  • Use of instant messaging
  • Remote Access

Technological Control:

  • Firewalls, Proxy Servers
  • Selected DLP Technology
  • Proxy Servers, Content filters
  • Secure email, Secure FTP, Secure API’s, Encrypted Physical Media
  • Firewalls, Proxy Servers, Workstations Restrictions,
  • Encrypted remote access, Restrictions on use of remote access tools to prevent data leakage

(SOURCE:  http://www.ey.com/Publication/vwLUAssets/EY_Data_Loss_Prevention/$FILE/EY_Data_Loss_Prevention.pdf).

Data in Use

Focus Area

  • Privileged user monitoring
  • Access/ usage monitoring
  • Data sanitation
  • Use of test data
  • Data redaction
  • Export/save control

Technological Control

  • Event monitoring related to databases and application log files
  • Data sanitations routines and programs
  • Data redaction tools
  • Application controls

(SOURCE:  http://www.ey.com/Publication/vwLUAssets/EY_Data_Loss_Prevention/$FILE/EY_Data_Loss_Prevention.pdf).

Data at Rest

Focus Area

  • Endpoint security
  • Host encryption
  • Mobile device protection
  • Network/Intranet storage
  • Physical media control
  • Disposal and destruction

Technological Control

  • Operating system workstation restrictions
  • Full disk encryption tools
  • Built-in security features, third party mobile device control products
  • Access control software and permission control in all operating systems, databases and file storage systems
  • Endpoint media encryption tools, operating system workstation restrictions
  • Data erasure and data wiping software

(SOURCE:  http://www.ey.com/Publication/vwLUAssets/EY_Data_Loss_Prevention/$FILE/EY_Data_Loss_Prevention.pdf).

Conclusions

Our next blog will examine the important features of DLP Systems.

34 thoughts on “Data Loss Prevention – Pt. 2

  1. This is just a very handy article. It really goes to show what the best Los Angeles IT Service can do to make sure their clients will be well aware of what to expect out of each DLP software package to consider that their company actually needs.

  2. Thank you for posting the required controls for data loss prevention..i always appreciate Los Angeles Computer Company bestructured for posting informative piece like this

  3. Bestrucutured IT Service is here to help companies eradicate bad experience of data loss. We should all embrace their services, it will worth our money.

  4. Very interesting I didnt know that there were three types of technological control for data depending if it’s in use, in motion or at rest. Los Angeles IT Service are getting big and very helpfull for many complanies around the world.

  5. Los Angeles Computer Company and BeStructured Technology Group has been doing outstandingly well to help individuals and organizations in IT related fields. Three facet of DLP is another lesson for me. Thanks for this wonderful post.

  6. Good fundamentals for each data category. Hiring IT Service & Support is a great way to break down all software, firewalls and storage space for effective protection. Thanks for listing and explaining all the essentials and their role in data loss prevention.

  7. With proper IT Consulting an organization can be made aware of the best methods to prevent data loss. The methods discussed here are a great place to start.

  8. Companies that aren’t very tech savvy can always implement data loss prevention measures using third party companies as conduits via IT Outsourcing. This also frees the organization to focus on its more important tasks.

  9. For large companies the IT Service & Support teams may not be able to effectively implement all the data loss prevention measures. That’s where Be Structured comes in.

  10. It is absolutely important for every Computer Company to put in place strong tools that will effectively prevent data loss. This can save a lot of future problems.

  11. A Los Angeles Managed Service Provider like Be Structured can assist greatly in setting up your network in a way that mitigates data loss. I highly recommend this for companies out there.

  12. Data loss is one of the very scary thing that could happen to a computer. It is necessary that one should find the suitable IT service that the company can always rely on.

  13. The issue of data loss isn’t what company should handle lying low, it should be handled by professionals as such it can be handled by Los Angeles IT Service and the best service received.

  14. I have always known about data loss prevention the technological control way, as in about proxy and server control but using a good Computer Company like Bestructured technologies as revealed more

  15. I love educative piece like this..Los Angeles Managed Service Provider,bestructured always wow me with their amazing but educative write ups..

  16. Information here is very vital which will help us keep attackers at Bay. Using IT Services in California, Bestrucrured technologies then we can fight it.

  17. Data collection and exchange with third parties is seriously needed and one of the most vulnerable because anything can happen to data in transit. DLP can really be handled by the Los Angeles Managed Service Provider. You are fully covered.

  18. Through IT Outsourcing in Los Angeles some amazing solutions to data loss prevention can be accessed. Outsourcing is sometimes the easier and faster option.

  19. On top of the tips discussed here, the IT Service & Support teams should also sensitize the staff members of good practices that would ensure that data isn’t lost. This has proven to be a very effective method before.

  20. The IT Service Support structure within every company should always ensure that proper access controls are in place to prevent unauthorized access to data. I appreciate the very detailed article on data loss prevention.

  21. Every single computer company should incorporate strong encryption tools within their network. Encryption has been known to be an effective data loss prevention technique.

  22. Sometimes the best way to deal with data loss is to get help from the professionals. I would recommend a Los Angeles MSP like Be Structured.

  23. Before any DLP technologies can be evaluated, it is first important to understand the controls that are needed for each focus area of the data and this is where Los Angeles Managed Service Provider comes in to give your organization their expert advice. Thanks for sharing

  24. This is an issue that any Computer Company should have planned and be aware of. For one if it is just data about my favorite food then it is no big deal but if the data is a bit more exciting. It can topple down an individual or even a nation. This is very timely and should not be ignored.

  25. Great prevention methods which cover data, monitoring and encryption. Best to contact Be Structured IT Consulting to run a business smoothly.

  26. Every company should fortify their defense perimeter and protect their data..all thanks to Los Angeles MSP bestructured for writing this..their help will be much needed by companies..

  27. All these data loss areas need some technological control and ofcourse the only way to rectify this is by using a good IT Service to prevent data loss.

  28. Data Loss Prevention is still a pointer to cyber security. Need an expert? Los Angeles IT Outsourcing team are available for your uptake.

  29. With good Los Angeles IT Support securing data against loss can be easy. You just need to have the right team working for you.

  30. Thanks so much for sharing these helpful tips on Data Loss Prevention. This is as good as anyone could get even with IT Consulting.

  31. A well trained IT Service & Support team will always be at the forefront of knowing the best and most effective measures to use in data loss prevention. It is therefore prudent to invest in a well trained IT support team.

  32. Every single Computer Company should ensure that it is using strong firewalls and data encryption tools together with robust access controls to prevent data loss. Thank you for sharing the well researched write-up.

  33. Organizations that lack an IT department can always benefit from the services of a Los Angeles Managed Service Provider when looking to incorporate data loss prevention tools into their network infrastructure. Of course Be Structured would be a great company for the job!

Leave a Reply

Your email address will not be published. Required fields are marked *