DLP is a set of security controls that helps organization protect their sensitive data, throughout its life cycle, across all platforms, from getting disclosed to unauthorized users(insiders or outsiders) either accidentally or intentionally.
Different types of DLP:
- Endpoint DLP: Protects data leak from endpoints devices such as, data leak from removable storage devices (USB’s), Local file shares, print services etc. It controls data usage on laptops, workstations, servers and provides additional layer of protection for Mobile users.
- Network DLP: Provides broad security coverage across networks. Network DLP is able to perform deep packet inspection across applications, Protocols and are able to monitor SSL and other forms of encrypted traffic. They are content aware and uses myriad set of rules and policies to monitor data in Motion.
- Storage DLP: Protects data stored on Storage towers and network storage. Helps in data discovery, data classification and data de-duplication. Enforces sensitive data storage policy across all devices and networks.
- Cloud DLP: DLP functionality extended to the cloud. This is for the protection of your cloud apps or if you have sensitive data residing on the cloud. Cloud based DLP also has an additional advantage of being deployed in the more speedy and cost effective way. Cloud Access Security Brokers (CASB) provides Cloud DP features in addition to other security features.
Key Use Cases
Need to protect organizations sensitive data from insider threats:
DLP solution can prevent sensitive data leak either accidentally or intentionally in an organization. The biggest threat to confidential data is due to the insider threat. It can check data leak through Endpoint, Removable media, Network and Cloud.
Protect organizations sensitive data from getting leaked through Mobile users/devices and removable media:
Mobile users are the biggest use cases for DLP solution. A mobile user in an organization carry removable devices, Laptop, Mobile phone and often accesses cloud apps through unprotected network. Protecting such user is a challenge and it solution is designed to do that.
Want to discover and classify organizations sensitive data across networks, devices and storage systems:
Most of the DLP product can discover and classify sensitive data inside your organization across endpoints, network and storage. You can find out where your sensitive data is stored, what kind of sensitive data is it, how your sensitive data is being used and who is using it.
your organizations need to comply with multiple data protection compliance requirements and regulatory laws:
If you hold PII data, financial data or any other information which is to be protected under some legal obligations, they can help you put in controls to protect that data. It helps you meet the compliance and regulatory obligations.
Protect sensitive data from getting stolen through targeted attacks:
Targeted attacks are generally aimed at data theft, be it PII data, Intellectual property or state secrets. The crucial stage in any APT attacks is data exfiltration. With the help of this solution you can detect any attempt to exfilterate organizations data hence rendering such attacks unsuccessful.
To centrally manage(enforce policies, assign rights and privileges etc.) sensitive data residing anywhere withing your organization:
DLP solution offer you the centralized control over all your organizations sensitive data and assets. you can centrally grant/ revoke access rights for a particular set of people, Check for compliance, Audit users, systems and devices and generate reports.
Do let me know if you want us to add or modify any of the listed key use cases.
Check out the Data Loss Prevention (DLP) market within FireCompass to get more information on these markets.