{"id":1424,"date":"2019-05-08T04:01:37","date_gmt":"2019-05-08T09:01:37","guid":{"rendered":"https:\/\/media-moon.com\/blog\/?p=1424"},"modified":"2023-06-30T12:03:12","modified_gmt":"2023-06-30T17:03:12","slug":"data-loss-prevention-part-2","status":"publish","type":"post","link":"https:\/\/media-moon.com\/blog\/data-loss-prevention-part-2\/","title":{"rendered":"Data Loss Prevention \u2013 Part 2"},"content":{"rendered":"

Introduction<\/em><\/h3>\n

Our last blog post of this series<\/a> examined what Data Loss Prevention is, and the three major types of data categories of DLP Systems which are as follows:<\/p>\n

\n

> In Use Protection;<\/p>\n

> In Motion Protection;<\/p>\n

> At Rest Protection.<\/p>\n<\/div>\n

In this blog post, we examine the controls that are needed to prevent data loss.<\/p>\n

The Required Controls for Data Loss Prevention<\/em><\/h3>\n

Before any DLP technologies can be evaluated, it is first important to understand the controls that are needed for each focus area of the data described in the last section.<\/p>\n

Once this has been established, then the appropriate DLP software package can be selected and deployed.<\/p>\n

The following matrices depict the necessary controls for each type of data:<\/p>\n

Data in Motion<\/u><\/h4>\n

Focus Area\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0Technological Control<\/p>\n\n\n\n\n\n\n\n\n
Perimeter security<\/td>\nFirewalls, Proxy servers<\/td>\n<\/tr>\n
Network monitoring<\/td>\nSelected DLP technology<\/td>\n<\/tr>\n
Internet access control<\/td>\nProxy servers, Content filters<\/td>\n<\/tr>\n
Data collection and exchange with third parties<\/td>\nSecure email, Secure FTP, Secure APIs, Encrypted physical media<\/td>\n<\/tr>\n
Use of instant messaging<\/td>\nFirewalls, Proxy servers, Workstation restrictions<\/td>\n<\/tr>\n
Remote access<\/td>\nEncrypted remote access, restrictions on use of remote access tools to prevent data leakage<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Data in Use<\/u><\/h4>\n

Focus Area\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0Technological Control<\/p>\n\n\n\n\n\n\n\n\n
Privileged user monitoring<\/td>\nEvent monitoring related to databases and application log files<\/td>\n<\/tr>\n
Access\/usage monitoring<\/td>\nEvent monitoring related to databases, application log files<\/td>\n<\/tr>\n
Data sanitation<\/td>\nData sanitation routines and programs<\/td>\n<\/tr>\n
Use of test data<\/td>\nData sanitation routines and programs<\/td>\n<\/tr>\n
Data redaction<\/td>\nData redaction tools<\/td>\n<\/tr>\n
Export\/save control<\/td>\nApplication controls<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Data at Rest<\/u><\/h4>\n

Focus Area\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0Technological Control<\/p>\n\n\n\n\n\n\n\n\n
Endpoint security<\/td>\nOperating system workstation restrictions, Security software<\/td>\n<\/tr>\n
Host encryption<\/td>\nFull disk encryption tools<\/td>\n<\/tr>\n
Mobile device protection<\/td>\nBuilt-in security features, Third-party mobile device control products<\/td>\n<\/tr>\n
Network\/Intranet storage<\/td>\nAccess control software and permission control in all<\/u><\/em><\/strong> Operating systems, Databases and File storage systems<\/td>\n<\/tr>\n
Physical media control<\/td>\nEndpoint media encryption tools, Operating system workstation restrictions<\/td>\n<\/tr>\n
Disposal and destruction<\/td>\nData erasure and Data wiping software<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

– ey.com<\/p>\n

\"\"<\/h3>\n

Conclusions<\/em><\/h3>\n

Our next blog post of the series<\/a> will examine the important features of DLP Systems.<\/p>\n

\n","protected":false},"excerpt":{"rendered":"

Introduction Our last blog post of this series examined what Data Loss Prevention is, and the three major types of data categories of DLP Systems which are as follows: > In Use Protection; > In Motion Protection; > At Rest Protection. In this blog post, we examine the controls that are needed to prevent data […]<\/p>\n","protected":false},"author":7,"featured_media":1426,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[146,156],"tags":[275,273,274,272,280,276,278,279,277],"class_list":["post-1424","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-business-continuity","category-cyber-security","tag-data-at-rest","tag-data-in-motion","tag-data-in-use","tag-data-loss-prevention","tag-dlp","tag-dlp-systems","tag-motion-protection","tag-rest-protection","tag-use-protection"],"aioseo_notices":[],"aioseo_head":"\n\t\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\t