By IT Brew Staff
less than 3 min read
Definition:
Data loss prevention (DLP) is a system designed to help organizations prevent the unauthorized transfer and use of sensitive data. IT professionals tasked with DLP must set up the processes and technology necessary to monitor and prevent data loss at multiple points on the network, including end users’ devices (such as laptops), cloud apps and storage, and on-premises software and hardware.
An optimized DLP system guards data in use, in motion, and at rest (i.e., in storage). Depending on an organization’s structure, that could mean setting up AI tools to track the progress of data across a network, endpoint monitoring for laptops and mobile devices, or solutions to encrypt and observe data in cloud apps and repositories.
For IT pros, the first step to a successful DLP rollout is identifying and classifying the organization’s data (both structured and unstructured) to give an idea of the overall scope of the project. From there, they must figure out the best tools and techniques for monitoring that data. After that, they can apply any necessary protections to the data, including (but not limited to) encryption and blocking unauthorized users. While that’s underway, they must also set up the necessary dashboards and reporting features so that the organization can evaluate the effectiveness of these DLP efforts.
For organizations in heavily regulated industries such as healthcare, a strong DLP policy is a must-have. The leak or breach of patient data, for instance, could prove disastrous for a company’s reputation and finances. Organizations in other industries should still consider DLP so they can remain compliant with ever-evolving data and privacy regulations.
