ALL >> Computers >> View Article
Don’t Neglect Data Loss Prevention (dlp) For The Cloud
There was a time when data loss prevention (DLP) efforts were focused on storage devices, email, and printing. However, now that you can take your device with you, in the form of a laptop or mobile phone, a lot more attention has been focused on devices themselves.
This makes sense as there are a ton of examples, from the US, but also from abroad of compliance fines for data that was lost via a laptop or mobile device. The mobile device management (MDM) industry has made significant strides in securing these mobile devices, which tend to get lost or stolen with almost no effort at all. But this leads to my fourth Cloud Data Security tip – look beyond devices and email and address DLP for the cloud.
The government can be relentless in prosecuting PCI, HIPAA, and HITECH compliance violations, regardless of how seemingly innocent the cause of the breach was. In both the examples hyperlinked above, the fined party lost the data because a laptop was stolen and the confidential data found within the device was not encrypted.
So, can you imagine ...
... how forgiving the government will be when a hospital uses Google spreadsheets to track patient information.
Not convinced this will happen to the cloud services you are using? Well it probably already has. For a beautiful and terrifying view into recent and remarkable data breaches, check out Information is Beautiful’s visualization of the worlds biggest data breaches. You’ll notice quite a few cloud services in there.
So what can you do? First you have identify all of the Cloud Security services your organization is using. Then you need to understand which data is going to which services. With this visibility you’ll be able to implement a targeted and realistic data loss prevention effort.
It doesn’t make sense to try and block or encrypt every piece of data going to every cloud service. So, you’ll want to use a trigger-based DLP process that identifies personally identifiable information, financial data, or confidential data that is heading to or living in the cloud. You’ll want the flexibility to either alert, encrypt, or block that data and you’ll want the flexibility to do this inline or offline.
Using this process, you’ll be able to prevent personally identifiable information (PII) and personal health information (PHI) from hitting the cloud unprotected – in doing so you protect your organization from IP leakage, compliance violations and fines, and the awful PR associated with being in next year’s annual data breaches report.
Author :
Lauren Ellis is a research analyst covering the technology industry’s top trends & topics, focusing on Cloud Security, Cloud Computing, data loss prevention etc.,
Add Comment
Computers Articles
1. 10 Dropshipping Shopify Apps For Shopify Stores 2025Author: Elightwalk Technology
2. How To Write A Great Creative Ux Brief For A Design Consultancy
Author: goodcoders
3. How To Market Your Gojek Clone App Effectively
Author: simonharris
4. Scrape Restaurant Guru Review Data: Unlock Actionable Insights
Author: DataZivot
5. How To Make A Rental Search App To Solve Tenants’ Problems?
Author: goodcoders
6. Is The Is200ehpag1d Exciter Gate Pulse Amplifier Board The Ideal Choice For Your Power System Needs?
Author: Alex Zilk
7. Document Management System For Clinical Trials
Author: Giselle Bates
8. Vupico Sdp
Author: Lorenzoe Taala
9. An Extensive Guide On E-commerce Application Development
Author: goodcoders
10. Why Do Your Businesses Need Vehicle Rental Management Software In 2025?
Author: RentAAA
11. Exploring Bigpond A Reliable Choice For Your Internet Needs
Author: james smith
12. Elevate Your Online Presence With Leading Digital Marketing Solutions In Surat
Author: sassy infotech
13. How To Power Several Appliances Together Safely?
Author: Jennifer Truong
14. Web Scraping Zomato Restaurant Customer Reviews
Author: DataZivot
15. Why Every Coworking Space Needs Management Software To Thrive
Author: RentAAA