DATA LOSS PREVENTION OVERVIEW

S
Sylvain Martinez
CYBER SECURITY DATA LOSS PREVENTION OVERVIEW VERSION: 1.3 DATE: 24/07/2019 AUTHOR: SYLVAIN MARTINEZ REFERENCE: ES-IDLP CLASSIFICATION: PUBLIC
2 • Cyber Security Risk context; • Data breach statistics; • Data breach cost; • DLP dependencies; • Data protection lifecycle; • DLP definition; • DLP Overview; • Define DLP objectives; • Define DLP scope; • Define DLP policy; • Overview; • Technology deployment; • Policy setup; • Data discovery and classification; • DLP monitoring and tuning; • DLP reporting and protection; CONTENTS CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT • Core DLP benefits • Take away to remember PUBLIC
CYBER SECURITY RISK CONTEXT 3 PAST FUTURE 100% 0% TIME GROWTH PAST FUTURE 100% 0% TIME GROWTH PAST FUTURE 100% 0% TIME GROWTH CYBER SECURITY RISKS’ PROBABILITY AND IMPACT ARE INCREASING. THEIR ABILITY TO DISRUPT COMPANIES BUSINESS OPERATION HAVE GROWING FINANCIAL, REPUTATIONAL AND LEGAL NEGATIVE CONSEQUENCES + = CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT PUBLIC
DATA BREACH STATISTICS 4 EVERY DAY 6,313,865 RECORDS EVERY HOUR 263,078 RECORDS EVERY MINUTE 4,385 RECORDS EVERY SECONDS 73 RECORDS DATA RECORDS ARE LOST OR STOLEN AT THE FOLLOWING FREQUENCY DATA RECORDS LOST OR STOLEN SINCE 2013 Source: Breach Level Index - May 2019 4 7 1 7 6 1 8 2 8 6, ,,1 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT PUBLIC
INCIDENT AND DATA BREACH COST 5 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT PUBLIC 80% FINANCIAL FRAUDS ELYSIUMSECURITY INVESTIGATIONS MAURITIUS 2018-2019 20% RANSOMWARE 100% PHISHING JAN 2018 - $0.5M AUG 2018 - $2M MAY 2019 - $1M JULY 2019 - $0M MAY 2018 - $1M APR 2019 - $0.5M JUNE 2019 - $0.5M $3.86M AVERAGE COST PER DATA BREACH $1.6M AVERAGE COST PER PHISHING ATTACK 95% OF ALL DATA BREACHES COME FROM PHISHING ATTACKS 24% OF ALL DATA BREACHES COME FROM HEALTHCARE ORGANISATIONS 197 DAYS AVERAGE INCIDENT DETECTION TIME WORLDWIDE STATISTICS WORLDWIDE STATS FROM SAFEATLAST.CO AND RETRUSTER.COM – JUNE 2019
DLP DEPENDENCIES 6 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT ORGANIZATION RISK PROFILE REVIEWED DOCUMENTED COMMUNICATED 1 DATA CLASSIFICATION DEFINED COMMUNICATED ENFORCED 2 TYPE OF DATA TO PROTECT IDENTIFIED LOCATED COMPATIBLE 3 PUBLIC
DATA PROTECTION LIFECYCLE 7 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT WHEN THE DATA IS TRANSMITED IN TRANSITAT REST IN USE WHEN THE DATA IS CREATED & CONSUMED LOCAL DISK FILE SERVER CLOUD STORAGE REMOVABLE MEDIA … DOCUMENT READ DOCUMENT MODIFICATION DOCUMENT DELETION DATABASE QUERY … DATA SENT IN EMAIL DATA SAVED TO CLOUD DATA SENT TO SERVER REMOVABLE MEDIA … WHERE THE DATA IS STORED PUBLIC
DLP DEFINITION 8 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT DATA LOSS PREVENTION (DLP) IS A SOLUTION TO MONITOR, DETECT AND PREVENT POTENTIAL DATA LOSSES (BREACHES/EX- FILTRATION) WHILST DATA IS IN USE, IN TRANSIT AND/OR AT REST. PUBLIC
DLP OVERVIEW 9 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT DISCOVER MONITOR PROTECT SUPPORT AND REPORT DATA HOST BASED PROTECTION APP BASED PROTECTION NETWORK BASED PROTECTION DLP SERVICE DLP SOLUTION PUBLIC
DEFINE DLP OBJECTIVES 10 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT WHY DEFINE THE REASONS FOR IMPLEMENTING DLP THREATS, REGULATION, ETC WHAT DEFINE THE TYPE AND FORM OF DATA IN SCOPE FOR DLP CONTRACTS, PII, ETC. DOCS, RAW DATA, ETC. WHERE DEFINE THE TYPE OF LOCATIONS IN SCOPE FOR DLP FILE SERVER, CLOUD, APPLICATION, DB, ETC. WHEN DEFINE THE TIME DLP WILL BE NEEDED IMMEDIATELY AS DATA IS CREATED, DURATION, ETC. PUBLIC
DEFINE DLP SCOPE 11 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT DEFINE THE EXACT LOCATION OF DATA IN SCOPE FOR DLP FILE SERVER NAMES/IP, APP NAME, CLOUD PROVIDER, ETC. DEFINE THE INFRASTRUCTURE DIAGRAM IN SCOPE FOR DLP SYSTEM AND NETWORK DIAGRAMS DEFINE THE DATA FLOW IN SCOPE FOR DLP BUSINESS AND OPERATION LOGIC, DATA FLOW DIAGRAMS, ETC. PUBLIC
DEFINE DLP POLICY 12 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT DEFINE DATA CLASSIFICATION MAPPING NOMENCLATURE, KEYWORDS, ETC. DEFINE THE DIFFERENT ROLES OWNER, CUSTODIAN, CONSUMER, ETC. DEFINE THE DIFFERENT RESTRICTIONS REQUIRED EXPORT/SAVE AS, PRINT, EDIT, READ, COPY, ETC. DEFINE THE ALERT AND REPORTING PROCESS TEAM, PRIORITIES, COMMUNICATION, ETC. PUBLIC
OVERVIEW 13 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT TECHNICAL DEPLOYMENT DISCOVERY & CLASSIFICATION ENFORCE DLP POLICY MONITOR DLP EVENTS REPORTING & TUNING POLICY SETUP BASIC PARTIAL FULL DISCOVER MONITOR PROTECT SUPPORT AND REPORT DLP SERVICE PUBLIC
TECHNOLOGY DEPLOYMENT 14 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT DATA HOST BASED PROTECTION COVERAGE FEATURE OPERATIONAL IMPACT NETWORK BASED PROTECTION EGRESS POINTS VISIBILITY OPERATIONAL IMPACT APP BASED PROTECTION COMPATIBILITY CONFLICT VISIBILITY PUBLIC DLP IMPLEMENTATION
POLICY SETUP 15 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT LIMITED ALERTS GENERATED LIMITED SCOPE, SOME DATA IDENTIFIED AND CLASSIFIED NO RESTRICTION ENFORCED BASIC ALERTS GENERATED MOST DATA IDENTIFIED AND CLASSIFIED SOME RESTRICTIONS ENFORCED PARTIAL ALERTS GENERATED ALL DATA IDENTIFIED AND CLASSIFIED FULL RESTRICTIONS ENFORCED FULL PUBLIC DLP IMPLEMENTATION
DATA DISCOVERY AND CLASSIFICATION 16 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT DISCOVERY CLASSIFICATION BASIC QUICK WINS KEY EGRESS POINTS KEY FILE SHARES SOME DATA TYPES CRITICAL DATA ONLY IN SCOPE SIMPLE DETECTION (KEYWORDS) REPORTING ONLY PARTIAL ALL EGRESS POINTS SOME HOSTS/SERVERS SOME APPS MOST DATA TYPES ALL DATA CLASSIFICATION IN SCOPE COMPLEX DETECTION AUTO LABELLING FULL ALL EGRESS POINTS ALL HOSTS/SERVERS ALL APPS ALL DATA TYPES ALL DATA CLASSIFICATION IN SCOPE MACHINE LEARNING DETECTION AUTO LABELLING ALL DATA PUBLIC DLP IMPLEMENTATION
DLP MONITORING AND TUNING 17 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT MONITORING TUNING BASIC DEFAULT DASHBOARD LIMITED VISIBILITY AD-HOC LOT OF FALSE POSITIVES AD-HOC MANUAL PARTIAL CUSTOMISED DASHBAORD IMPROVED VISIBILITY REGULAR SOME FALSE POSITIVES REGULAR MANUAL FULL FULLY CUSTOMISED DASHBOARD FULL VISIBILITY REGULAR LIMITED FALSE POSITIVES REGULAR MANUAL AND AUTOMATED PUBLIC DLP IMPLEMENTATION
DLP REPORTING AND PROTECTION 18 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT REPORTING PROTECTION BASIC REACTIVE REPORTING LIMITED REPORTING AD-HOC REPORTING MANUAL REPORTING LIMITED VISIBILITY LIMITED ALERTS NO USER FEEDBACK NO RESTRICTIONS PARTIAL SOME PRO-ACTIVE REPORTING DETAILED REPORTING REGULAR REPORTING SOME AUTOMATED REPORTING MOST DATA VISIBILITY USEFUL ALERTS SOME USER FEEDBACK SOME RESTRICTIONS FULL PRO-ACTIVE REPORTING COMPREHENSIVE REPORTING REGULAR REPORTING AUTOMATED REPORTING FULL VISIBILITY COMPREHENSIVE ALERTS USER AND ADMIN FEEDBACK RESTRICTIONS ENFORCED PUBLIC DLP IMPLEMENTATION
CORE DLP BENEFITS 19 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT VISIBILITY OF DATA LOCATION/USAGE/SENSITIVITY 1 MONITORING AND ALERTING OF DATA SUSPICIOUS ACTIVITIES 2 IMPROVED DATA PROTECTION3 PUBLIC
TAKE AWAY TO REMEMBER 20PUBLIC CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT DLP DEPENDENCIES1 IMPORTANCE OF DLP SCOPING2 IMPORTANCE OF DLP PREPARATION3 PROGRESSIVE IMPLEMENTATION4 CONTINUOUS IMPROVEMENT5
© 2015-2019 ELYSIUMSECURITY LTD ALL RIGHTS RESERVED HTTPS://WWW.ELYSIUMSECURITY.COM CONSULTING@ELYSIUMSECURITY.COM ABOUT ELYSIUMSECURITY LTD. ELYSIUMSECURITY PROVIDES PRACTICAL EXPERTISE TO IDENTIFY VULNERABILITIES, ASSESS THEIR RISKS AND IMPACT, REMEDIATE THOSE RISKS, PREPARE AND RESPOND TO INCIDENTS AS WELL AS RAISE SECURITY AWARENESS THROUGH AN ORGANIZATION. ELYSIUMSECURITY PROVIDES HIGH LEVEL EXPERTISE GATHERED THROUGH YEARS OF BEST PRACTICES EXPERIENCE IN LARGE INTERNATIONAL COMPANIES ALLOWING US TO PROVIDE ADVICE BEST SUITED TO YOUR BUSINESS OPERATIONAL MODEL AND PRIORITIES. ELYSIUMSECURITY PROVIDES A PORTFOLIO OF STRATEGIC AND TACTICAL SERVICES TO HELP COMPANIES PROTECT AND RESPOND AGAINST CYBER SECURITY THREATS. WE DIFFERENTIATE OURSELVES BY OFFERING DISCREET, TAILORED AND SPECIALIZED ENGAGEMENTS. ELYSIUMSECURITY OPERATES IN MAURITIUS AND IN EUROPE, A BOUTIQUE STYLE APPROACH MEANS WE CAN EASILY ADAPT TO YOUR BUSINESS OPERATIONAL MODEL AND REQUIREMENTS TO PROVIDE A PERSONALIZED SERVICE THAT FITS YOUR WORKING ENVIRONMENT.
1 of 21

DATA LOSS PREVENTION OVERVIEW

Download to read offline
Technology

A look at what is needed for a successful DLP Implementation

S
Sylvain Martinez

Recommended

Data Loss Threats and Mitigations by
Data Loss Threats and MitigationsData Loss Threats and Mitigations
Data Loss Threats and MitigationsApril Mardock CISSP
977 views23 slides
Data Loss Prevention by
Data Loss PreventionData Loss Prevention
Data Loss Preventiondj1arry
526 views17 slides
Data Loss Prevention by
Data Loss PreventionData Loss Prevention
Data Loss PreventionReza Kopaee
15.1K views38 slides
Data Leakage Prevention (DLP) by
Data Leakage Prevention (DLP)Data Leakage Prevention (DLP)
Data Leakage Prevention (DLP)Network Intelligence India
13.8K views9 slides
Data loss prevention (dlp) by
Data loss prevention (dlp)Data loss prevention (dlp)
Data loss prevention (dlp)Hussein Al-Sanabani
9.8K views34 slides
Data Loss Prevention from Symantec by
Data Loss Prevention from SymantecData Loss Prevention from Symantec
Data Loss Prevention from SymantecArrow ECS UK
16.3K views24 slides

More Related Content

What's hot

Overview of Data Loss Prevention (DLP) Technology by
Overview of Data Loss Prevention (DLP) TechnologyOverview of Data Loss Prevention (DLP) Technology
Overview of Data Loss Prevention (DLP) TechnologyLiwei Ren任力偉
3.9K views34 slides
Zero Trust Network Access by
Zero Trust Network Access Zero Trust Network Access
Zero Trust Network Access Er. Ajay Sirsat
1.7K views21 slides
Data Loss Prevention (DLP) - Fundamental Concept - Eryk by
Data Loss Prevention (DLP) - Fundamental Concept - ErykData Loss Prevention (DLP) - Fundamental Concept - Eryk
Data Loss Prevention (DLP) - Fundamental Concept - ErykEryk Budi Pratama
721 views17 slides
Overview of the Cyber Kill Chain [TM] by
Overview of the Cyber Kill Chain [TM]Overview of the Cyber Kill Chain [TM]
Overview of the Cyber Kill Chain [TM]David Sweigert
3.5K views16 slides
Data Classification Presentation by
Data Classification PresentationData Classification Presentation
Data Classification PresentationDerroylo
14.5K views30 slides
Introduction to Cybersecurity by
Introduction to CybersecurityIntroduction to Cybersecurity
Introduction to CybersecurityKrutarth Vasavada
492 views23 slides

What's hot(20)

Overview of Data Loss Prevention (DLP) Technology by Liwei Ren任力偉
Overview of Data Loss Prevention (DLP) TechnologyOverview of Data Loss Prevention (DLP) Technology
Overview of Data Loss Prevention (DLP) Technology
Liwei Ren任力偉3.9K views
Zero Trust Network Access by Er. Ajay Sirsat
Zero Trust Network Access Zero Trust Network Access
Zero Trust Network Access
Er. Ajay Sirsat1.7K views
Data Loss Prevention (DLP) - Fundamental Concept - Eryk by Eryk Budi Pratama
Data Loss Prevention (DLP) - Fundamental Concept - ErykData Loss Prevention (DLP) - Fundamental Concept - Eryk
Data Loss Prevention (DLP) - Fundamental Concept - Eryk
Eryk Budi Pratama721 views
Overview of the Cyber Kill Chain [TM] by David Sweigert
Overview of the Cyber Kill Chain [TM]Overview of the Cyber Kill Chain [TM]
Overview of the Cyber Kill Chain [TM]
David Sweigert3.5K views
Data Classification Presentation by Derroylo
Data Classification PresentationData Classification Presentation
Data Classification Presentation
Derroylo14.5K views
Introduction to Cybersecurity by Krutarth Vasavada
Introduction to CybersecurityIntroduction to Cybersecurity
Introduction to Cybersecurity
Krutarth Vasavada492 views
Security Training: #3 Threat Modelling - Practices and Tools by Yulian Slobodyan
Security Training: #3 Threat Modelling - Practices and ToolsSecurity Training: #3 Threat Modelling - Practices and Tools
Security Training: #3 Threat Modelling - Practices and Tools
Yulian Slobodyan14.1K views
Introducing Data Loss Prevention 14 by Symantec
Introducing Data Loss Prevention 14Introducing Data Loss Prevention 14
Introducing Data Loss Prevention 14
Symantec7K views
Cybersecurity trends - What to expect in 2023 by PECB
Cybersecurity trends - What to expect in 2023Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023
PECB 2.8K views
What is zero trust model (ztm) by Ahmed Banafa
What is zero trust model (ztm)What is zero trust model (ztm)
What is zero trust model (ztm)
Ahmed Banafa773 views
Technology Overview - Symantec Data Loss Prevention (DLP) by Iftikhar Ali Iqbal
Technology Overview - Symantec Data Loss Prevention (DLP)Technology Overview - Symantec Data Loss Prevention (DLP)
Technology Overview - Symantec Data Loss Prevention (DLP)
Iftikhar Ali Iqbal12.9K views
Cybersecurity by A. Shamel
CybersecurityCybersecurity
Cybersecurity
A. Shamel471 views
Data Loss Prevention: Challenges, Impacts & Effective Strategies by Seccuris Inc.
Data Loss Prevention: Challenges, Impacts & Effective StrategiesData Loss Prevention: Challenges, Impacts & Effective Strategies
Data Loss Prevention: Challenges, Impacts & Effective Strategies
Seccuris Inc.3.5K views
DLP Executive Overview by Kim Jensen
DLP Executive OverviewDLP Executive Overview
DLP Executive Overview
Kim Jensen1.7K views
Identity & Access Management - Securing Your Data in the 21st Century Enterprise by Lance Peterman
Identity & Access Management - Securing Your Data in the 21st Century EnterpriseIdentity & Access Management - Securing Your Data in the 21st Century Enterprise
Identity & Access Management - Securing Your Data in the 21st Century Enterprise
Lance Peterman1.4K views
Zero Trust by Boaz Shunami
Zero TrustZero Trust
Zero Trust
Boaz Shunami736 views
Incident response process by Bhupeshkumar Nanhe
Incident response processIncident response process
Incident response process
Bhupeshkumar Nanhe5.4K views
Cyber Threat Intelligence by Marlabs
Cyber Threat IntelligenceCyber Threat Intelligence
Cyber Threat Intelligence
Marlabs1.7K views
Cyber kill chain by Ankita Ganguly
Cyber kill chainCyber kill chain
Cyber kill chain
Ankita Ganguly3.8K views
Cyber Threat Intelligence by mohamed nasri
Cyber Threat IntelligenceCyber Threat Intelligence
Cyber Threat Intelligence
mohamed nasri7.4K views

Similar to DATA LOSS PREVENTION OVERVIEW

Symantec Data Loss Prevention 9 by
Symantec Data Loss Prevention 9Symantec Data Loss Prevention 9
Symantec Data Loss Prevention 9Ariel Martin Beliera
8.1K views38 slides
Understanding Cyber Kill Chain and OODA loop by
Understanding Cyber Kill Chain and OODA loopUnderstanding Cyber Kill Chain and OODA loop
Understanding Cyber Kill Chain and OODA loopDavid Sweigert
3.5K views15 slides
Protect your sensitive data against data leaks with Safetica DLP by
Protect your sensitive data against data leaks with Safetica DLPProtect your sensitive data against data leaks with Safetica DLP
Protect your sensitive data against data leaks with Safetica DLPAdi Saputra
133 views21 slides
Journey to the Center of Security Operations by
Journey to the Center of Security OperationsJourney to the Center of Security Operations
Journey to the Center of Security Operations♟Sergej Epp
289 views30 slides
Cloud Services As An Enabler by
Cloud Services As An EnablerCloud Services As An Enabler
Cloud Services As An EnablerSLA-Ready Network
107 views36 slides
Are your Cloud Services Secure and Compliant today? by
Are your Cloud Services Secure and Compliant today?Are your Cloud Services Secure and Compliant today?
Are your Cloud Services Secure and Compliant today?Sridhar Karnam
1K views26 slides

Similar to DATA LOSS PREVENTION OVERVIEW(20)

Symantec Data Loss Prevention 9 by Ariel Martin Beliera
Symantec Data Loss Prevention 9Symantec Data Loss Prevention 9
Symantec Data Loss Prevention 9
Ariel Martin Beliera8.1K views
Understanding Cyber Kill Chain and OODA loop by David Sweigert
Understanding Cyber Kill Chain and OODA loopUnderstanding Cyber Kill Chain and OODA loop
Understanding Cyber Kill Chain and OODA loop
David Sweigert3.5K views
Protect your sensitive data against data leaks with Safetica DLP by Adi Saputra
Protect your sensitive data against data leaks with Safetica DLPProtect your sensitive data against data leaks with Safetica DLP
Protect your sensitive data against data leaks with Safetica DLP
Adi Saputra133 views
Journey to the Center of Security Operations by ♟Sergej Epp
Journey to the Center of Security OperationsJourney to the Center of Security Operations
Journey to the Center of Security Operations
♟Sergej Epp289 views
Cloud Services As An Enabler by SLA-Ready Network
Cloud Services As An EnablerCloud Services As An Enabler
Cloud Services As An Enabler
SLA-Ready Network107 views
Are your Cloud Services Secure and Compliant today? by Sridhar Karnam
Are your Cloud Services Secure and Compliant today?Are your Cloud Services Secure and Compliant today?
Are your Cloud Services Secure and Compliant today?
Sridhar Karnam1K views
PCI DSS v 3.0 and Oracle Security Mapping by Troy Kitch
PCI DSS v 3.0 and Oracle Security MappingPCI DSS v 3.0 and Oracle Security Mapping
PCI DSS v 3.0 and Oracle Security Mapping
Troy Kitch3.6K views
PROGRAMMING AND CYBER SECURITY by Sylvain Martinez
PROGRAMMING AND CYBER SECURITYPROGRAMMING AND CYBER SECURITY
PROGRAMMING AND CYBER SECURITY
Sylvain Martinez234 views
INTRODUCTION TO CYBER FORENSICS by Sylvain Martinez
INTRODUCTION TO CYBER FORENSICSINTRODUCTION TO CYBER FORENSICS
INTRODUCTION TO CYBER FORENSICS
Sylvain Martinez1.1K views
Cloud Services As An Enabler by SLA-Ready Network
Cloud Services As An EnablerCloud Services As An Enabler
Cloud Services As An Enabler
SLA-Ready Network386 views
Cloud Services As An Enabler: The Strategic, Legal & Pragmatic Approach by SLA-Ready Network
Cloud Services As An Enabler: The Strategic, Legal & Pragmatic ApproachCloud Services As An Enabler: The Strategic, Legal & Pragmatic Approach
Cloud Services As An Enabler: The Strategic, Legal & Pragmatic Approach
SLA-Ready Network426 views
Encryption and Key Management: Ensuring Compliance, Privacy, and Minimizing t... by IBM Security
Encryption and Key Management: Ensuring Compliance, Privacy, and Minimizing t...Encryption and Key Management: Ensuring Compliance, Privacy, and Minimizing t...
Encryption and Key Management: Ensuring Compliance, Privacy, and Minimizing t...
IBM Security2.3K views
DLP by saurabh.sood
DLPDLP
DLP
saurabh.sood1.6K views
ISSA Atlanta - Emerging application and data protection for multi cloud by Ulf Mattsson
ISSA Atlanta - Emerging application and data protection for multi cloudISSA Atlanta - Emerging application and data protection for multi cloud
ISSA Atlanta - Emerging application and data protection for multi cloud
Ulf Mattsson166 views
6620handout5o by Shahbaz Sidhu
6620handout5o6620handout5o
6620handout5o
Shahbaz Sidhu300 views
Strengthen Cloud Security by Lora O'Haver
Strengthen Cloud SecurityStrengthen Cloud Security
Strengthen Cloud Security
Lora O'Haver49 views
Evolutionary ATM & Cyber Security - Selex ES - Angeloluca Barba by Angeloluca Barba
Evolutionary ATM & Cyber Security - Selex ES - Angeloluca BarbaEvolutionary ATM & Cyber Security - Selex ES - Angeloluca Barba
Evolutionary ATM & Cyber Security - Selex ES - Angeloluca Barba
Angeloluca Barba1.2K views
MYTHBUSTERS: Can You Secure Payments in the Cloud? by Kurt Hagerman
MYTHBUSTERS: Can You Secure Payments in the Cloud?MYTHBUSTERS: Can You Secure Payments in the Cloud?
MYTHBUSTERS: Can You Secure Payments in the Cloud?
Kurt Hagerman240 views
Adversary Emulation and Red Team Exercises - EDUCAUSE by Jorge Orchilles
Adversary Emulation and Red Team Exercises - EDUCAUSEAdversary Emulation and Red Team Exercises - EDUCAUSE
Adversary Emulation and Red Team Exercises - EDUCAUSE
Jorge Orchilles622 views
The Definitive Guide to Data Loss Prevention by Digital Guardian
The Definitive Guide to Data Loss PreventionThe Definitive Guide to Data Loss Prevention
The Definitive Guide to Data Loss Prevention
Digital Guardian1.6K views

More from Sylvain Martinez

INTRODUCTION TO CRYPTOGRAPHY by
INTRODUCTION TO CRYPTOGRAPHYINTRODUCTION TO CRYPTOGRAPHY
INTRODUCTION TO CRYPTOGRAPHYSylvain Martinez
1.2K views21 slides
INCIDENT RESPONSE NIST IMPLEMENTATION by
INCIDENT RESPONSE NIST IMPLEMENTATIONINCIDENT RESPONSE NIST IMPLEMENTATION
INCIDENT RESPONSE NIST IMPLEMENTATIONSylvain Martinez
5.5K views27 slides
2019 CYBER SECURITY TRENDS REPORT REVIEW by
2019 CYBER SECURITY TRENDS REPORT REVIEW2019 CYBER SECURITY TRENDS REPORT REVIEW
2019 CYBER SECURITY TRENDS REPORT REVIEWSylvain Martinez
1.8K views18 slides
INCIDENT RESPONSE CONCEPTS by
INCIDENT RESPONSE CONCEPTSINCIDENT RESPONSE CONCEPTS
INCIDENT RESPONSE CONCEPTSSylvain Martinez
1.3K views39 slides
PHISHING PROTECTION by
PHISHING PROTECTIONPHISHING PROTECTION
PHISHING PROTECTIONSylvain Martinez
2.3K views30 slides
VIRTUAL CISO AND OTHER KEY CYBER ROLES by
VIRTUAL CISO AND OTHER KEY CYBER ROLESVIRTUAL CISO AND OTHER KEY CYBER ROLES
VIRTUAL CISO AND OTHER KEY CYBER ROLESSylvain Martinez
418 views10 slides

More from Sylvain Martinez(20)

INTRODUCTION TO CRYPTOGRAPHY by Sylvain Martinez
INTRODUCTION TO CRYPTOGRAPHYINTRODUCTION TO CRYPTOGRAPHY
INTRODUCTION TO CRYPTOGRAPHY
Sylvain Martinez1.2K views
INCIDENT RESPONSE NIST IMPLEMENTATION by Sylvain Martinez
INCIDENT RESPONSE NIST IMPLEMENTATIONINCIDENT RESPONSE NIST IMPLEMENTATION
INCIDENT RESPONSE NIST IMPLEMENTATION
Sylvain Martinez5.5K views
2019 CYBER SECURITY TRENDS REPORT REVIEW by Sylvain Martinez
2019 CYBER SECURITY TRENDS REPORT REVIEW2019 CYBER SECURITY TRENDS REPORT REVIEW
2019 CYBER SECURITY TRENDS REPORT REVIEW
Sylvain Martinez1.8K views
INCIDENT RESPONSE CONCEPTS by Sylvain Martinez
INCIDENT RESPONSE CONCEPTSINCIDENT RESPONSE CONCEPTS
INCIDENT RESPONSE CONCEPTS
Sylvain Martinez1.3K views
PHISHING PROTECTION by Sylvain Martinez
PHISHING PROTECTIONPHISHING PROTECTION
PHISHING PROTECTION
Sylvain Martinez2.3K views
VIRTUAL CISO AND OTHER KEY CYBER ROLES by Sylvain Martinez
VIRTUAL CISO AND OTHER KEY CYBER ROLESVIRTUAL CISO AND OTHER KEY CYBER ROLES
VIRTUAL CISO AND OTHER KEY CYBER ROLES
Sylvain Martinez418 views
INCIDENT RESPONSE OVERVIEW by Sylvain Martinez
INCIDENT RESPONSE OVERVIEWINCIDENT RESPONSE OVERVIEW
INCIDENT RESPONSE OVERVIEW
Sylvain Martinez623 views
OFFENSIVE IDS by Sylvain Martinez
OFFENSIVE IDSOFFENSIVE IDS
OFFENSIVE IDS
Sylvain Martinez286 views
IOT Security by Sylvain Martinez
IOT SecurityIOT Security
IOT Security
Sylvain Martinez897 views
ARE YOU RED TEAM READY? by Sylvain Martinez
ARE YOU RED TEAM READY?ARE YOU RED TEAM READY?
ARE YOU RED TEAM READY?
Sylvain Martinez255 views
GDPR SECURITY ISSUES by Sylvain Martinez
GDPR SECURITY ISSUESGDPR SECURITY ISSUES
GDPR SECURITY ISSUES
Sylvain Martinez180 views
Mobile Security Assessment by Sylvain Martinez
Mobile Security AssessmentMobile Security Assessment
Mobile Security Assessment
Sylvain Martinez206 views
The Art of CTF by Sylvain Martinez
The Art of CTFThe Art of CTF
The Art of CTF
Sylvain Martinez223 views
OFFICE 365 SECURITY by Sylvain Martinez
OFFICE 365 SECURITYOFFICE 365 SECURITY
OFFICE 365 SECURITY
Sylvain Martinez457 views
Risk on Crypto Currencies by Sylvain Martinez
Risk on Crypto CurrenciesRisk on Crypto Currencies
Risk on Crypto Currencies
Sylvain Martinez663 views
Talk1 esc7 muscl-gdpr_debate_v1_2 by Sylvain Martinez
Talk1 esc7 muscl-gdpr_debate_v1_2Talk1 esc7 muscl-gdpr_debate_v1_2
Talk1 esc7 muscl-gdpr_debate_v1_2
Sylvain Martinez195 views
Talk1 esc7 muscl-dataprotection_v1_2 by Sylvain Martinez
Talk1 esc7 muscl-dataprotection_v1_2Talk1 esc7 muscl-dataprotection_v1_2
Talk1 esc7 muscl-dataprotection_v1_2
Sylvain Martinez183 views
Ethical Hacking by Sylvain Martinez
Ethical HackingEthical Hacking
Ethical Hacking
Sylvain Martinez249 views
INCIDENT HANDLING IN ORGANISATIONS by Sylvain Martinez
INCIDENT HANDLING IN ORGANISATIONSINCIDENT HANDLING IN ORGANISATIONS
INCIDENT HANDLING IN ORGANISATIONS
Sylvain Martinez158 views
SOCIAL MEDIA AS A CYBER WEAPON by Sylvain Martinez
SOCIAL MEDIA AS A CYBER WEAPONSOCIAL MEDIA AS A CYBER WEAPON
SOCIAL MEDIA AS A CYBER WEAPON
Sylvain Martinez278 views

Recently uploaded

TrustArc Webinar - Managing Online Tracking Technology Vendors_ A Checklist f... by
TrustArc Webinar - Managing Online Tracking Technology Vendors_ A Checklist f...TrustArc Webinar - Managing Online Tracking Technology Vendors_ A Checklist f...
TrustArc Webinar - Managing Online Tracking Technology Vendors_ A Checklist f...TrustArc
130 views29 slides
Network Source of Truth and Infrastructure as Code revisited by
Network Source of Truth and Infrastructure as Code revisitedNetwork Source of Truth and Infrastructure as Code revisited
Network Source of Truth and Infrastructure as Code revisitedNetwork Automation Forum
49 views45 slides
Microsoft Power Platform.pptx by
Microsoft Power Platform.pptxMicrosoft Power Platform.pptx
Microsoft Power Platform.pptxUni Systems S.M.S.A.
74 views38 slides
CloudStack Managed User Data and Demo - Harikrishna Patnala - ShapeBlue by
CloudStack Managed User Data and Demo - Harikrishna Patnala - ShapeBlueCloudStack Managed User Data and Demo - Harikrishna Patnala - ShapeBlue
CloudStack Managed User Data and Demo - Harikrishna Patnala - ShapeBlueShapeBlue
68 views13 slides
Automating a World-Class Technology Conference; Behind the Scenes of CiscoLive by
Automating a World-Class Technology Conference; Behind the Scenes of CiscoLiveAutomating a World-Class Technology Conference; Behind the Scenes of CiscoLive
Automating a World-Class Technology Conference; Behind the Scenes of CiscoLiveNetwork Automation Forum
49 views35 slides
2FA and OAuth2 in CloudStack - Andrija Panić - ShapeBlue by
2FA and OAuth2 in CloudStack - Andrija Panić - ShapeBlue2FA and OAuth2 in CloudStack - Andrija Panić - ShapeBlue
2FA and OAuth2 in CloudStack - Andrija Panić - ShapeBlueShapeBlue
75 views23 slides

Recently uploaded(20)

TrustArc Webinar - Managing Online Tracking Technology Vendors_ A Checklist f... by TrustArc
TrustArc Webinar - Managing Online Tracking Technology Vendors_ A Checklist f...TrustArc Webinar - Managing Online Tracking Technology Vendors_ A Checklist f...
TrustArc Webinar - Managing Online Tracking Technology Vendors_ A Checklist f...
TrustArc130 views
Network Source of Truth and Infrastructure as Code revisited by Network Automation Forum
Network Source of Truth and Infrastructure as Code revisitedNetwork Source of Truth and Infrastructure as Code revisited
Network Source of Truth and Infrastructure as Code revisited
Network Automation Forum49 views
Microsoft Power Platform.pptx by Uni Systems S.M.S.A.
Microsoft Power Platform.pptxMicrosoft Power Platform.pptx
Microsoft Power Platform.pptx
Uni Systems S.M.S.A.74 views
CloudStack Managed User Data and Demo - Harikrishna Patnala - ShapeBlue by ShapeBlue
CloudStack Managed User Data and Demo - Harikrishna Patnala - ShapeBlueCloudStack Managed User Data and Demo - Harikrishna Patnala - ShapeBlue
CloudStack Managed User Data and Demo - Harikrishna Patnala - ShapeBlue
ShapeBlue68 views
Automating a World-Class Technology Conference; Behind the Scenes of CiscoLive by Network Automation Forum
Automating a World-Class Technology Conference; Behind the Scenes of CiscoLiveAutomating a World-Class Technology Conference; Behind the Scenes of CiscoLive
Automating a World-Class Technology Conference; Behind the Scenes of CiscoLive
Network Automation Forum49 views
2FA and OAuth2 in CloudStack - Andrija Panić - ShapeBlue by ShapeBlue
2FA and OAuth2 in CloudStack - Andrija Panić - ShapeBlue2FA and OAuth2 in CloudStack - Andrija Panić - ShapeBlue
2FA and OAuth2 in CloudStack - Andrija Panić - ShapeBlue
ShapeBlue75 views
Confidence in CloudStack - Aron Wagner, Nathan Gleason - Americ by ShapeBlue
Confidence in CloudStack - Aron Wagner, Nathan Gleason - AmericConfidence in CloudStack - Aron Wagner, Nathan Gleason - Americ
Confidence in CloudStack - Aron Wagner, Nathan Gleason - Americ
ShapeBlue58 views
Elevating Privacy and Security in CloudStack - Boris Stoyanov - ShapeBlue by ShapeBlue
Elevating Privacy and Security in CloudStack - Boris Stoyanov - ShapeBlueElevating Privacy and Security in CloudStack - Boris Stoyanov - ShapeBlue
Elevating Privacy and Security in CloudStack - Boris Stoyanov - ShapeBlue
ShapeBlue149 views
Import Export Virtual Machine for KVM Hypervisor - Ayush Pandey - University ... by ShapeBlue
Import Export Virtual Machine for KVM Hypervisor - Ayush Pandey - University ...Import Export Virtual Machine for KVM Hypervisor - Ayush Pandey - University ...
Import Export Virtual Machine for KVM Hypervisor - Ayush Pandey - University ...
ShapeBlue48 views
CloudStack and GitOps at Enterprise Scale - Alex Dometrius, Rene Glover - AT&T by ShapeBlue
CloudStack and GitOps at Enterprise Scale - Alex Dometrius, Rene Glover - AT&TCloudStack and GitOps at Enterprise Scale - Alex Dometrius, Rene Glover - AT&T
CloudStack and GitOps at Enterprise Scale - Alex Dometrius, Rene Glover - AT&T
ShapeBlue81 views
Igniting Next Level Productivity with AI-Infused Data Integration Workflows by Safe Software
Igniting Next Level Productivity with AI-Infused Data Integration Workflows Igniting Next Level Productivity with AI-Infused Data Integration Workflows
Igniting Next Level Productivity with AI-Infused Data Integration Workflows
Safe Software373 views
GDG Cloud Southlake 28 Brad Taylor and Shawn Augenstein Old Problems in the N... by James Anderson
GDG Cloud Southlake 28 Brad Taylor and Shawn Augenstein Old Problems in the N...GDG Cloud Southlake 28 Brad Taylor and Shawn Augenstein Old Problems in the N...
GDG Cloud Southlake 28 Brad Taylor and Shawn Augenstein Old Problems in the N...
James Anderson142 views
The Power of Heat Decarbonisation Plans in the Built Environment by IES VE
The Power of Heat Decarbonisation Plans in the Built EnvironmentThe Power of Heat Decarbonisation Plans in the Built Environment
The Power of Heat Decarbonisation Plans in the Built Environment
IES VE67 views
Hypervisor Agnostic DRS in CloudStack - Brief overview & demo - Vishesh Jinda... by ShapeBlue
Hypervisor Agnostic DRS in CloudStack - Brief overview & demo - Vishesh Jinda...Hypervisor Agnostic DRS in CloudStack - Brief overview & demo - Vishesh Jinda...
Hypervisor Agnostic DRS in CloudStack - Brief overview & demo - Vishesh Jinda...
ShapeBlue93 views
Future of AR - Facebook Presentation by Rob McCarty
Future of AR - Facebook PresentationFuture of AR - Facebook Presentation
Future of AR - Facebook Presentation
Rob McCarty54 views
"Surviving highload with Node.js", Andrii Shumada by Fwdays
"Surviving highload with Node.js", Andrii Shumada "Surviving highload with Node.js", Andrii Shumada
"Surviving highload with Node.js", Andrii Shumada
Fwdays49 views
Uni Systems for Power Platform.pptx by Uni Systems S.M.S.A.
Uni Systems for Power Platform.pptxUni Systems for Power Platform.pptx
Uni Systems for Power Platform.pptx
Uni Systems S.M.S.A.60 views
Ransomware is Knocking your Door_Final.pdf by Security Bootcamp
Ransomware is Knocking your Door_Final.pdfRansomware is Knocking your Door_Final.pdf
Ransomware is Knocking your Door_Final.pdf
Security Bootcamp81 views
VNF Integration and Support in CloudStack - Wei Zhou - ShapeBlue by ShapeBlue
VNF Integration and Support in CloudStack - Wei Zhou - ShapeBlueVNF Integration and Support in CloudStack - Wei Zhou - ShapeBlue
VNF Integration and Support in CloudStack - Wei Zhou - ShapeBlue
ShapeBlue134 views
Webinar : Desperately Seeking Transformation - Part 2: Insights from leading... by The Digital Insurer
Webinar : Desperately Seeking Transformation - Part 2: Insights from leading...Webinar : Desperately Seeking Transformation - Part 2: Insights from leading...
Webinar : Desperately Seeking Transformation - Part 2: Insights from leading...
The Digital Insurer40 views

DATA LOSS PREVENTION OVERVIEW

  • 1. CYBER SECURITY DATA LOSS PREVENTION OVERVIEW VERSION: 1.3 DATE: 24/07/2019 AUTHOR: SYLVAIN MARTINEZ REFERENCE: ES-IDLP CLASSIFICATION: PUBLIC
  • 2. 2 • Cyber Security Risk context; • Data breach statistics; • Data breach cost; • DLP dependencies; • Data protection lifecycle; • DLP definition; • DLP Overview; • Define DLP objectives; • Define DLP scope; • Define DLP policy; • Overview; • Technology deployment; • Policy setup; • Data discovery and classification; • DLP monitoring and tuning; • DLP reporting and protection; CONTENTS CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT • Core DLP benefits • Take away to remember PUBLIC
  • 3. CYBER SECURITY RISK CONTEXT 3 PAST FUTURE 100% 0% TIME GROWTH PAST FUTURE 100% 0% TIME GROWTH PAST FUTURE 100% 0% TIME GROWTH CYBER SECURITY RISKS’ PROBABILITY AND IMPACT ARE INCREASING. THEIR ABILITY TO DISRUPT COMPANIES BUSINESS OPERATION HAVE GROWING FINANCIAL, REPUTATIONAL AND LEGAL NEGATIVE CONSEQUENCES + = CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT PUBLIC
  • 4. DATA BREACH STATISTICS 4 EVERY DAY 6,313,865 RECORDS EVERY HOUR 263,078 RECORDS EVERY MINUTE 4,385 RECORDS EVERY SECONDS 73 RECORDS DATA RECORDS ARE LOST OR STOLEN AT THE FOLLOWING FREQUENCY DATA RECORDS LOST OR STOLEN SINCE 2013 Source: Breach Level Index - May 2019 4 7 1 7 6 1 8 2 8 6, ,,1 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT PUBLIC
  • 5. INCIDENT AND DATA BREACH COST 5 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT PUBLIC 80% FINANCIAL FRAUDS ELYSIUMSECURITY INVESTIGATIONS MAURITIUS 2018-2019 20% RANSOMWARE 100% PHISHING JAN 2018 - $0.5M AUG 2018 - $2M MAY 2019 - $1M JULY 2019 - $0M MAY 2018 - $1M APR 2019 - $0.5M JUNE 2019 - $0.5M $3.86M AVERAGE COST PER DATA BREACH $1.6M AVERAGE COST PER PHISHING ATTACK 95% OF ALL DATA BREACHES COME FROM PHISHING ATTACKS 24% OF ALL DATA BREACHES COME FROM HEALTHCARE ORGANISATIONS 197 DAYS AVERAGE INCIDENT DETECTION TIME WORLDWIDE STATISTICS WORLDWIDE STATS FROM SAFEATLAST.CO AND RETRUSTER.COM – JUNE 2019
  • 6. DLP DEPENDENCIES 6 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT ORGANIZATION RISK PROFILE REVIEWED DOCUMENTED COMMUNICATED 1 DATA CLASSIFICATION DEFINED COMMUNICATED ENFORCED 2 TYPE OF DATA TO PROTECT IDENTIFIED LOCATED COMPATIBLE 3 PUBLIC
  • 7. DATA PROTECTION LIFECYCLE 7 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT WHEN THE DATA IS TRANSMITED IN TRANSITAT REST IN USE WHEN THE DATA IS CREATED & CONSUMED LOCAL DISK FILE SERVER CLOUD STORAGE REMOVABLE MEDIA … DOCUMENT READ DOCUMENT MODIFICATION DOCUMENT DELETION DATABASE QUERY … DATA SENT IN EMAIL DATA SAVED TO CLOUD DATA SENT TO SERVER REMOVABLE MEDIA … WHERE THE DATA IS STORED PUBLIC
  • 8. DLP DEFINITION 8 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT DATA LOSS PREVENTION (DLP) IS A SOLUTION TO MONITOR, DETECT AND PREVENT POTENTIAL DATA LOSSES (BREACHES/EX- FILTRATION) WHILST DATA IS IN USE, IN TRANSIT AND/OR AT REST. PUBLIC
  • 9. DLP OVERVIEW 9 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT DISCOVER MONITOR PROTECT SUPPORT AND REPORT DATA HOST BASED PROTECTION APP BASED PROTECTION NETWORK BASED PROTECTION DLP SERVICE DLP SOLUTION PUBLIC
  • 10. DEFINE DLP OBJECTIVES 10 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT WHY DEFINE THE REASONS FOR IMPLEMENTING DLP THREATS, REGULATION, ETC WHAT DEFINE THE TYPE AND FORM OF DATA IN SCOPE FOR DLP CONTRACTS, PII, ETC. DOCS, RAW DATA, ETC. WHERE DEFINE THE TYPE OF LOCATIONS IN SCOPE FOR DLP FILE SERVER, CLOUD, APPLICATION, DB, ETC. WHEN DEFINE THE TIME DLP WILL BE NEEDED IMMEDIATELY AS DATA IS CREATED, DURATION, ETC. PUBLIC
  • 11. DEFINE DLP SCOPE 11 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT DEFINE THE EXACT LOCATION OF DATA IN SCOPE FOR DLP FILE SERVER NAMES/IP, APP NAME, CLOUD PROVIDER, ETC. DEFINE THE INFRASTRUCTURE DIAGRAM IN SCOPE FOR DLP SYSTEM AND NETWORK DIAGRAMS DEFINE THE DATA FLOW IN SCOPE FOR DLP BUSINESS AND OPERATION LOGIC, DATA FLOW DIAGRAMS, ETC. PUBLIC
  • 12. DEFINE DLP POLICY 12 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT DEFINE DATA CLASSIFICATION MAPPING NOMENCLATURE, KEYWORDS, ETC. DEFINE THE DIFFERENT ROLES OWNER, CUSTODIAN, CONSUMER, ETC. DEFINE THE DIFFERENT RESTRICTIONS REQUIRED EXPORT/SAVE AS, PRINT, EDIT, READ, COPY, ETC. DEFINE THE ALERT AND REPORTING PROCESS TEAM, PRIORITIES, COMMUNICATION, ETC. PUBLIC
  • 13. OVERVIEW 13 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT TECHNICAL DEPLOYMENT DISCOVERY & CLASSIFICATION ENFORCE DLP POLICY MONITOR DLP EVENTS REPORTING & TUNING POLICY SETUP BASIC PARTIAL FULL DISCOVER MONITOR PROTECT SUPPORT AND REPORT DLP SERVICE PUBLIC
  • 14. TECHNOLOGY DEPLOYMENT 14 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT DATA HOST BASED PROTECTION COVERAGE FEATURE OPERATIONAL IMPACT NETWORK BASED PROTECTION EGRESS POINTS VISIBILITY OPERATIONAL IMPACT APP BASED PROTECTION COMPATIBILITY CONFLICT VISIBILITY PUBLIC DLP IMPLEMENTATION
  • 15. POLICY SETUP 15 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT LIMITED ALERTS GENERATED LIMITED SCOPE, SOME DATA IDENTIFIED AND CLASSIFIED NO RESTRICTION ENFORCED BASIC ALERTS GENERATED MOST DATA IDENTIFIED AND CLASSIFIED SOME RESTRICTIONS ENFORCED PARTIAL ALERTS GENERATED ALL DATA IDENTIFIED AND CLASSIFIED FULL RESTRICTIONS ENFORCED FULL PUBLIC DLP IMPLEMENTATION
  • 16. DATA DISCOVERY AND CLASSIFICATION 16 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT DISCOVERY CLASSIFICATION BASIC QUICK WINS KEY EGRESS POINTS KEY FILE SHARES SOME DATA TYPES CRITICAL DATA ONLY IN SCOPE SIMPLE DETECTION (KEYWORDS) REPORTING ONLY PARTIAL ALL EGRESS POINTS SOME HOSTS/SERVERS SOME APPS MOST DATA TYPES ALL DATA CLASSIFICATION IN SCOPE COMPLEX DETECTION AUTO LABELLING FULL ALL EGRESS POINTS ALL HOSTS/SERVERS ALL APPS ALL DATA TYPES ALL DATA CLASSIFICATION IN SCOPE MACHINE LEARNING DETECTION AUTO LABELLING ALL DATA PUBLIC DLP IMPLEMENTATION
  • 17. DLP MONITORING AND TUNING 17 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT MONITORING TUNING BASIC DEFAULT DASHBOARD LIMITED VISIBILITY AD-HOC LOT OF FALSE POSITIVES AD-HOC MANUAL PARTIAL CUSTOMISED DASHBAORD IMPROVED VISIBILITY REGULAR SOME FALSE POSITIVES REGULAR MANUAL FULL FULLY CUSTOMISED DASHBOARD FULL VISIBILITY REGULAR LIMITED FALSE POSITIVES REGULAR MANUAL AND AUTOMATED PUBLIC DLP IMPLEMENTATION
  • 18. DLP REPORTING AND PROTECTION 18 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT REPORTING PROTECTION BASIC REACTIVE REPORTING LIMITED REPORTING AD-HOC REPORTING MANUAL REPORTING LIMITED VISIBILITY LIMITED ALERTS NO USER FEEDBACK NO RESTRICTIONS PARTIAL SOME PRO-ACTIVE REPORTING DETAILED REPORTING REGULAR REPORTING SOME AUTOMATED REPORTING MOST DATA VISIBILITY USEFUL ALERTS SOME USER FEEDBACK SOME RESTRICTIONS FULL PRO-ACTIVE REPORTING COMPREHENSIVE REPORTING REGULAR REPORTING AUTOMATED REPORTING FULL VISIBILITY COMPREHENSIVE ALERTS USER AND ADMIN FEEDBACK RESTRICTIONS ENFORCED PUBLIC DLP IMPLEMENTATION
  • 19. CORE DLP BENEFITS 19 CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT VISIBILITY OF DATA LOCATION/USAGE/SENSITIVITY 1 MONITORING AND ALERTING OF DATA SUSPICIOUS ACTIVITIES 2 IMPROVED DATA PROTECTION3 PUBLIC
  • 20. TAKE AWAY TO REMEMBER 20PUBLIC CONCLUSIONIMPLEMENTATIONPREPARATIONCONCEPTCONTEXT DLP DEPENDENCIES1 IMPORTANCE OF DLP SCOPING2 IMPORTANCE OF DLP PREPARATION3 PROGRESSIVE IMPLEMENTATION4 CONTINUOUS IMPROVEMENT5
  • 21. © 2015-2019 ELYSIUMSECURITY LTD ALL RIGHTS RESERVED HTTPS://WWW.ELYSIUMSECURITY.COM CONSULTING@ELYSIUMSECURITY.COM ABOUT ELYSIUMSECURITY LTD. ELYSIUMSECURITY PROVIDES PRACTICAL EXPERTISE TO IDENTIFY VULNERABILITIES, ASSESS THEIR RISKS AND IMPACT, REMEDIATE THOSE RISKS, PREPARE AND RESPOND TO INCIDENTS AS WELL AS RAISE SECURITY AWARENESS THROUGH AN ORGANIZATION. ELYSIUMSECURITY PROVIDES HIGH LEVEL EXPERTISE GATHERED THROUGH YEARS OF BEST PRACTICES EXPERIENCE IN LARGE INTERNATIONAL COMPANIES ALLOWING US TO PROVIDE ADVICE BEST SUITED TO YOUR BUSINESS OPERATIONAL MODEL AND PRIORITIES. ELYSIUMSECURITY PROVIDES A PORTFOLIO OF STRATEGIC AND TACTICAL SERVICES TO HELP COMPANIES PROTECT AND RESPOND AGAINST CYBER SECURITY THREATS. WE DIFFERENTIATE OURSELVES BY OFFERING DISCREET, TAILORED AND SPECIALIZED ENGAGEMENTS. ELYSIUMSECURITY OPERATES IN MAURITIUS AND IN EUROPE, A BOUTIQUE STYLE APPROACH MEANS WE CAN EASILY ADAPT TO YOUR BUSINESS OPERATIONAL MODEL AND REQUIREMENTS TO PROVIDE A PERSONALIZED SERVICE THAT FITS YOUR WORKING ENVIRONMENT.