Haris Tahir, profile picture
Uploaded byHaris Tahir
PDF, PPTX1,080 views

Data Leakage Prevention (DLP)

The document discusses copyright information and consent requirements for a presentation on data leakage prevention. It notes that copyright of the presentation contents is owned by the presenter unless otherwise indicated. No parts of the presentation can be modified, copied, distributed, or commercially shared without the express prior written consent of the presenter. The presentation will cover challenges in the threat landscape, reasons why data breaches happen, and approaches to data leakage prevention.

Embed presentation

Download as PDF, PPTX
Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter. https://shaolininteger.blogspot.com haris@mycert.org https://www.linkedin.com/in/shaolinint @shaolinint HarisTahir@ Slash The Underground in DATA LEAKAGE PREVENTION
¤ Challenges and Threat Landscape ¤ Why Data Breaches Happen ¤ Data Leakage Prevention Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
knowledge empowerment to the masses CHALLENGES AND THREAT LANDSCAPE 4 Challenges and Threat Landscape Evolution efficiency and effectiveness Problems ² Modern attacks have moved up on the architectural layer, there are content based. ² Criminals have started to leverage online marketing as a tool to promote and sell their services on the black market. ² Modern malicious software (malware) is stealth and getting better, smarter, faster and stronger. ² The growing popularity of the “Internet of Things” makes the threat landscape a moving target. ² Abundant resources, data collection and mining unable to process millions or billions of data daily Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
knowledge empowerment to the masses CHALLENGES AND THREAT LANDSCAPE 5 Data Breach Investigation Report past data breaches Epsilon $4B, names/email Saudi Aramco 30,000+ PCs infected Adobe $152M (IDs, pwd, data) Target $110M affected and CEO/CIO gone 2011 2012 2013 2014 eBay $145M credentials Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
knowledge empowerment to the masses CHALLENGES AND THREAT LANDSCAPE 6 Data Breach Investigation Report impact on industries ² IP: 70% of value of public companies ² Annual losses: estimated over $300B ² China: +$107B sales and +2.1M jobs ² 2013: 856 reported breaches ² Q1 2014: 98.3% of data exposed ² 37%: Breaches affected the sector ² 43%: ITRC account of breaches ² 2013: 8.8M records stolen ² 1.8M: Victims of Identity Theft Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
knowledge empowerment to the masses CHALLENGES AND THREAT LANDSCAPE 7 Data Breach Investigation Report transition from geopolitical to large-scale attacks ² 95 countries ² 64,347 confirmed security incidents ² 1,367 confirmed data breaches ² Others reports: Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
knowledge empowerment to the masses Meet Your Whistleblower threat actors is about people WHY DATA BREACHES HAPPEN 9 59% of threat actors leave the organization with sensitive data Criminals Hacktivist Insiders Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
knowledge empowerment to the masses WHY DATA BREACHES HAPPEN 10 Knowledge is Power enough time and equipped with offensive security tools Threat actors spend most of their time understanding the target environment, operations and information system, and preparing attacking platform before the actual execution. Define mission 1 2 3 Information gathering Scoping 4 Scanning 5 Simulation 6 Execution 7 Exploit development 8 Rootkit and C2 cultivation Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
knowledge empowerment to the masses DATA LEAKAGE PREVENTION 12 Defense-in-Depth think about people, process and technology Defense-in-Depth is an Information Assurance (IA) concept to defend a system against attacks by placing multiple layers of security controls throughout an information technology system. Data in use Data in transit Data at rest Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
knowledge empowerment to the masses DATA LEAKAGE PREVENTION 13 Critical Path decision should be based on acceptable risk treatment plan “In preparing for battle I have always found that plans are useless, but planning is indispensable.” ~Dwight D. Eisenhower 1 2 3 4 5 RA Results People Process Technology What is the mission Who are the What is the gap Minimal disruption statement and resources required analysis results? with greatest business objective? to execute the plan? coverage Leverage Utilize others for what they know You are about to invest a substantial amount of the company's money, time and resources. Consult with research analysts such as Forrester or Gartner and gain a basic to intermediate understanding of the industry, the vendors and solutions available, and their particular strengths and weaknesses. DLP is solving different problem space to ensure data confidentiality. Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
knowledge empowerment to the masses DLP Technology four simple explanation DATA LEAKAGE PREVENTION 14 DLP is about preserving organization sensitive information from unauthorized access DLP means different things to different people þ data loss prevention þ data loss protection þ data leakage prevention 3 1 2 4 DLP technology is content aware Driven by significant insider threats and by rigorous privacy laws Use rules to examine file content and classification tag Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
knowledge empowerment to the masses Key DLP Questions what kind of animal is this? DATA LEAKAGE PREVENTION 15 It’s about governance and compliance, what is the business objective? What problem space? Unauthorized access of data due to an improper implementation, inadequacy of a technology, process and/or policy. What problem DLP does not solve? DLP are not designed to address data leakage issues resulting from external attacks. Do I have existing DLP protection? Surprisingly, firewalls, IDS and encryption solutions are part of overall data security strategy. Does the enterprise need DLP solution? Start with Risk Assessment and identify what are data type the enterprise processes and/or stores. FAQ Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
knowledge empowerment to the masses Preliminary Risk Assessment risk mitigated by DLP DATA LEAKAGE PREVENTION 16 The problem space is not solved comprehensively by DLP solutions! Example: an employee can still take a picture of sensitive data 1 Identifying insecure business processes 2 Accidental data disclosure by employee 3 Intentional data leakage by employee Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
knowledge empowerment to the masses Benefits of DLP something to consider DATA LEAKAGE PREVENTION 17 Benefits ² Visibility – visibility to data and information that leaves the organization and exposing bad business processes. ² Compliance – Helps demonstrate compliance with privacy regulations such as Data protection Act, PDPA, PCI-DSS and HIPAA-HITECH ² Flexible security environment – Provide an alternative by allowing the organizations to say “Yes” to social media and personal email and other channels, but with ability to control the content posted to those destinations. ² Malicious activity detection – Stops malicious insiders from stealing valuable intellectual property such as product designs and financial reports. ² Employee education and awareness – Educates well-meaning employees of policy violations and prevents accidental data leaks. ² Reduce financial impact – By reducing the risk of data leaks, the financial risk to the enterprise decrease. Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
This slide can be downloaded from: http://www.slideshare.net/shaolinint Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter. https://shaolininteger.blogspot.com haris@mycert.org https://www.linkedin.com/in/shaolinint @shaolinint HarisTahir@ Slash The Underground in Thank You Q&A “no duty is more urgent than that of returning thanks”

More Related Content

PDF
Endpoint Detection & Response - FireEye
byPrime Infoserv
 
PDF
Data Loss Prevention (DLP) - Fundamental Concept - Eryk
byEryk Budi Pratama
 
PPTX
Technology Overview - Symantec Data Loss Prevention (DLP)
byIftikhar Ali Iqbal
 
PPTX
QRadar, ArcSight and Splunk
byM sharifi
 
PPTX
Siem ppt
bykmehul
 
PDF
Cybersecurity crisis management a prep guide
byJoAnna Cheshire
 
PDF
Network Security - Defense Through Layered Information Security
byEryk Budi Pratama
 
PDF
Q radar architecture deep dive
byKamal Mouline
 
Endpoint Detection & Response - FireEye
byPrime Infoserv
 
Data Loss Prevention (DLP) - Fundamental Concept - Eryk
byEryk Budi Pratama
 
Technology Overview - Symantec Data Loss Prevention (DLP)
byIftikhar Ali Iqbal
 
QRadar, ArcSight and Splunk
byM sharifi
 
Siem ppt
bykmehul
 
Cybersecurity crisis management a prep guide
byJoAnna Cheshire
 
Network Security - Defense Through Layered Information Security
byEryk Budi Pratama
 
Q radar architecture deep dive
byKamal Mouline
 

What's hot

PPTX
Beginner's Guide to SIEM
byAlienVault
 
PDF
SIEM Architecture
byNishanth Kumar Pathi
 
PPTX
Cybersecurity Risk Management Tools and Techniques (1).pptx
byClintonKelvin
 
PDF
Succeeding with Secure Access Service Edge (SASE)
byCloudflare
 
PDF
The Definitive Guide to Data Loss Prevention
byDigital Guardian
 
PPTX
SIEM Primer:
byAnton Chuvakin
 
PPTX
Data Loss Prevention from Symantec
byArrow ECS UK
 
PPT
Data loss prevention (dlp)
byHussein Al-Sanabani
 
PPTX
Data Loss Prevention
byReza Kopaee
 
PDF
What is SIEM? A Brilliant Guide to the Basics
bySagar Joshi
 
PPTX
Data Acquisition
byprimeteacher32
 
PDF
Overview of Data Loss Prevention (DLP) Technology
byLiwei Ren任力偉
 
PDF
1. Security and Risk Management
bySam Bowne
 
PPTX
Windows Security
byPooja Talreja
 
PDF
Introducing Data Loss Prevention 14
bySymantec
 
PPTX
Cloud Security
byAWS User Group Bengaluru
 
PPTX
Cyber kill chain
byAnkita Ganguly
 
PPTX
Cyber Security
byADGP, Public Grivences, Bangalore
 
PPTX
Cloud computing Risk management
byPadma Jella
 
PDF
IOT Security
bySylvain Martinez
 
Beginner's Guide to SIEM
byAlienVault
 
SIEM Architecture
byNishanth Kumar Pathi
 
Cybersecurity Risk Management Tools and Techniques (1).pptx
byClintonKelvin
 
Succeeding with Secure Access Service Edge (SASE)
byCloudflare
 
The Definitive Guide to Data Loss Prevention
byDigital Guardian
 
SIEM Primer:
byAnton Chuvakin
 
Data Loss Prevention from Symantec
byArrow ECS UK
 
Data loss prevention (dlp)
byHussein Al-Sanabani
 
Data Loss Prevention
byReza Kopaee
 
What is SIEM? A Brilliant Guide to the Basics
bySagar Joshi
 
Data Acquisition
byprimeteacher32
 
Overview of Data Loss Prevention (DLP) Technology
byLiwei Ren任力偉
 
1. Security and Risk Management
bySam Bowne
 
Windows Security
byPooja Talreja
 
Introducing Data Loss Prevention 14
bySymantec
 
Cloud Security
byAWS User Group Bengaluru
 
Cyber kill chain
byAnkita Ganguly
 
Cyber Security
byADGP, Public Grivences, Bangalore
 
Cloud computing Risk management
byPadma Jella
 
IOT Security
bySylvain Martinez
 

Viewers also liked

PDF
SLASH-Seminar-security awareness-v1-0-20121212
byHaris Tahir
 
PDF
Hacked Revealed: Penetration Profession
byHaris Tahir
 
PPT
apsec 7 Golden Rules Data Leakage Prevention / DLP
byandreasschuster
 
PPTX
Symantec Data Loss Prevention 9
byAriel Martin Beliera
 
PDF
Ht seminar uniten-cyber security threat landscape
byHaris Tahir
 
PDF
Risk assessment principles and guidelines
byHaris Tahir
 
SLASH-Seminar-security awareness-v1-0-20121212
byHaris Tahir
 
Hacked Revealed: Penetration Profession
byHaris Tahir
 
apsec 7 Golden Rules Data Leakage Prevention / DLP
byandreasschuster
 
Symantec Data Loss Prevention 9
byAriel Martin Beliera
 
Ht seminar uniten-cyber security threat landscape
byHaris Tahir
 
Risk assessment principles and guidelines
byHaris Tahir
 

Similar to Data Leakage Prevention (DLP)

PPTX
NumaanHuq_Hackfest2015
byNumaan Huq
 
PPTX
IAPP - Trust is Terrible Thing to Waste
byDave Steer
 
PDF
Data Security Regulatory Lansdcape
byBrian Bauer
 
PDF
Data+Security+Masterclass Presentation.pdf
byckurt9676
 
PDF
Verizon 2014 data breach investigation report and the target breach
byUlf Mattsson
 
PDF
Data Breach Guide 2013
by- Mark - Fullbright
 
PPTX
Proven Practices to Protect Critical Data - DarkReading VTS Deck
byNetIQ
 
PDF
wp-follow-the-data
byNumaan Huq
 
PPTX
IT Security and Wire Fraud Awareness Slide Deck
byDon Gulling
 
PPTX
Using Technology and People to Improve your Threat Resistance and Cyber Security
byStephen Cobb
 
PPT
Threats
bysbmiller87
 
PPTX
HealthCo Accelerate 2016 speaker deck #2
byHealthCo Information Systems
 
PPTX
WCIT 2014 Matt Stamper - Information Assurance in a Global Context
byWCIT 2014
 
PDF
Data Privacy
bycliff_rudolph
 
PDF
How to Secure Your Files with DLP and FAM
byImperva
 
PDF
Data Privacy Compliance
byFinancial Poise
 
PDF
Role of CAs in cyber world
byCA. (Dr.) Rajkumar Adukia
 
PPTX
c13.security_and_ethics.pptx managemet info
bytasniahnuha
 
PDF
Prepare For Breaches Like a Pro
byResilient Systems
 
PPT
Rainer+3e Student Pp Ts Ch03
bykbzdox ivanovich
 
NumaanHuq_Hackfest2015
byNumaan Huq
 
IAPP - Trust is Terrible Thing to Waste
byDave Steer
 
Data Security Regulatory Lansdcape
byBrian Bauer
 
Data+Security+Masterclass Presentation.pdf
byckurt9676
 
Verizon 2014 data breach investigation report and the target breach
byUlf Mattsson
 
Data Breach Guide 2013
by- Mark - Fullbright
 
Proven Practices to Protect Critical Data - DarkReading VTS Deck
byNetIQ
 
wp-follow-the-data
byNumaan Huq
 
IT Security and Wire Fraud Awareness Slide Deck
byDon Gulling
 
Using Technology and People to Improve your Threat Resistance and Cyber Security
byStephen Cobb
 
Threats
bysbmiller87
 
HealthCo Accelerate 2016 speaker deck #2
byHealthCo Information Systems
 
WCIT 2014 Matt Stamper - Information Assurance in a Global Context
byWCIT 2014
 
Data Privacy
bycliff_rudolph
 
How to Secure Your Files with DLP and FAM
byImperva
 
Data Privacy Compliance
byFinancial Poise
 
Role of CAs in cyber world
byCA. (Dr.) Rajkumar Adukia
 
c13.security_and_ethics.pptx managemet info
bytasniahnuha
 
Prepare For Breaches Like a Pro
byResilient Systems
 
Rainer+3e Student Pp Ts Ch03
bykbzdox ivanovich
 

Recently uploaded

PDF
Designing Spaces that Open Science and Foster Creative Activities
bynami575695
 
PDF
AAC2026_Tanzer_Grown Organically Software and Bonsai.pdf
byAgile Austria Conference
 
PDF
Fix Your LSA Reputation Score: 7 Signals That Improve LSA Rankings
byDigital Harvest
 
PDF
🇮🇳🇮🇳🇮🇳 Welcome to India 🇮🇳🇮🇳🇮🇳.pdf
bymanjusuhag88
 
PDF
Robbee Minicola PhD Oral Defense Presentation
byMicrosoft
 
PDF
What’s New in the Latest Roblox Update (2026)
bytenaciousmunir77
 
PDF
When to Use Google Ads Instead of Local Service Ads: 4 Clear Scenarios
byDigital Harvest
 
PPTX
Overview-Swine-Production-and-Breeds-of-Swine.pptx
bypanangcadjhonemart2
 
PPTX
Bob Stewart Greater 02 08 2026.pptx
byFamilyWorshipCenterD
 
PPTX
2026-02-08 Hebrews 06 (shared slides).pptx
byDale Wells
 
PDF
AAC2026_Richter_Why Agile Alone Isn't Enough - From Agile Methods to Goal-Dir...
byAgile Austria Conference
 
PDF
Reasons LSA Ranking Dropped: 3 Causes That Push You Into “See More”
byDigital Harvest
 
PDF
AAC2026_Keynote_Horx Strathern_Megatrends Countertrends.pdf
byAgile Austria Conference
 
PDF
AAC2026_Batusek_Beyond the Bus Factor: Build your teams for for the future.pdf
byAgile Austria Conference
 
PDF
Novel training approaches for the public administration in the context of Gre...
byProf. Dr. Fotios Fitsilis
 
PDF
AAC2026_Lister_Understand your 'Scrum DNA' !pdf
byAgile Austria Conference
 
PDF
AAC2026_Lavrova_ The Second Spear of Agility Why We Need Meaning, Not Metrics...
byAgile Austria Conference
 
PPTX
Febelfin Academy Presentation - Breakfast
byFinTech Belgium
 
PPTX
Kitui County SRA 2025 Debrief_29_01 _2026_WE (002).pptx
byWilliam Waithaka
 
PDF
AAC2026_Liebisch_It Starts With You - How Personal Growth Builds the Foundati...
byAgile Austria Conference
 
Designing Spaces that Open Science and Foster Creative Activities
bynami575695
 
AAC2026_Tanzer_Grown Organically Software and Bonsai.pdf
byAgile Austria Conference
 
Fix Your LSA Reputation Score: 7 Signals That Improve LSA Rankings
byDigital Harvest
 
🇮🇳🇮🇳🇮🇳 Welcome to India 🇮🇳🇮🇳🇮🇳.pdf
bymanjusuhag88
 
Robbee Minicola PhD Oral Defense Presentation
byMicrosoft
 
What’s New in the Latest Roblox Update (2026)
bytenaciousmunir77
 
When to Use Google Ads Instead of Local Service Ads: 4 Clear Scenarios
byDigital Harvest
 
Overview-Swine-Production-and-Breeds-of-Swine.pptx
bypanangcadjhonemart2
 
Bob Stewart Greater 02 08 2026.pptx
byFamilyWorshipCenterD
 
2026-02-08 Hebrews 06 (shared slides).pptx
byDale Wells
 
AAC2026_Richter_Why Agile Alone Isn't Enough - From Agile Methods to Goal-Dir...
byAgile Austria Conference
 
Reasons LSA Ranking Dropped: 3 Causes That Push You Into “See More”
byDigital Harvest
 
AAC2026_Keynote_Horx Strathern_Megatrends Countertrends.pdf
byAgile Austria Conference
 
AAC2026_Batusek_Beyond the Bus Factor: Build your teams for for the future.pdf
byAgile Austria Conference
 
Novel training approaches for the public administration in the context of Gre...
byProf. Dr. Fotios Fitsilis
 
AAC2026_Lister_Understand your 'Scrum DNA' !pdf
byAgile Austria Conference
 
AAC2026_Lavrova_ The Second Spear of Agility Why We Need Meaning, Not Metrics...
byAgile Austria Conference
 
Febelfin Academy Presentation - Breakfast
byFinTech Belgium
 
Kitui County SRA 2025 Debrief_29_01 _2026_WE (002).pptx
byWilliam Waithaka
 
AAC2026_Liebisch_It Starts With You - How Personal Growth Builds the Foundati...
byAgile Austria Conference
 

Data Leakage Prevention (DLP)

  • 1.
    Copyright of thepresentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter. https://shaolininteger.blogspot.com haris@mycert.org https://www.linkedin.com/in/shaolinint @shaolinint HarisTahir@ Slash The Underground in DATA LEAKAGE PREVENTION
  • 2.
    ¤ Challenges andThreat Landscape ¤ Why Data Breaches Happen ¤ Data Leakage Prevention Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 3.
    Copyright of thepresentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 4.
    knowledge empowerment to the masses CHALLENGES AND THREAT LANDSCAPE 4 Challenges and Threat Landscape Evolution efficiency and effectiveness Problems ² Modern attacks have moved up on the architectural layer, there are content based. ² Criminals have started to leverage online marketing as a tool to promote and sell their services on the black market. ² Modern malicious software (malware) is stealth and getting better, smarter, faster and stronger. ² The growing popularity of the “Internet of Things” makes the threat landscape a moving target. ² Abundant resources, data collection and mining unable to process millions or billions of data daily Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 5.
    knowledge empowerment to the masses CHALLENGES AND THREAT LANDSCAPE 5 Data Breach Investigation Report past data breaches Epsilon $4B, names/email Saudi Aramco 30,000+ PCs infected Adobe $152M (IDs, pwd, data) Target $110M affected and CEO/CIO gone 2011 2012 2013 2014 eBay $145M credentials Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 6.
    knowledge empowerment to the masses CHALLENGES AND THREAT LANDSCAPE 6 Data Breach Investigation Report impact on industries ² IP: 70% of value of public companies ² Annual losses: estimated over $300B ² China: +$107B sales and +2.1M jobs ² 2013: 856 reported breaches ² Q1 2014: 98.3% of data exposed ² 37%: Breaches affected the sector ² 43%: ITRC account of breaches ² 2013: 8.8M records stolen ² 1.8M: Victims of Identity Theft Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 7.
    knowledge empowerment to the masses CHALLENGES AND THREAT LANDSCAPE 7 Data Breach Investigation Report transition from geopolitical to large-scale attacks ² 95 countries ² 64,347 confirmed security incidents ² 1,367 confirmed data breaches ² Others reports: Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 8.
    Copyright of thepresentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 9.
    knowledge empowerment to the masses Meet Your Whistleblower threat actors is about people WHY DATA BREACHES HAPPEN 9 59% of threat actors leave the organization with sensitive data Criminals Hacktivist Insiders Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 10.
    knowledge empowerment to the masses WHY DATA BREACHES HAPPEN 10 Knowledge is Power enough time and equipped with offensive security tools Threat actors spend most of their time understanding the target environment, operations and information system, and preparing attacking platform before the actual execution. Define mission 1 2 3 Information gathering Scoping 4 Scanning 5 Simulation 6 Execution 7 Exploit development 8 Rootkit and C2 cultivation Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 11.
    Copyright of thepresentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 12.
    knowledge empowerment to the masses DATA LEAKAGE PREVENTION 12 Defense-in-Depth think about people, process and technology Defense-in-Depth is an Information Assurance (IA) concept to defend a system against attacks by placing multiple layers of security controls throughout an information technology system. Data in use Data in transit Data at rest Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 13.
    knowledge empowerment to the masses DATA LEAKAGE PREVENTION 13 Critical Path decision should be based on acceptable risk treatment plan “In preparing for battle I have always found that plans are useless, but planning is indispensable.” ~Dwight D. Eisenhower 1 2 3 4 5 RA Results People Process Technology What is the mission Who are the What is the gap Minimal disruption statement and resources required analysis results? with greatest business objective? to execute the plan? coverage Leverage Utilize others for what they know You are about to invest a substantial amount of the company's money, time and resources. Consult with research analysts such as Forrester or Gartner and gain a basic to intermediate understanding of the industry, the vendors and solutions available, and their particular strengths and weaknesses. DLP is solving different problem space to ensure data confidentiality. Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 14.
    knowledge empowerment to the masses DLP Technology four simple explanation DATA LEAKAGE PREVENTION 14 DLP is about preserving organization sensitive information from unauthorized access DLP means different things to different people þ data loss prevention þ data loss protection þ data leakage prevention 3 1 2 4 DLP technology is content aware Driven by significant insider threats and by rigorous privacy laws Use rules to examine file content and classification tag Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 15.
    knowledge empowerment to the masses Key DLP Questions what kind of animal is this? DATA LEAKAGE PREVENTION 15 It’s about governance and compliance, what is the business objective? What problem space? Unauthorized access of data due to an improper implementation, inadequacy of a technology, process and/or policy. What problem DLP does not solve? DLP are not designed to address data leakage issues resulting from external attacks. Do I have existing DLP protection? Surprisingly, firewalls, IDS and encryption solutions are part of overall data security strategy. Does the enterprise need DLP solution? Start with Risk Assessment and identify what are data type the enterprise processes and/or stores. FAQ Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 16.
    knowledge empowerment to the masses Preliminary Risk Assessment risk mitigated by DLP DATA LEAKAGE PREVENTION 16 The problem space is not solved comprehensively by DLP solutions! Example: an employee can still take a picture of sensitive data 1 Identifying insecure business processes 2 Accidental data disclosure by employee 3 Intentional data leakage by employee Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 17.
    knowledge empowerment to the masses Benefits of DLP something to consider DATA LEAKAGE PREVENTION 17 Benefits ² Visibility – visibility to data and information that leaves the organization and exposing bad business processes. ² Compliance – Helps demonstrate compliance with privacy regulations such as Data protection Act, PDPA, PCI-DSS and HIPAA-HITECH ² Flexible security environment – Provide an alternative by allowing the organizations to say “Yes” to social media and personal email and other channels, but with ability to control the content posted to those destinations. ² Malicious activity detection – Stops malicious insiders from stealing valuable intellectual property such as product designs and financial reports. ² Employee education and awareness – Educates well-meaning employees of policy violations and prevents accidental data leaks. ² Reduce financial impact – By reducing the risk of data leaks, the financial risk to the enterprise decrease. Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter.
  • 18.
    This slide canbe downloaded from: http://www.slideshare.net/shaolinint Copyright of the presentation and its contents but limited to the information, text, images, graphics, sound files, video files and their arrangement, and material therein, is owned by the presenter unless otherwise indicated. No part or parts of this presentation may be modified, copied, distributed, retransmitted, broadcasted, displayed, reproduced, published, licensed, transferred, sold or commercially dealt with any manner without the express prior written consent of the presenter. https://shaolininteger.blogspot.com haris@mycert.org https://www.linkedin.com/in/shaolinint @shaolinint HarisTahir@ Slash The Underground in Thank You Q&A “no duty is more urgent than that of returning thanks”