PB
Uploaded byPeter Bassill
311 views

Tackling data security

This document discusses protecting clients' data and brand reputation by tackling data security issues. It identifies top worries like social media, ineffective patching, and email. It asks key questions about data management and outlines that data loss prevention alone cannot fully protect data both on and off premises from human and physical factors. It emphasizes that the largest challenge is fixing the human element through extensive user training and fostering a security-focused culture. It also stresses the need for a holistic approach combining technical controls and user awareness training to securely protect data at all stages.

Embed presentation

Protecting Clients’ Assets and Brand Reputation Data exfiltration Just when we thought we had it addressed
Protecting Clients’ Assets and Brand Reputation My Top 5 Worries • • • • • Social Media Ineffective Patching Portable Media Internet Printing Protocol Email
Protecting Clients’ Assets and Brand Reputation Tackling Data Security: Data Management & Control
Data Management & Control Protecting Clients’ Assets and Brand Reputation Key Questions • Where is our data? • Who is using our data internally? • Who have they shared our data with externally? • How is our data being stored? • Is our data being protected? • Is our data SAFE? • What is it we WANT to achieve?
But all I need is DLP right? Protecting Clients’ Assets and Brand Reputation DLP is an essential part of any Data Management and Control program, but there are things it cant do: • Protect your data when its not on your premises • Stop 3rd parties forwarding it on • Prevent the human factor • Secure the physical • Stop theft!
Protecting Clients’ Assets and Brand Reputation Mapping Data Management
Where is your Data? Protecting Clients’ Assets and Brand Reputation Think about it, it may not be obvious. We can all guess our file stores and our systems but; • Your suppliers? • Your bins? • On twitter? • Your employees websites? • On your premises? • In the cloud? • Behind the fridge? • Is it safe? • Cornell Universities Spider
How do you use your data? Protecting Clients’ Assets and Brand Reputation We know we use our data to carry out business, but how is it actually used? • What do finance do with all those numbers? • Why do marketing have all those mp3 files? • How are development maintaining their source code? • Has payroll embedded data in hidden spreadsheet fields? • 3rd party processing? • Is it safe?
We understand our data – lets protect it Protecting Clients’ Assets and Brand Reputation Protecting your data can prove harder than you think. 80% of the challenge is to fix the human element • User Training, User Training & User Training • Policy Process & Procedure • Fostering culture change • Remember, Accidents Happen!
We understand our data – lets protect it Protecting Clients’ Assets and Brand Reputation The technology is easy, isn't it? Remember: if you can think of a way around your technical controls, your staff will think of 5. • Encrypt your laptops & devices • Use strong endpoint technologies • Have good identity management • Enforce Data Classification • Audit the change logs • Train those above you • Now train those below you
Take the Holistic View Protecting Clients’ Assets and Brand Reputation There is no one product that fits all scenarios, you need to find what fits in your business. • Protect at creation – Awareness Training? DLP? • Protect during transmission – Awareness Training? Encryption? • Protect in processing – Awareness Training? IRM? • Protect the physical – Awareness Training? • Protect at rest – Awareness Training? DLP?
Protecting Clients’ Assets and Brand Reputation Tackling Data Security - Links: • Our Website • Information Security • Our Skills, Your Team • Penetration Testing

More Related Content

PPT
Data privacy & data governance
bypoojasanghavi
 
PDF
The future of HR is digital
byAnita Lettink
 
PPTX
GDPR webinar - what to expect in your contracts
byBrowne Jacobson LLP
 
PDF
CloudCamp Chicago lightning talk: "Security and Sanity in the HIPAA-Compliant...
byCloudCamp Chicago
 
PPTX
February 4 Cleared Job Fair, Security Clearance Briefings, Resume Review
byClearedJobs.Net
 
PDF
staffedblueprint
byJonathan Neale
 
DOC
Mohamed C.V.
byMohamed Ahmed
 
PDF
WikiLeaks filtra el capítulo medioambiental del TPP que afecta a Chile, Perú ...
byCrónicas del despojo
 
Data privacy & data governance
bypoojasanghavi
 
The future of HR is digital
byAnita Lettink
 
GDPR webinar - what to expect in your contracts
byBrowne Jacobson LLP
 
CloudCamp Chicago lightning talk: "Security and Sanity in the HIPAA-Compliant...
byCloudCamp Chicago
 
February 4 Cleared Job Fair, Security Clearance Briefings, Resume Review
byClearedJobs.Net
 
staffedblueprint
byJonathan Neale
 
Mohamed C.V.
byMohamed Ahmed
 
WikiLeaks filtra el capítulo medioambiental del TPP que afecta a Chile, Perú ...
byCrónicas del despojo
 

Viewers also liked

PDF
Null bachav
byNaga Venkata Sunil Alamuri
 
PPTX
Agnosias
byJosueth Morales Gavilanez
 
PPTX
Funciones de variable real: definiciones
byjcremiro
 
PPTX
Common sense in security
byPeter Bassill
 
PPTX
Alteraciones en la asociacion visual
byMauricio Giraldo Hoyos
 
PPTX
Null meet Code Review
byNaga Venkata Sunil Alamuri
 
PPTX
Proporcionalidad
byjcremiro
 
PPTX
2015-VEOLIA-CORPORATE
byDavid D'hooge
 
DOCX
Cuadro comparativo de las Reglas Generales de Comercio Exterior.
byPaola Salais
 
PPTX
Estrategias
byGerardo Carreón
 
PPTX
Estrategias de guerras
byariadnasabrinaruizf
 
PPTX
DG Gaudi
byJasmina Isakovic
 
PPTX
Múltiples autorrepresentaciones
byAnabel Ventura Palomino
 
PPTX
3. presentacion
byJose Mina Lugo
 
PDF
Innovation and Interior Design - Nov.2015
byEslam Maksoud
 
PDF
Decreto no. 046 08 06-2016
bysistemasvenecia
 
PPTX
Búsqueda en vector
byMagda Fernandez
 
PPT
El sistema de Salud Publica del Reino Unido
byJosep Vidal-Alaball
 
PDF
TransPacific Partnership Agreement: A Primer
byLexSage PC
 
PPTX
Presentacion edilsa yaniry 1
bygpyaniry
 
Null bachav
byNaga Venkata Sunil Alamuri
 
Agnosias
byJosueth Morales Gavilanez
 
Funciones de variable real: definiciones
byjcremiro
 
Common sense in security
byPeter Bassill
 
Alteraciones en la asociacion visual
byMauricio Giraldo Hoyos
 
Null meet Code Review
byNaga Venkata Sunil Alamuri
 
Proporcionalidad
byjcremiro
 
2015-VEOLIA-CORPORATE
byDavid D'hooge
 
Cuadro comparativo de las Reglas Generales de Comercio Exterior.
byPaola Salais
 
Estrategias
byGerardo Carreón
 
Estrategias de guerras
byariadnasabrinaruizf
 
DG Gaudi
byJasmina Isakovic
 
Múltiples autorrepresentaciones
byAnabel Ventura Palomino
 
3. presentacion
byJose Mina Lugo
 
Innovation and Interior Design - Nov.2015
byEslam Maksoud
 
Decreto no. 046 08 06-2016
bysistemasvenecia
 
Búsqueda en vector
byMagda Fernandez
 
El sistema de Salud Publica del Reino Unido
byJosep Vidal-Alaball
 
TransPacific Partnership Agreement: A Primer
byLexSage PC
 
Presentacion edilsa yaniry 1
bygpyaniry
 

Similar to Tackling data security

PDF
Encryption and Key Management: Ensuring Compliance, Privacy, and Minimizing t...
byIBM Security
 
PDF
How to Build a Privacy Program
bysecratic
 
PDF
A Cybersecurity Planning Guide for CFOs
bygppcpa
 
PDF
Understanding Data Loss Prevention
byRaid Data Recovery
 
PDF
Data Protection - Safeguarding Your Business in the Digital Age.pdf
byEntrust Network Services
 
PPTX
GDPR and Cyber Security LW.pptx
byTimBee1
 
PDF
9 Best Enterprise Data Security and Privacy Practices in 2025_compressed (1).pdf
byHawkShield
 
PDF
Data Privacy Compliance
byFinancial Poise
 
PPTX
How to Secure Data Privacy in 2024.pptx
byV2Infotech1
 
PDF
Data Privacy Compliance (Series: Corporate & Regulatory Compliance Boot Camp)
byFinancial Poise
 
PPTX
Proven Practices to Protect Critical Data - DarkReading VTS Deck
byNetIQ
 
PPTX
Global Threats| Cybersecurity|
bypaul young cpa, cga
 
PPTX
Privacy for tech startups
byMarc Gallardo
 
PPTX
LW GDPR and Cyber Security.pptx
byTimBee1
 
PDF
How to Secure Data Privacy in 2024.pdf
byV2Infotech1
 
PDF
GDPR - Sink or Swim
byGuy Griffiths
 
PDF
General Data Protection Regulation, a developer's story
byMichelangelo van Dam
 
PDF
Data_Security_Guide_Everything_You_Need_to_Know.pdf
byMehdi Ahmadi
 
PDF
Corporate & Regulatory Compliance Boot Camp - Data Privacy Compliance
byFinancial Poise
 
PDF
IAPP - Skills For Minimizing Privacy Risk in Data Science Product and Service...
byAurélie Pols
 
Encryption and Key Management: Ensuring Compliance, Privacy, and Minimizing t...
byIBM Security
 
How to Build a Privacy Program
bysecratic
 
A Cybersecurity Planning Guide for CFOs
bygppcpa
 
Understanding Data Loss Prevention
byRaid Data Recovery
 
Data Protection - Safeguarding Your Business in the Digital Age.pdf
byEntrust Network Services
 
GDPR and Cyber Security LW.pptx
byTimBee1
 
9 Best Enterprise Data Security and Privacy Practices in 2025_compressed (1).pdf
byHawkShield
 
Data Privacy Compliance
byFinancial Poise
 
How to Secure Data Privacy in 2024.pptx
byV2Infotech1
 
Data Privacy Compliance (Series: Corporate & Regulatory Compliance Boot Camp)
byFinancial Poise
 
Proven Practices to Protect Critical Data - DarkReading VTS Deck
byNetIQ
 
Global Threats| Cybersecurity|
bypaul young cpa, cga
 
Privacy for tech startups
byMarc Gallardo
 
LW GDPR and Cyber Security.pptx
byTimBee1
 
How to Secure Data Privacy in 2024.pdf
byV2Infotech1
 
GDPR - Sink or Swim
byGuy Griffiths
 
General Data Protection Regulation, a developer's story
byMichelangelo van Dam
 
Data_Security_Guide_Everything_You_Need_to_Know.pdf
byMehdi Ahmadi
 
Corporate & Regulatory Compliance Boot Camp - Data Privacy Compliance
byFinancial Poise
 
IAPP - Skills For Minimizing Privacy Risk in Data Science Product and Service...
byAurélie Pols
 

Recently uploaded

PDF
Digital Marketing Trends in 2026: AI, Data, Content & Future Growth
byConacent Consulting
 
PDF
splunk-peak-threat-hunting-framework.pdf
bylobster6719
 
PDF
Xemelgo - RFID Industry Predictions for 2026
byRich Rogers
 
PPTX
Why 2026 Could Be a Turning Point for Decentralized Exchanges.pptx
bycalliemorgan193
 
PDF
IAI-Unit1-notes useful.............................
bydinesh620610
 
PDF
Top 10 API Automation Testing Tools: Features, Pros & Cons
byhenrycavill30521
 
PPT
HDTV and DTV Standards: The United States Opts for a Digital HDTV Standard
byJeffrey Hart
 
PPTX
AI Bot Traffic Surge: Retail Fraud Threat for Age-Restricted Websites
byFTx Identity
 
PPTX
Large Language Model. LLM Audit Artificial Intelligence
byMANASCHOUDHARY22
 
PPTX
Salesforce Spring 26 Release Key .pptx
byMehediHasan939830
 
PDF
Ai In Courts Ai in courts AI in court AI in court
byZainKarim7
 
PDF
कम्प्यूटर.pdf for all computer examination
bynm92169694
 
PDF
Top Benefits of Using KVM VPS Hosting for Growing Businesses
byEthernet Servers
 
PDF
IAC 500 Sensor - Humidity Measurement Device
byCS Instruments
 
PDF
BO049FHDMO 0.49 Inch Micro OLED Datasheet
bySyluxdisplay
 
PPTX
UNIT III TYPOLOGY OF CRIME AND CRIMINAL BEHAVIOUR (1).pptx
bybloodyhumanoid
 
PDF
Benefits of Using the IAC 500 Sensor for Ambient Conditions
byCS Instruments
 
PPT
Information and Communication Technologies and Power
byJeffrey Hart
 
PDF
Beyond BBB: Practical Alternatives to Posterior Approximation in Bayesian Neu...
byTomasz Kusmierczyk
 
PDF
The map to conquer linear algebra for IT engineer
byakipii ogaoga
 
Digital Marketing Trends in 2026: AI, Data, Content & Future Growth
byConacent Consulting
 
splunk-peak-threat-hunting-framework.pdf
bylobster6719
 
Xemelgo - RFID Industry Predictions for 2026
byRich Rogers
 
Why 2026 Could Be a Turning Point for Decentralized Exchanges.pptx
bycalliemorgan193
 
IAI-Unit1-notes useful.............................
bydinesh620610
 
Top 10 API Automation Testing Tools: Features, Pros & Cons
byhenrycavill30521
 
HDTV and DTV Standards: The United States Opts for a Digital HDTV Standard
byJeffrey Hart
 
AI Bot Traffic Surge: Retail Fraud Threat for Age-Restricted Websites
byFTx Identity
 
Large Language Model. LLM Audit Artificial Intelligence
byMANASCHOUDHARY22
 
Salesforce Spring 26 Release Key .pptx
byMehediHasan939830
 
Ai In Courts Ai in courts AI in court AI in court
byZainKarim7
 
कम्प्यूटर.pdf for all computer examination
bynm92169694
 
Top Benefits of Using KVM VPS Hosting for Growing Businesses
byEthernet Servers
 
IAC 500 Sensor - Humidity Measurement Device
byCS Instruments
 
BO049FHDMO 0.49 Inch Micro OLED Datasheet
bySyluxdisplay
 
UNIT III TYPOLOGY OF CRIME AND CRIMINAL BEHAVIOUR (1).pptx
bybloodyhumanoid
 
Benefits of Using the IAC 500 Sensor for Ambient Conditions
byCS Instruments
 
Information and Communication Technologies and Power
byJeffrey Hart
 
Beyond BBB: Practical Alternatives to Posterior Approximation in Bayesian Neu...
byTomasz Kusmierczyk
 
The map to conquer linear algebra for IT engineer
byakipii ogaoga
 

Tackling data security

  • 1.
    Protecting Clients’ Assetsand Brand Reputation Data exfiltration Just when we thought we had it addressed
  • 2.
    Protecting Clients’ Assetsand Brand Reputation My Top 5 Worries • • • • • Social Media Ineffective Patching Portable Media Internet Printing Protocol Email
  • 3.
    Protecting Clients’ Assetsand Brand Reputation Tackling Data Security: Data Management & Control
  • 4.
    Data Management &Control Protecting Clients’ Assets and Brand Reputation Key Questions • Where is our data? • Who is using our data internally? • Who have they shared our data with externally? • How is our data being stored? • Is our data being protected? • Is our data SAFE? • What is it we WANT to achieve?
  • 5.
    But all Ineed is DLP right? Protecting Clients’ Assets and Brand Reputation DLP is an essential part of any Data Management and Control program, but there are things it cant do: • Protect your data when its not on your premises • Stop 3rd parties forwarding it on • Prevent the human factor • Secure the physical • Stop theft!
  • 6.
    Protecting Clients’ Assetsand Brand Reputation Mapping Data Management
  • 7.
    Where is yourData? Protecting Clients’ Assets and Brand Reputation Think about it, it may not be obvious. We can all guess our file stores and our systems but; • Your suppliers? • Your bins? • On twitter? • Your employees websites? • On your premises? • In the cloud? • Behind the fridge? • Is it safe? • Cornell Universities Spider
  • 8.
    How do youuse your data? Protecting Clients’ Assets and Brand Reputation We know we use our data to carry out business, but how is it actually used? • What do finance do with all those numbers? • Why do marketing have all those mp3 files? • How are development maintaining their source code? • Has payroll embedded data in hidden spreadsheet fields? • 3rd party processing? • Is it safe?
  • 9.
    We understand ourdata – lets protect it Protecting Clients’ Assets and Brand Reputation Protecting your data can prove harder than you think. 80% of the challenge is to fix the human element • User Training, User Training & User Training • Policy Process & Procedure • Fostering culture change • Remember, Accidents Happen!
  • 10.
    We understand ourdata – lets protect it Protecting Clients’ Assets and Brand Reputation The technology is easy, isn't it? Remember: if you can think of a way around your technical controls, your staff will think of 5. • Encrypt your laptops & devices • Use strong endpoint technologies • Have good identity management • Enforce Data Classification • Audit the change logs • Train those above you • Now train those below you
  • 11.
    Take the HolisticView Protecting Clients’ Assets and Brand Reputation There is no one product that fits all scenarios, you need to find what fits in your business. • Protect at creation – Awareness Training? DLP? • Protect during transmission – Awareness Training? Encryption? • Protect in processing – Awareness Training? IRM? • Protect the physical – Awareness Training? • Protect at rest – Awareness Training? DLP?
  • 12.
    Protecting Clients’ Assetsand Brand Reputation Tackling Data Security - Links: • Our Website • Information Security • Our Skills, Your Team • Penetration Testing