Data Loss Prevention: An Elixir for Privacy Compliance Headache?

The combination of the info-centric view of protection, compliance pressures, and risk management requirements are driving a new solution to address the headaches: a data loss prevention (DLP) solution. A DLP solution is a combination of hardware and software that aims to prevent the loss or leakage...

Full description

Saved in:
Bibliographic Details
Published in:EDPACS 2008-12, Vol.38 (6), p.10-17
Main Author: Murphy, Joanna
Format: Article
Language:English
Subjects:
Compliance
Cybersecurity
Data integrity
Risk management
Success factors
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:The combination of the info-centric view of protection, compliance pressures, and risk management requirements are driving a new solution to address the headaches: a data loss prevention (DLP) solution. A DLP solution is a combination of hardware and software that aims to prevent the loss or leakage of data assets out of the organization. There are 3 main components to a DLP tool that work in concert to protect sensitive information assets: 1. data-at-rest, 2. data-in-motion, and 3. data-in-use. The 2 areas that stand the most benefit from a DLP solution is in the protection of Credit Card Holder Data and Personally Identifiable Information. Critical success factors for a DLP solution are: 1. compliance gap assessment and enterprise security and privacy risk assessment, 2. IM/IT policies and standards and information classification, 3. awareness and education, and 4. incident management.
ISSN:0736-6981
1936-1009
DOI:10.1080/07366980802584272