Enterprise data sharing is never simple. Employees can add attachment in email, sync files in the cloud, use flash drive to copy several GB of data, and access resources from external network, etc. external access to network resources, and so on. The advantage of the sharing mentioned above is improving the productivity and flexibility. The disadvantage is that it makes sensitive data protection more difficult for IT department especially the defense against internal malicious users. Enterprise can consider taking terminal data loss prevention tools as a part of terminal security management.
Pay attention to internal staff's work
This spring, Victorinox released the latest Swiss Army Knife, which includes a 1TB jump disk with maximum write speed of 150MBps. With such a device, enterprise malicious staffs can steal the entire data center with the intent of revenge or interests.
According to Identity Theft Resource Center, in all data center issues reported by nation's business in 2011, there have been 56 cases of internal staffs theft, accounting for 13.4% of all theft issues.
The easiest way to transfer large amount of data is to copy them into USB devices. In addition, employees who want to steal information can also use CD, DVD, tablet, laptop or other removable media to take data out from data center building.
DLP tools' effects on safety
In most companies, IT staffs spend a lot of efforts to protecting sensitive data from outside attacks. Even internal malicious accesses can be reduced through a number of best practices, such as controlling permissions, managing network accounts and upgrading human resources strategies to discriminate between hiring and firing.
It's high time that data loss prevention should play its role. Broad protection system should include data stored by employees and records sensitive data used in their workstation and mobile devices. DLP tools can scan hard drive on terminals and recognize confidential information store location and what data are facing greatest risks. It can take special actions in accordance with different data types. For example, data loss prevention can isolate sensitive data and move it to secure network and encrypt it.
DLP tools can also monitor data use conditions in terminals. Any action referring to sensitive data, such as using jump drive to copy files or sending attachment in emails, can be tracked.
Monitoring is just one function of terminal security management tools. In addition, data loss prevention software can prevent files being copied to USB flash drives or being sent via emails. Or apart from these prevention functions, this software can also encrypt confidential files.
Know more about data security issues such as password protect a folder, copy protect shared folder, you can visit kakasoft website.
This entry passed through the Full-Text RSS service - if this is your content and you're reading it on someone else's site, please read the FAQ at http://ift.tt/jcXqJW.
No comments:
Post a Comment