Data Loss Prevention (DLP) Strategy, Architecture and Roadmap
Avoid being the next Microsoft or Okta with this highly effective control when it is done right.
Introduction
Data Loss Prevention (DLP) capabilities are not the holy grail of cyber security that they originally promised to be be. The Gartner hype cycle was correct in 2004. However especially with AI and ML they can be incredibly effective tool in your locker when they are done right.
They will also often be:
Required by regulation.
Looked for by auditors, third parties and customers. Often as part of a tick-box exercise, but even if you are putting it in for the wrong reasons, why not get value out of your investment? Return on Security Investment (ROSI).
This is a strategy, architecture and roadmap on how to do that. Especially if you have no DLP capability currently, this is a way to get in front of Finance and Defense companies that have done DLP badly. You have a true opportunity to leapfrog. DLP is not something that needs a team of 100’s to be effective, if you follow this strategy, architecture and roadmap. So $20/month, tax deductible, what are you waiting for?
Previous Work
Have a read of our previous DLP related work:
DLP and Security Service Edge (SSE)
TL;DR Security Service Edge (SSE) technologies allow you to control access from users (and machines if you are good) to Internet accessible and private systems. They not only provide a way to remove e…
Massive fail in DLP that allowed likely a Chinese APT crew to hack Microsoft for 2 years: https://rakkhi.substack.com/i/137088010/zero-trust-architecture-detection-and-response