opinion piece Fragmenting DLP assessment, implementation, and management is counter-intuitive



Similar documents
Contact Centre Integration Assessment

Governance, Risk and Compliance Assessment

opinion piece Eight Simple Steps to Effective Software Asset Management

How do you manage the brain of the business in a way that supports the opportunities your organisation wants to take advantage of?

Cloud Readiness Workshop

Cloud Readiness Consulting Services

opinion piece IT Security and Compliance: They can Live Happily Ever After

Hybrid Wide-Area Network Application-centric, agile and end-to-end

How To Manage An Ip Telephony Service For A Business

best practice guide The Three Pillars of a Secure Hybrid Cloud Environment

3D Workspace: a new dimension to your desktop

Desktop Virtualisation Solutions. Adapting to a new reality in client computing

I can finally afford UC without making a huge upfront investment. COO, market leader in the health care industry

Cloud Services for Microsoft

IP Trading Solutions

Sustainable Solutions. Switch to future thinking

Dimension Data s Uptime Support Service

Four steps to improving cloud security and compliance

Private Cloud for Every Organization

Performance Optimisation

Flexible Cloud Services to Compete

Dimension Data s Uptime Maintenance Service

3 Steps to Transform your Business with Next-Generation Networking

Software-as-a-service Delivery: The Build vs. Buy Decision

Consulting and Professional Services. Strategic, architectural, operational and implementation expertise

best practice guide How to measure the real ROI of virtualisation

best practice guide BYO-What? 6 Lessons Learnt in Making Mobility Work

INSITE. Dimension Data s monitoring offering

Burning Dollars Top Five Trends in US Telecom Spend

best practice guide 7 Best Practices to Make Telecom Expense Management Work for Your Business

Big Gets Bigger, Smaller Gets Smaller

Managed Service for Visual Communications

Procurement and Logistics Service. Overcoming the challenges and complexities of international business

best practice guide Rise Above Unreliable Videoconferencing

Secure Mobility Survey Report. A critical gap exists between the enterprise mobility vision and real-world implementations

7 Demands Enterprises Must Make from Cloud Providers

Security Consulting. Services Overview

best practice guide Software-as-a-service Operations: Step-by-Step Best Practices

The Future of Unified Communications & Collaboration India highlights. Key findings from a major global Dimension Data and Ovum study

best practice guide Network Management How to Lose the Frustration, Not the Control

Advanced Infrastructure

Data Centre Relocation

white paper Strategy and Development: The Expanding Role of the Contact Centre

Strategic, User-Driven, and Managed: The Future Of Unified Communications and Collaboration Executive Summary

Dimension Data helps Unilever boost global collaboration and hit sustainability goals with innovative Videoconferencing-as-a-Service

Foreign Taxes Paid and Foreign Source Income INTECH Global Income Managed Volatility Fund

360 o View of. Global Immigration

The Future of Unified Communications & Collaboration South Africa. Key findings from a major global Dimension Data and Ovum study

Managed Secure Infrastructure Service

World Consumer Income and Expenditure Patterns

Appendix 1: Full Country Rankings

DSV Air & Sea, Inc. Aerospace Sector. DSV Air & Sea, Inc. Aerospace

EMEA BENEFITS BENCHMARKING OFFERING

Contact Centre-as-a-Service a compelling suite of best-in-class contact centre functionality, delivered via the cloud.

The Future of Unified Communications & Collaboration Canada. Key findings from a major global Dimension Data and Ovum study

Top 5 IT security trends to watch in 2015

Global AML Resource Map Over 2000 AML professionals

Agenda. Company Platform Customers Partners Competitive Analysis

Connected Life. Connected Life TNS

MAUVE GROUP GLOBAL EMPLOYMENT SOLUTIONS PORTFOLIO

The Future of Unified Communications & Collaboration Netherlands. Key findings from a major global Dimension Data and Ovum study

The Future of Unified Communications & Collaboration France. Key findings from a major global Dimension Data and Ovum study

Triple-play subscriptions to rocket to 400 mil.

The face of consistent global performance

E-Seminar. Financial Management Internet Business Solution Seminar

Region Country AT&T Direct Access Code(s) HelpLine Number. Telstra: Optus:

YTD CS AWARDS IN AMERICAS

Consolidated International Banking Statistics in Japan

BT Premium Event Call and Web Rate Card

Sulfuric Acid 2013 World Market Outlook and Forecast up to 2017

Cisco IOS Public-Key Infrastructure: Deployment Benefits and Features

OCTOBER Russell-Parametric Cross-Sectional Volatility (CrossVol ) Indexes Construction and Methodology

GLOBAL HRMONITOR NEW DIMENSIONS IN ONLINE HR INFORMATION TALENT HEALTH RETIREMENT INVESTMENTS

The Future of Unified Communications & Collaboration United Kingdom. Key findings from a major global Dimension Data and Ovum study

2015 Growth in data center employment continues but the workforce is changing

Brochure More information from

The big pay turnaround: Eurozone recovering, emerging markets falter in 2015

Cisco Global Cloud Index Supplement: Cloud Readiness Regional Details

Configuring DHCP for ShoreTel IP Phones

Global Effective Tax Rates

Contact Centers Worldwide

Transcription:

opinion piece Fragmenting DLP assessment, implementation, and management is counter-intuitive

Contents Introduction 01 Having the cake and eating it 01 Holistic = end to end 01 The devil is in the detail 02 Local availability, global knowledge 02

Data loss or leakage prevention (DLP) is a holistic approach to protecting and controlling an organisation s data. It s not a single solution. It s a suite of appropriately data centric solutions that work together to cover your data wherever it is in the organisation whether at rest in storage or external devices, on the move across the network and in cyber-space, or being processed on CPUs. Of necessity, therefore, the process of assessing your DLP needs by locating and classifying your data, implementing DLP models and technologies, and managing and maintaining your DLP systems, whether they are process, technically, legally, or human resources based, needs to be just as holistic. We re seeing a dawning realisation of this fact in IDC research about the business value of DLP done in 2009 for Dimension Data. The survey involved 407 organisations in 18 countries across Western Europe, the Americas, the Middle East, Africa, and Asia/Pacific. Just over 50% of the surveyed organisations said they would be implementing some sort of DLP model in the next 12 months but that they would be looking for solution-orientated rather than problem-orientated DLP services. Specifically, they believe DLP services should include at least a centrally managed security policy for the entire infrastructure, insider threat management, enhanced and secured mobility, and compliance. They also want their DLP business models to generate ROI, control data flows, and support business operations in tandem with engendering positive opinions on success enablement. Having the cake and eating it And, yes, they re absolutely right to expect all that if they don t fragment the way they get it all done by their suppliers. Also, if you re looking for solutionsorientated rather than problem-orientated solutions, then you re moving away from the concept of point solutions and towards integration and consolidation. It s very rarely possible to achieve ideal what DLP means to your organisation. Also, it makes no sense, for instance, to have one organisation assess your IT and data assets and their DLP requirements and then have another organisation implement the recommendations that arise from the assessment, and still another provide managed services once the implementation is complete. That s like refusing to have on site while your house is being built the architect you chose precisely because he has a strong engineering background and leaving the interpretation of his drawings and recommendations to the building project manager. It s very rarely possible to achieve ideal what DLP means to your organisation. There will, inevitably, be a gap between the architect s vision and the project manager s implementation, because the project manager has neither the architect s specialised knowledge of engineering or his particular insight into your expectations of your house. In the same way, if you re going to consult DLP specialists, as IDC s research indicates that 52% of organisations will, then you re expecting from those consultants It s very rarely possible to achieve ideal what DLP means to your organisation. not only an in-depth understanding of your particular organisation s DLP needs but also input from them on what is possible, what s desirable, and what s strategically optimal. Accordingly, based on an assessment of your assets and requirements, those consultants will fuse their experience of other DLP models with best practice in order to design for you a chain of secure links that will protect your data and therefore your business against all known threats. In the process, they will provide you with a foundation on which you can quickly and cost-effectively build additional DLP tools as new threats make themselves apparent. Any supplier not involved in that process is simply not going to have enough information to help you implement your DLP systems and processes so that they properly fulfill the intentions of the original design. Holistic = end to end Well, I hear you say, all I really need the implementation team to do is follow orders. Actually, it s not that simple. IT security and data usage are not static. Without a thorough understanding of the underlying principles incorporated into the original design, project-focused organisations can skew the implementation in less than helpful ways. Because the underlying principles are, essentially, developed from the processes used for life cycle management, they provide a holistic picture of an organisation s systems and, therefore, how the organisation handles data. The first step involves a business discussion about the organisation s network and datarelated technology lifecycle, and existing and best fit longer-term network and system architecture, considering risk, cost and strategic factors. Business and technical reviews are done with the key stakeholders to ensure that the relevant information is collected and lifecycle milestones as well as security and configuration issues are identified. An asset list is developed and analysed against security, configuration, and endof-life databases. A technology roadmap is created, based on the prioritised recommendations from the analysis. 01

The consulting house and the organisation s key stakeholders must then determine how to act on recommendations based on risk, cost, and strategic factors. An action plan is developed. Each of these steps forms part of a multi-year planning approach and many steps need to be executed in more than one financial period. In addition, networks, data, and markets are dynamic. Configurations will drift from best practice standards over time and additional products deployed will enter the end of lifecycle. In order to ensure the benefits of this approach over time, repeat assessments should be considered. It s very nearly impossible for continuity of all these steps to be maintained over time and across multiple IT and operational disciplines by an exclusively projectfocused implementation partner that has not participated in the original assessment. The devil is in the detail Besides, data can take many forms, including web pages, e-mails, electronic and paper documents, and data bases. It can be found in various contexts: data at rest is located on storage mediums such as endpoint devices; data in transit traverses the network; data in use passes through a computer s Central Processing Unit; and data beyond boundaries is located outside of the organisation s direct control. So, within the global assessment, each area of DLP is an area of specialisation in itself. Data-in-use DLP, for instance, includes solutions that protect and control sensitive information such as contracts, term sheets, and other business-critical documents as they are being used on or off the network. Data-in-motion DLP includes solutions that monitor, encrypt, filter, and block outbound content contained in e-mail, instant messaging, peer-to-peer, file transfers, web postings, and other types of messaging traffic. Data-at-rest DLP includes solutions that discover, protect, and control information on servers, databases, desktops, laptops, file/storage servers, USB drives, and other types of data repositories. Data-beyond-boundaries DLP includes technology that encrypts data and manages access to it based on Digital Rights Management (DRM) principles, restricting access to and use of data based on identity and also providing an audit trail. Local availability, global knowledge Then, of course, there s the question of managing and maintaining the implemented DLP solutions on an ongoing basis. Most organisations don t have the range of skills in house to do it effectively and eventually turn to managed services. Keeping continuity throughout the assessment, implementation, and management elements of ensuring optimal DLP, implies the use of a global systems integrator with local skills on the ground. That way, the organisation gets the best of local and global capability in a single, coherent offering focused tightly on the organisation s unique and best interests. The point being that, if you re going with a holistic approach by going with DLP as a concept, you would want your assessment, design, implementation, management and maintenance to reinforce rather than undermine that holism by being integrated and consolidated as well. CS / DDCC-0776 02/11 Copyright Dimension Data 2011 02

Middle East & Africa Asia Australia Europe Americas ALGERIA ANGOLA BOTSWANA GHANA KENYA MOROCCO NAMIBIA NIGERIA SAUDI ARABIA SOUTH AFRICA TANZANIA UGANDA UNITED ARAB EMIRATES CHINA HONG KONG INDIA INDONESIA JAPAN KOREA MALAYSIA NEW ZEALAND PHILIPPINES SINGAPORE TAIWAN THAILAND VIETNAM AUSTRALIAN CAPITAL TERRITORY NEW SOUTH WALES QUEENSLAND SOUTH AUSTRALIA VICTORIA WESTERN AUSTRALIA BELGIUM CZECH REPUBLIC FRANCE GERMANY HUNGARY ITALY LUXEMBOURG NETHERLANDS SPAIN SWITZERLAND UNITED KINGDOM BRAZIL CANADA CHILE MEXICO UNITED STATES For contact details in your region please visit www.dimensiondata.com/globalpresence

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information