All Articles

Top 6 Reasons Why Data Loss Prevention(DLP) Implementation Fails

Posted by pritha on February 10, 2016 at 7:00am

Below are Top 6 Reasons Why Data Loss Prevention/ Data Leakage Prvention (DLP) Fails:

Lack of business/key-stakeholders involvement: Failure to include key stakeholders (Including Business and C-level executives) while defining requirements and formulating DLP policy make implementation harder. A clear 'Data Loss Prevention policy' from the management and Board clearly sets-up the expectations, allocate needful resources and comes up with a plan for its governance.

Ineffective data classification methods: Failure to identify the right data to be protected. Undermining certain data can lead to the exposure of sensitive information while overwhelming amount of protected data can bring down the system and network performance. Conducting risk assessment on data, data-owners and data custodians is very crucial for the success of any DLP implementation.

Improperly configured content scanning module: Failure in defining right use cases and processes related to sensitive information may lead to ineffective controls which can open doors for an attacker to get his hands on the sensitive information

( Read more: Bad USB Defense Strategies )

Excessive False positives: Overly strict rule-set, policies can lead to an overwhelming amount of false positives and reporting. This can drastically bring down employee productivity and results in unnecessary workload for IT security team

Loosely Integrated Data Loss Prevention modules: A complete DLP implementation will have network protection modules, Host protection modules and storage modules tightly integrated and centrally managed. Loosely Integrated DLP modules will create a lot of management overhead and may lead to ineffective monitoring.

Failure in periodic monitoring of changes in organization IT Infrastructure, Business units and processes: This can render previous DLP controls ineffective. The changes must be taken into account to fine tune DLP modules from time to time in order for the DLP solution to deliver its value

( Read more: Top IT Security Conferences In The World )

More: Join the community of 3000+ Chief Information Security Officers. Click here

Views: 521

DLPFailures, DataLeakPrevention

E-mail me when people leave their comments –

Posted by pritha

CISO Platform

You need to be a member of CISO Platform to add comments!

Join CISO Platform

CISO Platform

A global community of 5K+ Senior IT Security executives and 40K+ subscribers with the vision of meaningful collaboration, knowledge, and intelligence sharing to fight the growing cyber security threats.

Join CISO Community Share Your Knowledge (Post A Blog)

Webinar On Building The Ransomware Security Stack In Your Organization

Oct 27, 2021 from 8:30pm to 9:30pm UTC+5.5

Online Platform

Description:
- Develop a comprehensive, defensive security posture to protect against ransomware
- Tools to discover and monitor attack surface to identify the entry points of attackers
- Designing a cyber resilience program and incident response program
Created by: pritha

Round Table On Ransomware Attack Surface Testing - Strategies & Tactics (Startup)

Oct 29, 2021 from 3:00pm to 4:00pm UTC+5.5

Online Platform

Description:
- Prevent, Detect And Recover From Ransomware Attacks
- Data Protection Strategy
Created by: pritha

#xg { position:relative;top:120px; } #xn_bar { top:120px; }

Hello, you need to enable JavaScript to use CISO Platform.

Please check your browser settings or contact your system administrator.