Some say, “What you don’t know won’t hurt you.” But CIOs know that couldn’t be further from the truth when it comes to Data Loss Prevention software (DLP).
According to recent research from Netskope 17.9% of all files in enterprise-sanctioned cloud apps constitute a data policy violation – which doesn’t include data in unsanctioned cloud apps that employees use to get their jobs done. When it comes to cloud DLP, we need the help of technology to keep our data compliant and secure while at rest or in transit.
So-called Shadow IT (workers skirting IT policies and sanctioned apps with the goal of being more productive) is a genuine threat to organizations that need to keep corporate IP and sensitive data secure as unsanctioned cloud app usage skyrockets. DLP policies are meant to mitigate the risk of a company’s most insecure end point: the employee. An incomplete or nonexistent DLP policy puts an organization at risk of loss, but also makes it more vulnerable to cyberattacks.
A company’s DLP plan should start with a three-step process:
- Find cloud apps that employees are already using. Score the risk associated with each of those apps. Netskope’s discovery technology makes this part easy. It all starts with a Cloud Risk Assessment;
- Understand how these cloud apps are being used. How are users accessing and sharing information? What types of information are being stored in sanctioned cloud apps? What types of audit trails are necessary?
- Secure your cloud apps with policies that allow usage, but on your terms. Build and enforce granular policies that maximize the productivity of cloud apps, but minimize the risk of losing sensitive data. You can accomplish this with a