Professional Documents
Culture Documents
3
IS
DLP-Data Loss Prevention
A successful Data Loss Prevention program (not only technology) helps an
organization to protect its information and prevent the exfiltration of sensitive data.
DLP solutions should be able to search the various file types that are stored and log
where they are. Then explore the information on these files searching for sensitive
data like social security numbers, credit card information or personal identifiable
information.
4
IS
DLP-Data Loss Prevention
DLP solutions can analyze the data traveling through the network for sensitive
content. Depending on the defined rules/controls; DLP solutions can alert
management, block, quarantine or encrypt the sensitive information that is in
motion.
Good DLP solutions should manage the data in use, which is data movement at the
user workstation level (sending information to printers, removable drives or even the
copy-and-paste clipboard). DLP solutions use agent software to set rules for data use.
All three information types; data in store, data in motion and data in use must be
addressed to create an effective DLP solution.
5
DLP Example IS
6
IS
Antivirus and Anti-Malware Systems
Malicious software is one of the most common attack vectors used by adversaries to
compromise systems. Therefore, controls are required for its detection and prevention.
Add a footer 8
SOC-Security Operation Center IS
A Security Operation
Center (SOC) is a
centralized function
within an organization
employing people,
processes, and
technology to
continuously monitor
and improve an
organization's security
posture while
preventing, detecting,
analyzing, and
responding to
cybersecurity incidents.
Add a footer 9