RSS Alerts

Share

More services

Related Links

  • Check Point
  • Elsevier Ltd is not responsible for the content of external websites.

Related Stories

  • Check Point founder explains 2010 security product strategy
    Gil Shwed, founder and chief executive of Check Point Software, may have founded his IT security company 17 years ago, but that doesn't mean he has relinquished control of the firm to his senior managers – far from it, as he explained today.
  • Check Point extends security envelope to support data leak prevention
    Check Point has taken the wraps off two new products that seek to introduce a human-like analysis to the security of companies in the large and enterprise element of the market.
  • Check Point to revolutionise network security
    At Check Point Experience in Paris this week, Gil Shwed, co-founder and chief executive of Check Point, announced the company’s intention to fundamentally alter network security with the launch of a software blade architecture.
  • From the Eye of the Storm: 2011 Information Security Predictions
    Last January, Infosecurity magazine published prognostications by the (ISC)² Advisory Board of the Americas (ABA) regarding the information security field in 2010. Unlike many who have attempted to envision the future, the ABA has gone back and reviewed the accuracy of its predictions and provided a letter grade for each. The ABA will then offer new predictions for 2011.
  • Comment: Simplifying Data Loss Prevention
    Without the right approach, all of the promised advantages of today’s data loss prevention (DLP) products may not be realized says Jared Thorkelson of DLP Experts.

Top 5 Stories

News

Data leak prevention is a strategy, not a science says Check Point

14 April 2010

The recent hiking of the penalties for breaches of the Data Protection Act in the UK has caused many companies to review their data leak prevention (DLP) strategies but, says Oded Gonda, vice president of network security products with Check Point, most data leaks are actually not caused deliberately.

Speaking at the Check Point Experience event in London this week, Gonda told his audience of customers and dealers that 90% of data losses in most organisations are non-malicious in nature.

"Our own research, carried out between 2007 and 2009, showed this to be the case and we even had one incident ourselves, when one of our developers was found to be emailing some of his documents to one of our competitors", he said.

The situation looked bad but, on investigation it turned out that the developer was a native Hebrew speaker, and was sending documents to his wife – who was better at English than he was – for proof reading before submitting them to the customer.

The staff email incident, says Gonda, was a genuine mistake on the part of the developer, who did not – as you might expect – lose his position with the company over the affair.

"This was a classic situation of an employee making a mistake. Our research suggest that close to 10% of data leaks are caused by employees going against corporate policies – they might, for example, send a document to their Gmail account to allow them to work from home. An innocent mistake that can result in corporate data being sent outside the organisation", he said.

"You can have the best security infrastructure, but things can still go wrong owing to the human element", he added.

According to Gonda, it's 'leaks' like this that prove there is no such thing as a completely secure system.

And this, he says, is the DLP challenge: to develop a strategy for a company to deal with staff and their systems to prevent data accidents – however they are caused – from happening.

"Before coming up with our own DLP solutions, we looked at the organisation processes that most companies employ when a data leak occurs and realised that it usually involved a lot of administration to analyse the data on the incident", he said.

"And the analysis process can be quite lengthy and involve a number of people. It's for this reason that you don't see that many DLP systems deployed in industries outside of the financial sector, where DLP is a regulatory requirement", he added.

Unfortunately for the IT security industry, he told his audience, there aren't that many real DLP solutions available. Most are really data leak detection systems, which detect a leak after the event has happened.

So what is the solution?

Simple, says Gonda – you involve the employees themselves in DLP strategies by alerting them to a potential problem in real time and inviting them to change their working practices and avoid a repetition.

"Do people cheat the technology? Yes, but our research has shown that, when you alert someone of a potential security threat resulting from their actions – either by a pop-up or an urgent email – they will think twice before going ahead with their action", he said.

And this, he explained, is what good DLP technology is about – it educates people about their actions and can help to modify their behaviour.

The nett result of deploying good DLP technology, he went on to say, is that it helps people understand why the security technology is in place and helps them to modify their behaviour, so making their actions much less of a threat to the security of the company's data.

"Using the right technology allows IT staff to move from data leak detection to data leak prevention. It's all about the technology", he said.

This article is featured in:
Compliance and Policy  • Data Loss

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012