Can you help with the following article? This article will be appearing in SC Magazine. SC features on specific technologies and trends are designed to inform IT security professionals about the state of the art in that area.
Deadline for leads is 3rd March 2010. Email me or leave a comment below.
Professional workshop
Understanding and implementing DLP in your workspace for security and business efficiency
A look at best practice for designing and deploying DLP, avoiding the mistakes and ensuring business continuity
This is going to be about understanding and implementing DLP in your workplace for security and business efficiency, looking at best practice for designing and deploying DLP, avoiding the mistakes and ensuring business continuity.
The main article is going to be an educational step-by-step piece rather than an investigative piece. It will be aimed at anyone worried about the insider threat and/or data leaking out of the building and will assume DLPis the solution to problems. It'll look at the following questions (among others):
- Why do you need DLP?
- What kind of threats can it counter?
- What are its advantages?
- What are known disadvantages/limitations
- What kind of system should I use (depending on needs and enterprise size)
- How do I ensure that my DLP system is kept up to date and keeps up with changing threats?
- Should a DLP system be used in conjunction with a security awareness programme?
- Should I use a consultant?
- Can DLP be managed in the cloud?
So I'll be looking to speak to analysts, consultants, vendors and practitioners who can address these questions
There'll also be a case study that highlights some of the questions above,so I'll need to speak to an organisation that has implemented DLP, how they went about doing it, what some of the pitfalls they encountered were and how well it's worked.
I'll also be taking a quick look at the nature and scale of the insider threat – is it over hyped?
Leave a comment