Video Screencast Help
Cyber Readiness and Response

Death of DLP? What are people thinking???

Created: 29 Mar 2013 • Updated: 29 Mar 2013 • 5 comments
Phil Harris's picture
+2 2 Votes
Login to vote

I see sessions popping up in conferences and articles lately prophesying the demise of DLP and that DLP has run its course and is something companies should avoid. I have to ask a simple question: Why is it when attackers get more creative and cunning that we start doubting our abilities to protect information, people and companies with the capabilities and solutions we already have heavily invested in?  
 
Sometimes I feel like these are security professionals that just like to see their names in lights to quench their egos. Are they serious?!?! It's frustrating to see and hear seasoned professionals making irresponsible remarks even if it's just a ploy to get folks to attend their sessions at conferences or read their silly articles. I know that getting back to basics and making sure you're establishing and implementing the very best controls framework that ensures you have accomplished even a defined level of maturity is not the sexiest or the most interesting, but IT IS NECESSARY!
 
Many companies have yet to even do the basics from patching, configuration, monitoring, correlation, analysis, IAM, etc. across all the different control objectives. We've been talking about that for years. We have today much of what we need to ensure an effective controls implementation, but many companies have yet to complete even this basic level. Show me a company that has achieved this and then still has problems with attackers or outbreaks or breaches and then maybe we can entertain a failure of this or that control. I would rather see these professionals advocate achievement of a solid a robust security controls program first than start deriding this or that technology.  
 
Important and necessary controls (in addition to effective policies, standards and processes) such as DLP have not even begun to run their course. This capability is just beginning to do a great job well beyond the discovery and protection of the basics such as PII, PCI, HIPAA, etc. It has entered a much needed space of discovery and protection if Intellectual Property, something that is in such demand since the spate of attacks on IP-rich corporations around the world. There needs to be a greater focus from corporations in this area like never before if we want to continue to maintain and expand our preeminence on the world stage. 
 
Before folks start prophesying the demise of this or that control they need to consider: have companies done the best with what they have? Yes or No? If it's No, then start having conference sessions and articles that espouse best practices, how to's, do's and don’ts that advise and educate. There are many security professionals out there that have an abundance of expertise and advise to offer those companies and security professionals that struggle with the basics.  
 
To you all out there, I say, be responsible and work to get everyone to a level of maturity that makes a difference before you start deriding or besmirching or claiming all out failure this or that control or solution!!!

Comments 5 CommentsJump to latest comment

kishorilal1986's picture

Hi Phil, Nice one but have u done any surye/feedback from ppl to get such idea of Death of DLP? What are people thinking?

+1
Login to vote
John Santana's picture

Why is that DLP is unpopular ?

Exchange Server 2013 has just implemented DLP features.

Kind regards,

John Santana
IT Professional

--------------------------------------------------

Please be nice to me as I'm newbie in this forum.

+1
Login to vote
rshaker2's picture

Hi KS Sharma,

Phil's point is that industry people are saying dlp is dead not that he is or we are. The survey is just that you can see it in the public comments made and presentations at conferences. So what are people thinking? DLP is far from dead or irrelevant, it is more relevant than ever and people selling new toys shouldn't preach that the right toys are no longer valid.

Mr. Santana,
I ask the same question. The DLP is unpopular message seems to come from industry professionals that don't have a DLP product and are trying to sell people the latest shiny toy. Customes that denounce DLP, from my experience, just don't take the time to implement it in the way that helps them the best. They either try to swallow the elephant or do too little.

DLP is still critical to the success of any public or private org protecting data, I might have well said all orgs. :-)

+1
Login to vote
John Santana's picture

Yes Mr. Shaker, that is true I believe DLP is one of the feature that can be utilize when you are on certain sector like in banking and financial services.

Kind regards,

John Santana
IT Professional

--------------------------------------------------

Please be nice to me as I'm newbie in this forum.

-1
Login to vote
Hesadrian's picture

halo guys, below is a link that explain a great deal of DLP concept. http://www.fim.uni-linz.ac.at/Diplomarbeiten/Maste... it is very comprehensive document since it is a Thesis for Master Graduate. Enjoy.

rgrds,

Hesadrian

+1
Login to vote