Data Loss Prevention Risk Assessment

What is your risk of confidential data loss?

The rise in data security breaches and trade secret violations over the past year is a wake-up call for executives—network security is not enough. Global corporations and government organizations require more than network security and access control to guard their confidential data. They must protect the data itself. Most organizations have no visibility into where their confidential data is stored on the network, control over where that data is going, or what to do once they find it.

A Dewpoint Data Loss Prevention Risk Assessment provides the answers

Dewpoint offers a Risk Assessment that allows organizations to quantify and qualify their risk of data loss. At the end of the engagement you will understand:

  • Where is confidential information exposed in open file shares and desktops?
  • How much and what type of confidential information is exiting the network?
  • Who is transmitting confidential information outside the organization?
  • What sensitive information is being copied to removable devices or printed and faxed electronically and who is responsible?
  • What network protocols carry the most violations?
  • What business processes need to be updated?
  • What regulations are being violated?

What To Expect

In a typical Risk Assessment, our Professional Services team helps create and implement data security policies to discover, monitor, and protect confidential data wherever it is stored or used.

  • Symantec Data Loss Prevention for storage - quickly finds confidential data wherever it is stored including file servers, databases, document and email repositories, and web sites.
  • Symantec Data Loss Prevention for networks - inspects all network communications for confidential data sent in violation of data security policy.
  • Symantec Data Loss Prevention for endpoints - monitors and blocks confidential data from being downloaded, transferred, copied, or printed to an endpoint.
  • Symantec Data Loss Prevention Enforce Platform - effectively manages all universal Data Loss Prevention policies in a centralized platform for detection, incident remediation workflow and automation, reporting, system management and security.

Know Your Risk: A Four-Step Process

  • Step 1: Risk Assessment requirements gathering
    First, our experts work with you to identify your top data security and privacy priorities to prevent the loss of confidential data wherever it is stored or used—across endpoint, network, and storage systems. Our team will work with you to drive consensus on data protection priorities; determine high risk information, senders, and destinations; brainstorm potential worst-case-scenario data loss events; identify data types, file servers, and policies to be monitored; identify priority compliance regulations; and review next steps in the Risk Assessment process. Participants in the Risk Assessment requirements gathering step typically include key decision makers and information owners, executive sponsors, project managers, security analysts, and network engineers. During this step, the group completes several important measurement tools. For example, a Severity-of-Impact Scorecard rates top data loss scenarios based on their potential impact on the organization.
  • Step 2: Policies definition
    Based on information gathered in the Risk Assessment requirements gathering step—including data prioritization by type, exposed data on file shares, sender, and recipient—data protection policies are clearly defined. Symantec Data Loss Prevention Enforce Platform is used to build policies that map to your data priorities based on our pre-defined policy templates, as well as your organization’s unique security policies and compliance requirements.
  • Step 3: Confidential data monitoring
    The next step is the monitoring of your confidential data wherever it stored or used—across endpoint, network, and storage systems using Symantec Data Loss Prevention Endpoint Prevent, Network Monitor, and Network Discover, respectively. This is to evaluate and clearly quantify your organization’s current level of confidential data risk—by data type, file share, sender, recipient, policy, and network protocol. This includes email, instant message, FTP, web, and secure web analysis of the results, which yields best practice recommendations for remediation, education, and policy creation. To effectively monitor your confidential data, Symantec requires access to open file shares you wish to scan and access to your outbound-traffic via a port span or network tap. In most cases, the Symantec™ Data Loss Prevention solution can be up and running within 30 minutes.
  • Step 4: Executive presentation of findings
    Following the discovery and monitoring phase, our team gathers with the key decision makers and information owners from your organization for a one-hour executive-level meeting to review the results of the project, examine the Risk Assessment reports, and discuss next steps. In addition, Symantec will build an overall business case for investing in Data Loss Prevention solutions with preliminary best practice recommendations.

Dewpoint Data Loss Prevention Risk Assessment Reports

The following reports are delivered at the conclusion of the Dewpoint Data Loss Prevention Risk Assessment in an executive presentation:

  • Data Loss Risk Assessment Summary - The Dewpoint Data Loss Prevention Risk Assessment identifies areas of Very High, High, Medium, and Low risk of data across endpoint, network, and storage systems by data type, based on your evaluation of potential severity and your actual frequency of data loss.
  • Industry Benchmark Comparison - The Dewpoint Data Loss Prevention Risk Assessment benchmarks your actual data exposure and loss metrics against industry averages, so you can learn how your organization ranks in terms of overall risk.
  • Compliance Scorecard - The Dewpoint Data Loss Prevention Risk Assessment measures your risk of non-compliance with regulations such as Gramm-Leach Bliley (GLBA), the Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry Data Security Standard (PCI DSS), Sarbanes Oxley (SOX), and more than 30 state data privacy and notification laws, including CA-1386. Symantec Data Loss Prevention also enables government agencies to comply with regulations such as the White House Office of Management and Budget (OMB) 06-16 and Federal Information Security Management Act (FISMA).
  • Business Case for Data Loss Prevention - The Dewpoint Data Loss Prevention Risk Assessment delivers an executive-level report that quantifies the frequency, severity, and risk by data type.

Get To The Point

Dewpoint’s team of Data Loss Prevention experts will work with you to understand your unique data security requirements, priorities, and share insight into our industry best practices. Contact Dewpoint to get started at info@dewpoint.com or call 888-DEWPOINT.

Dewpoint is a Symantec Platinum Partner