Data Loss Prevention Assessment (DLPA)
DLP is an emerging class of technology products which monitor gateways, laptops and desktops to ensure that sensitive information such as credit card numbers, health care data and intellectual property (IP) do not escape designated network boundaries or onto computer peripherals in an unprotected or unauthorized manner. To learn more about Illumant's DLP implementations click here.
Illumant's Professional Services Department features a Data Loss Prevention Assessment (DLPA) which leverages this technology to monitor corporate traffic for a predetermined length of time to detect broken business processes that could lead to unauthorized disclosure, steep fines, and loss of business reputation.
Here are some (but not all) of the major categories that could be monitored:
- Compliance regulations including HIPAA, Sarbanes-Oxley, the Gramm-Leach-Bliley Act, the PCI Data Security Standard, PIPEDA, California Senate Bill 1386 and other state data privacy laws, SEC regulations, U.S. federal employment standards, UK Data Protection Act, Safe Harbor Act and the EU Data Protection Directive.
- Intellectual Property including business plans, discussions on potential mergers and acquisitions, marketing plans, financial statements, source code and product development plans. Past clients have also been concerned with engineering drawings, parts lists, process descriptions, and chemical formulations.
- Customer Data including cardholder information, customer names, addresses, Social Security numbers, credit card numbers, account numbers, pass codes and drivers licenses.
Overview of DLPA
Every day organizations are faced with the challenge of protecting highly-sensitive information from both malicious and inadvertent data leakage. Whether it's personal health information (PHI), personally identifiable information (PII), payment card information (PCI), or intellectual property (IP), all organizations have sensitive data that they need to protect from threats inside and outside their business.
Illumant understands the importance of securing sensitive data. The Illumant Data Loss Prevention Assessment is a highly valuable service offering that identifies and evaluates sensitive data that may be potentially leaking from your network; profiles the potential impact to your business, and provides specific compliance-driven recommendations for remediation. You'll gain visibility into where at-risk information resides, who is accessing it, and how it is being used.
Objectives
The primary objectives of the Sensitive Data Vulnerability Assessment include:
- Analyzing the level of risk and exposure of your sensitive data.
- Identifying the drivers for protecting sensitive data, including how data is collected, how data is stored, how data is exchanged, the contextual value of the data, and who has access to the data.
- Defining a compliance-focused data loss prevention strategy.
- Outlining a roadmap for remediation based on key findings.
What will DLPA deliver?
The DLPA assessment is designed to be as non-intrusive as possible. The DLPA appliance will be installed in monitor mode only with absolutely no interventions enabled. It will be connected to an available SPAN port where it will not disrupt traffic even if the box should fail in some manner. It would be nice to also connect the management port to an ordinary LAN connection along with VPN access for monitoring and potential tuning. In addition, clients can expect the following deliverables:- Our DLP experts will meet with you, either in person or in a conference call to determine the specific needs of your business and enterprise operations. The DLP appliance will then be tuned for maximum performance based on those parameters.
- The appliance will be installed, usually in under an hour with a connection to an available SPAN port.
- The findings from the Vulnerability Assessment will be prepared and presented in two formats. One will be a PowerPoint presentation in summary format and the other will be a written report in detailed format.
- After the findings are presented, accepted, and ratified, Illumant will provide recommendations for remediation or mitigation of the vulnerabilities identified.
Protect your sensitive data and gain peace of mind that your company won't become tomorrow's headline with Illumant's DLPA Data Loss Vulnerability Assessment. This professional service is normally available on a time and materials basis which usually runs in the $7,500.00 to $15,000.00 range. If you qualify we can offer this service at a substantial discount. Contact us today to discuss your needs.
To request a quote or more information, click here.