The need to protect sensitive data has two main drivers, privacy legislation and protection of intellectual property against external breaches and insider threat. 58% of the countries worldwide now have legislation in place; these will become more onerous over time. Breaches and insider theft of data is a frequently reported topic in the media due to the steady stream of brand impacting, high-profile cases. Breaches are expensive due to fines, loss of revenue and remediation costs.
Historically data protection via DLP was implemented on the end point and in the business’s network. Both approaches have strengths and weaknesses; network DLP is unable to monitor the movement of sensitive data to USB memory sticks and end point DLP doesn’t offer some of the more sophisticated DLP capabilities that require a lot of memory and compute power. Many customers deployed both enterprise DLP solutions.
Other vendors without enterprise DLP offerings have added “DLP-lite” capabilities to their products, predominantly email and web security products and some businesses have chosen those over enterprise DLP solutions.
This approach was sustainable before widespread adoption of the cloud. 95% of companies have or are adopting cloud services and 79% of them admit to storing sensitive data there. Data is now everywhere, on laptops, servers, in sanctioned apps, in unsanctioned Shadow IT apps and moving from cloud to cloud. Protecting data within the four walls of an organization is no longer sufficient.
Businesses, particularly those with a Cloud First strategy have responded to this challenge by introducing a CASB solution such as McAfee’s MVISION Cloud product. Dependent on the product this can address some, or all, of these cloud adoption challenges – MVISION Cloud addresses them all.
The problem however is that some businesses are living with gaps in their protection as they don’t deploy multiple products. Endpoint DLP can’t solve for cloud, neither can cloud DLP solve for endpoint and web DLP can’t effectively solve for sanctioned apps allowing online collaboration, or endpoint. When looking at common use cases along with potential DLP leak vectors you’ll appreciate why a single product isn’t a complete solution:
To attempt to address this, businesses deploy multiple products. Doing so closes all the gaps but has downsides. Multiple products are expensive to license, have higher IT management overheads and complexity due to subtly implementations. These differences are due to different DLP policies, data classifications and content extraction engines which makes it difficult to ensure consistency of detection across products, as data classifications that have been fine-tuned over time have to be re-implemented from scratch with each additional product, leading to a reduction of efficacy.
McAfee’s Unified Cloud Edge (UCE) solution solves these problems. UCE is a combination of endpoint DLP, web SaaS proxy and CASB, covering all the potential data leak vectors: endpoint, unsanctioned shadow IT apps, sanctioned apps (including email) and cloud to cloud transfers. UCE is managed via a single console and uses the same DLP technology everywhere, such as policy and content extraction engines to maximize efficacy through consistent results. Businesses can retain their investment in those carefully crafted data classifications, allowing use across all vectors and easy extension to the cloud. UCE is a cloud native, highly scalable solution with industry leading uptime and availability.
Want to find out more? Listen to the webinar.
About the Author
Categories: Data Security