Ekran System Blog

News, opinions, and industry insights

DLP systems: cons and pros


A DLP system is a data loss prevention system. It is necessary to have the protocols in your company to prevent data leaks that can cause damage. Leaked data can potentially unmask your company information, customer databases, intellectual property and trade secrets.


The financial, health, and educational industries are required to have systems in place to prevent data breaches. The legislation that requires database monitoring and security includes the International Payment Card Industry Data Security Standard, Gramm-Leach-Bliley Act, the Sarbanes-Oxley Act as well as Euro-Sox European Union regulations.


Pros of a DLP System


Standard security measure includes firewall, intrusion detection systems, plus antivirus software. These are mechanisms that guard computers against inside as well as outside attacks (learn more about the best cyber security policies and procedures). DLP systems use a firewall to limit the access of outsiders to the internal network. An intrusion detection system also finds hacking attempts by outsiders. Inside attacks can be detected by DLP software via antivirus scans to find Trojan horses installed on PCs, and “bugs” and viruses that enter a company’s network through email attachments.


DLP solutions prevent unauthorized attempts to copy or send sensitive data without authorization. Information that is classified as sensitive can be determined by using exact data matching, structured data fingerprinting, rule and regular expression matching, plus conceptual definitions and keywords.


DLP systems give corporations visibility into what’s going out of the building. They stop users sending out sensitive data with knowing that they are sending out sensitive data. With a DLP system in place, you can see who is sending out information and possibly stop the data breach before it can cause too much damage.


Cons of a DLP System


It sounds good to have a DLP system in place to prevent insider data breaches as well as outside hacks. However, if your company has a DLP software product it may cause a lax in security. You feel that everything is covered so why put in other security measures. In other words, you now experience a false sense of security.


Leak protection systems will do your company no good if your do not know where your data is. You need to take a data inventory of both classified and unclassified data. You must list out who the users are.


The DLP system is a business product, not a technology project. Once your company commits to the purchase of a DLP product, the hard work begins. Data needs to be classified, categorized and just discovered. You need to have a comprehensive view of the data flow in your IT departments. It is vital to understand what data is worth monitoring.


If your company does not take the time to define data protection strategies and develop core technical and business requirements, the DLP is an expensive tool that cannot be used. Learn and understand the pros and cons of each DLP solution. Not knowing what a product does will cause short and long-term technical integration challenges and add to your company’s overhead costs.


Stop trying to intercept malicious activity with active DLP solutions blocking business processes, rather monitor all user actions and prevent insider threats with Ekran System! Learn more about Ekran System monitoring solution.