 Organizations struggle with the risk of an employee or contractor accidentally or deliberately leaking sensitive corporate data via email, cloud storage, or unapproved sharing mechanism.
Risks of sensitive corporate data (for example, IP, legal records, financials) being leaked via personal cloud accounts, or external sharing
Limited visibility into user activity across sanctioned and unsanctioned applications
Need for real-time enforcement and auditability to address insider threats
Example Scenario
A finance employee is trying to upload a quarterly earnings report that contains sensitive information to his or her personal Dropbox account so he or she can work on it at home.
Violation Elements
The file being uploaded contains sensitive corporate data (internal financials)
The upload is to an unauthorized external cloud service (Dropbox)
The breach is an external cloud data exfiltration policy violation
Cloud-native Data Loss Prevention (DLP) monitors a user's activity in cloud applications, classifies and protects sensitive corporate data, and provides and enforces organization-specific policies that mitigate insider threats.
Prevented insider-driven data exfiltration
Enhanced control over sensitive data movement across cloud platforms
Improved incident visibility and regulatory readiness through detailed audit logs
By leveraging APIs with cloud applications to monitor sanctioned and unsanctioned activity.
Policies classify sensitive data such as financial records, legal documents, and intellectual property issues. When violations are detected DLP can either block the upload, ask the user to justify the action, and/or send alert notifications.
Incidents and audit trails provide investigators with visibility required by security and compliance teams.
