Resources for Health Insurance Portability and Accountability Act (HIPAA)

Data Leaks a People Problem, Not a Technical One

www.cio.in

Data-leak prevention lets organizations monitor for unauthorized transmission and can be put to surprising uses. And those with DLP experience say the biggest challenges lie with people and their online habits rather than technology.


DLP technology, at the gateway or host level, is not difficult or time-consuming to deploy, according to IT managers gaining experience with it in business, government and school systems. Rather, DLP is a game-changer that creates an atmosphere where network users may be caught committing various types of data violations, inadvertent or not. The IT department, though first to know, can't end up as the enforcement arm, experts say. Management of it comes from human resources and the legal department, and they have to be deeply involved to play the DLP police role. It all starts with creating the DLP policy.

"One of the lessons learned is get your policy in place first," says Charles Thompson, chief information officer for the city of Phoenix, which is installing the Fidelis Security Systems' DLP called XPS to prevent unauthorized transmissions related to city business.

View the Resource

Share or bookmarklet this web page at: