Salt Lake City, UT (PRESS RELEASE – May 31, 2009) — Burton Group, a research and consulting firm focused on in-depth analysis of enterprise information technologies, releases research report focusing on information centric security in the Enterprise and the state of data loss prevention technologies.
Data loss prevention (DLP) solutions are seeing success in the enterprise, due to new stringent compliance regulations in the US and Europe which violators are hit with stiff penalties for failure to comply with breach disclosure requirements. Information centric security is an important initiative to enterprises and DLP solutions help organizations protect both customer data and intellectual property more effectively.
Protecting such information is more than making sure sensitive data doesn’t flow outside the enterprise. Typically, DLP tools have been viewed as “data in motion” solutions, which prevent sensitive information from being sent outside the organization. However, more recently, DLP tools have begun offering “discovery” capabilities to locate and identify sensitive information in various repositories throughout the organization’s IT infrastructure. This capability improves the ability to protect “data at rest”, and helps organizations classify and label sensitive information accordingly.
Overall, DLP solutions are best suited to detecting–and in some cases preventing–the accidental release of information by insiders. Malicious attackers can still find many ways to defeat such solutions, although the products are ever-improving. Organizations must take care in evaluating the architectural approach of vendor solutions to ensure that tradeoffs among inline, out-of-band, and proxy-integrated deployments fit their needs. Such solutions will typically find a role as complementary pieces of the confidentiality-protection portfolio rather than a primary means of defense.
The complimentary Burton Group research report is titled, “Enhancing Compliance and Audit with Database Activity Monitoring,” and is accompanied by two on-demand webcasts by Doug Simmons, “DLP, Classification and Access Control” and Trent Henry, “DLP and the Rise of Information-Centric Security” to provide necessary research to enterprises on the state of DLP strategies.
“At a time when budgets are heavily scrutinized DLP projects continue to be funded. Security teams realize that they need better visibility into where information is going and where it ends up. We will be talking about these elements of DLP at Burton Group Catalyst Conference and assist attendees in understanding how end point protection also fits in, said Trent Henry, Burton Group analyst.”
According to Burton Group’s Vice President of Consulting Services Doug Simmons, “Data Loss Prevention (DLP) tools are becoming more attractive options for companies wanting to identify and protect sensitive information. Coupled with a sound strategy regarding access controls, information labeling and DLP, Burton Group incorporates its knowledge of all of these technologies and deployment best practices into its Information Protection and Risk Assessment consulting offerings, offering significant guidance in how to utilize process and technology to greatly improve the information security posture of an organization.”
About Burton Group
Burton Group (http://www.burtongroup.com/) helps technologists make smart enterprise architecture decisions in increasingly complex environments. Burton Group’s research and advisory services focus on technical analysis of infrastructure technologies relating to security, identity management, web services, service-oriented architecture, collaboration, content management, data centers, and network and telecom.