In this white paper Clearswift address the question "Is it possible to build a leak free enterprise?" In addition to a Gartner research note on "Understand Data Leakage" we answer the question by describing 15 of the most common mistakes of web and email security and the associated risks and solutions.
Historically email and web security systems have been exclusively focused on addressing exter-nal threats such as viruses, spam and spyware. While dealing with external threats continues to still be mission critical, internal threats to enterprise data have become increasingly more important.Data leaks, whether by accident or intent, have become one of the biggest concerns for all Clearswift types of organization. Data is everywhere; stored on desktop and laptop computers, as well as in instant messages, blogs, social networking sites and online hosting services. As a result, com-www.clearswift.com panies are struggling to understand what data their employees are exchanging and transferring through the multiple communications channels available, and how best to manage the data so that it can be safeguarded and used only for the benefit of the organization.The threat of data loss is escalating as a result of the growing number of communication chan-nels employees access; from email to instant messaging, and chat and Web mail to peer-to-peer filing sharing. This number of channels, as well as stiffer government and industry data protec-tion requirements, makes data loss prevention (DLP) a critical security and data management priority.Security systems must monitor internal, as well as inbound and outbound communications. Comprehensive DLP solutions must also include full content filtering with advanced analysis of all the information sent and received via email, uploaded to file sharing sites, and exchanged via instant messenger. Clearswift's best-of-breed content filtering engine has the breadth, depth, power, granularity, control and role-based administration management to deliver such a system.In this issue of the Clearswift newsletter, we ask the question "Is it possible to build a Leak Free Enterprise?" In addition to a Gartner research note on "Understanding Data Leakage," we answer the question by describing 15 of the most common mistakes of web and email security, and the associated risks and solutions. It's critically important for organizations to understand how, when and why data loss happens. Only by understanding these vectors will they be able to establish more effective communications, and Internet usage policies and processes to control their data exchanges, and implement the appropriate risk mitigation technology to enforce stronger policies, processes and procedures.Sincerely,
Stephen MillardVP of Marketing
In this issue
.From the Gartner Files: Understanding Data Leakage 2.Is it possible to build a Leak Free Enterprise? 4.15 Common Mistakes in Email and Web Security 6.Data Leakage - The Stealth Threat to Business 11Featuring Research From .MIMEsweeper Data Leakage Solutions 12.About Clearswift 13Understanding Data Leakage
This research provides a simple model to understand the likelihood and severity of data leaks. It is intended to help security planners make recommendations on the need for and benefit of technology that controls data flows through network media and workstation interfaces.
Key Findings The deliberate and malicious theft of data by corporate insiders occurs . It is impossible to know your organization's rate of data leakage, but it less often than accidental loss, but the impact can be significant when is possible to recognize factors that significantly change the propensity embarrassing information about activities is provided to the press, or for unwanted data outflow to occur. trade secrets are sold to competitors. The deliberate theft of data by . Attempts to control leaks by blocking communication channels will outsiders is even more rare, but it isn't just the military that is subject to encourage employees to find and use other channels. espionage threats. National governments, competitors, disgruntled former . Content-aware security technology, which continues to grow in scope employees, political activists and reporters all have motivation to obtain and sophistication, is proving more reliable at preventing leakage sensitive corporate information and, on occasion, take deliberate steps than relying on employees to follow corporate policy. to obtain it. Such deliberate attempts to steal data are not only the most . If you suspect that sensitive data has been inadvertently made avail- costly form of data leakage incident, they are the most difficult to control.able outside of the organization, then it must be assumed that the ... [download for more]
