Too Many Data-Loss Prevention Tools Become Shelfware, Says Analyst

The good, the bad and the ugly of data-loss prevention tools and technologies got a solid once over from Gartner analyst Eric Ouellet, who spared no punches during his presentation on the topic during the first day of Gartner's Security & Risk Management Summit.

By Ellen Messmer
Tue, June 22, 2010

Network World — NATIONAL HARBOR, MD. -- The good, the bad and the ugly of data-loss prevention tools and technologies got a solid once over from Gartner (IT) analyst Eric Ouellet, who spared no punches during his presentation on the topic during the first day of Gartner's Security & Risk Management Summit.

Data-loss prevention comes of age

DLP content-filtering, where the vendor options typically include a network-based appliance, host-based software and a discovery tool, in many cases remains a high-priced technology that organizations often spend a lot for in components that don't even get fully deployed over a two- to three-year timeframe, Ouellet said.

Unmasking DLP: the Data Security Survival Guide

And although the corporate move to DLP is typically sponsored by the risk or financial office, the IT department drives the technology rollout but without engaging the business divisions enough. However, strong participation from divisions such as human resources and finance is needed in order to effectively set up policies and interact with employees whose data-sharing behavior is being monitored by the DLP hardware or software in use.

"DLP is an IT technology but it's not managing IT data, it's managing compliance," Ouellet said. DLP may focus on sensitive customer information such as payment-card data or healthcare records from being transmitted in an unauthorized way, such as without encryption, or DLP may try to monitor for loss of important intellectual property.

"Organizations underestimate the need for the involvement of non-IT business units," Ouellet said. In many instances, it's not really appropriate for IT people to be in the middle of looking at what DLP systems can report about data compliance issues, but the practical use of DLP monitoring sometimes doesn't make it into the hands of the right business people, he noted.While vendor DLP products are improving in terms of the number of false positives they generate in comparison to two years ago, "pricing is still at a premium," Ouellet said.

This is especially true when it comes to the DLP network appliance and discovery tools in the more sophisticated systems he categorized as "Enterprise DLP," in which DLP software agents, network and discovery tools are used throughout the enterprise for a comprehensive review from a common dashboard.

Acquisitions are based on a lot of detailed and sometimes confusing component costs that quickly add up to a high bill, with consulting and professional services ranging from $10,000 to $250,000 and three-day training costing $2,500 to $3,500 per student, he said. Maintenance costs might typically be 18% to 25% of costs, so multi-million acquisitions costs are easily possible for DLP. Ouellet said he even reviewed an acquisition a client was considering that listed an eye-popping 28% maintenance fee.

1 2 next page »

Originally published on www.networkworld.com. Click here to read the original story.

You are here: Technology Topics » Security » News

Most Recent Security Stories

White Papers »

Identity Governance: The Business Imperatives

This white paper describes the business challenges and opportunities that are driving interest in Identity Governance while discussing considerations your organization should make to help achieve project success.

CA Technology Brief: CA Point of View: Content Aware Identity & Access Management

This paper explores the concept of content-aware IAM, describes the integrated architecture for this new approach, and highlights the benefits that this approach provides.

Aberdeen Analyst Insight: Does Your Enterprise Have a Dropbox Problem?

Without policies, awareness and supported alternatives for sharing files securely, end-users will often overlook security and compliance in favor of getting the job done. Read this whitepaper to determine if your enterprise has a "Dropbox Problem" and ways successful organizations address this problem.

Google: Security for Google Apps Messaging & Collaboration

Content provided by Google

Find out about how Google creates a security-based platform for Google Apps, covering topics like information security, physical security, and operational security.

Architecting the Security of the Next-Generation Data Center

This document is aimed at those looking at data center builds, upgrades, or consolidation. It provides an introduction to some of the new security challenges of such environments and provides recommendations for implementing security in next-generation data centers.

Who Owns Security in the Data Center?

This editorial brief addresses the disconnect between security and operations teams and the need for IT operations teams to address security and risk management.

Webcasts »

Gartner Next Generation Network IPS Webcast

Learn how Gartner's criteria for next generation IPS helps organizations achieve effective threat prevention despite changes in network communications, new applications, and changes in the threat landscape.

McAfee Continuous Compliance

3 minute Flash video - overview of the need for and value of Configuration Control.

Taming the Wild West: How to build a strong cloud security strategy

Cloud deployments are playing a critical role in propelling innovation for many companies. At the same time security has become the #1 one of the top concerns for IT and business leaders as they migrate into the cloud. In this webinar, learn from Accenture discusses how to recast the cloud as a "fresh chance to rethink your approach to security."

Customer Spotlight: How IPC The Hospitalist Company Implemented Oracle on VMware

Have you been looking to hear about customer's experiences with the new VMware vCenter Site Recovery Manager product? View this webcast to learn about VMware customer, Navicure, and their experiences testing and evaluating the recovery manager, their progress in implementing it in their environment and their advice other customers considering using vCenter.

Quantifying the Business Value of VMware View - Webcast

Many enterprises have discovered that the use of virtualization to support desktop workloads creates a range of significant benefits. These benefits include price efficiencies, improved IT management and greater agility and choice for end users.

This VMware sponsored webcast with IDC will provide both quantitative measurement of the business value -- defined as the expected ROI -- and qualitative analysis associated with the use of VMware View™. IDC will also provide an analysis of the View Composer and ThinApp™ features of VMware View, including the business value of these solutions and an overview of how they work.

Attend this webcast to learn about:
- Challenges and barriers that might impede the adoption of desktop virtualization
- Navigating roadblocks to facilitate a strategic implementation
- Optimizing qualitative and quantitative benefits to IT and your business

Deliver Private Cloud Database as a Service with VMware vFabric Data Director

VMware recently announced VMware vFabric™ Data Director, a new database deployment and operations platform that enables enterprise IT organizations to offer database as a private cloud service. Built on top of VMware vSphere 5, vFabric Data Director enables IT organizations to ontrol database sprawl through automation and consistent policy enforcement and accelerate application development cycles with self-service database management. Attend this webcast to learn how vFabric Data Director can help you build database-as-a-service in your datacenter.

Newsletter Sign-Up »

Receive the latest news test, reviews and trends on your favorite technology topics

Choose a newsletter