Data security now can be said that the fate of a major event related to the company, if an enterprise's data security system fragile, organisation responsibilities will be blamed. So, organisation what measures should be developed to prevent data leaks happen? Successfully deploy an enterprise data leak prevention system (Data Loss Prevention), available from authentication, rights management, data classification management, data encryption, staff education and the establishment of management system of five steps to begin:
To strengthen identity authentication and rights management
To prevent leakage of corporate data to establish the first line of defense is to strengthen the identity of staff and outside personnel identification management, such as to identities for the life-cycle management mechanism. Specifically, this refers to the identity of every employee within an enterprise to be authenticated identification, such as different positions, different levels of identity authentication to do to re-examine, but also to prevent companies former employee to steal data through the original mandate.
Authentication refers to the adoption distinguish which users are authorized, and thereby to strengthen the security of the terminal log management and control. Enterprise customers only through the legal authentication, to enter the corporate internal network to access the enterprise's internal documents and core data information, thereby to achieve enterprise-level document security. In addition, the strict principle of the deployment of secure access to data is also very important (such as segregation of duties and least privilege, etc.), let the staff do their level, not ultra vires.
Second, the data access is also a key step. Data access is a distinction between authority and subdivision process. Because the IT technological change, businesses will face from time to time new types of stolen data means the enterprise staff have permission to make unlawful acts of data theft is more likely to be hard to prevent. Therefore, in addition to authentication through a way to prevent data leaks, the often have to authority to prevent data leaks through. For example, through access to data permissions settings, to ensure data reading and the use of legitimate and will not be illegal to steal, as well as each of the data and information to know what people have been read. In many data leakage incident, we often see is the business-to-data access permissions to mismanagement. For example, many staff and external consultants are often able to without too many restrictions to access to sensitive information and data.
|
