I am looking to start a Data Loss Prevention program/project. Can you share any information/guidance on key dependencies prior to starting or that must be dealt with early on in the project/program that are keys to success?

Security & GRC Security Strategy & Roadmap

659 views1 Upvote7 Comments

Sort by:

Senior VP & CISO2 years ago

Dependencies to consider are culture and executive support. After that consider how you execute and track effectiveness. Don't boil the ocean. Start small - no more than 5 use cases

Chief Information Security Officer in Healthcare and Biotech2 years ago

I would suggest the following steps-

1. Try to address why your organization want the DLP solution, please go to the granular level.
2. What is your current Tech infra.
3. Security expectancy of the employees
4. ROI,
5. Measurement mechanism

Senior Director, Information Technology in Software2 years ago

Build a risk matrix of all your organization's data sources, information, and their importance. Use this inventory to assign and manage risk on data loss. Numerous products are available to support your project based on the risk matrix and data sources.

Principle Consultant in IT Services2 years ago

One of the first things you need to do it to understand what types of data does your company have, what is the importance of each type of data to the company, where is that data today, where should it be? Then, you can start with the highest importance and the data at the most risk to being exposed.

Global Chief Cybersecurity Strategist & CISO in Healthcare and Biotech2 years ago

Microsoft has a good walkthrough that isn't product dependent. Here's the link https://learn.microsoft.com/en-us/microsoft-365/compliance/dlp-overview-plan-for-dlp?view=o365-worldwide

Content you might like

Is security training at your organization personalized to the employees?

Yes47%

Somewhat36%

No16%

View Results

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

Do you manage AI and traditional IT infrastructure investments as separate portfolios (budgets, governance, decision criteria), or do you combine them? What are the benefits and drawbacks?

With AI adoption accelerating across enterprises, what do you view as the top information security challenge that leaders should address? How can CISOs, VPs and Director’s align governance, risk and security investments to enable AI innovation without creating new exposures?

Has your organization created a policy around acceptable use of ChatGPT for employees?

Yes45%

No39%

We are currently developing one14%

Not sure1%

View Results

I am looking to start a Data Loss Prevention program/project. Can you share any information/guidance on key dependencies prior to starting or that must be dealt with early on in the project/program that are keys to success?

Sort by:

Content you might like

Is security training at your organization personalized to the employees?

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

Do you manage AI and traditional IT infrastructure investments as separate portfolios (budgets, governance, decision criteria), or do you combine them? What are the benefits and drawbacks?

With AI adoption accelerating across enterprises, what do you view as the top information security challenge that leaders should address? How can CISOs, VPs and Director’s align governance, risk and security investments to enable AI innovation without creating new exposures?

Has your organization created a policy around acceptable use of ChatGPT for employees?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

Impact & Perceptions of A Privacy-First Digital Era

Challenges & Tools For A Privacy-First Internet Age

IT and Infosec Collaboration on Vulnerability Patching

Take Your Insights On-the-Go