• Home

  • Technology

  • Reference Architecture for Data Loss Prevention in the Cloud
20
DO YOU MEASURE UP? A NEW REFERENCE ARCHITECTURE FOR DATA LOSS PREVENTION IN THE CLOUD Rajneesh Chopra, VP Product Management

Reference Architecture for Data Loss Prevention in the Cloud

Embed Size (px)

Citation preview

Page 1: Reference Architecture for Data Loss Prevention in the Cloud

DO YOU MEASURE UP? A NEW REFERENCE ARCHITECTURE FOR DATA LOSS PREVENTION IN THE CLOUD

Rajneesh Chopra, VP Product Management

Page 2: Reference Architecture for Data Loss Prevention in the Cloud

BIG PICTURE OBSERVATIONS

Page 3: Reference Architecture for Data Loss Prevention in the Cloud

Enterprise assets

© 2015 Netskope. All Rights Reserved.

PRIVATE DATA

CENTRES

PUBLICDATA

CENTRES

Move it, or lose it

Page 4: Reference Architecture for Data Loss Prevention in the Cloud

4© 2015 Netskope. All Rights Reserved.

Data access patterns have evolved – almost completely

Page 5: Reference Architecture for Data Loss Prevention in the Cloud

What are people doing in these apps?

17.9%

OF ALL FILES IN ENTERPRISE-SANCTIONED CLOUD APPS CONSTITUTE A DATA POLICY VIOLATION.

22.2%

OF THOSE ARE SHARED PUBLICLY.

Source: Netskope Cloud Report, Summer 2015

Page 6: Reference Architecture for Data Loss Prevention in the Cloud

6© 2015 Netskope. All Rights Reserved.

DLP solutions have been tuned over and over again

Page 7: Reference Architecture for Data Loss Prevention in the Cloud

7© 2015 Netskope. All Rights Reserved.

DLP inspection remains firmly on-premises

Page 8: Reference Architecture for Data Loss Prevention in the Cloud

8© 2015 Netskope. All Rights Reserved.

DLP for the cloud: It’s here and it’s ready for prime time

Page 9: Reference Architecture for Data Loss Prevention in the Cloud

9© 2015 Netskope. All Rights Reserved.

How are vendors helping you make sense of all this…

Page 10: Reference Architecture for Data Loss Prevention in the Cloud

WE NEED A NEW WAY OF THINKING

We need a newway of thinking

about DLP

Page 11: Reference Architecture for Data Loss Prevention in the Cloud

11© 2015 Netskope. All Rights Reserved.

But first… let’s establish some goals

Page 12: Reference Architecture for Data Loss Prevention in the Cloud

12© 2015 Netskope. All Rights Reserved.

DON’T BACKHAUL ALL CLOUD TRAFFIC!

Page 13: Reference Architecture for Data Loss Prevention in the Cloud

13© 2015 Netskope. All Rights Reserved.

PROTECT PREVIOUS INVESTMENTS!

Page 14: Reference Architecture for Data Loss Prevention in the Cloud

14© 2015 Netskope. All Rights Reserved.

DON’T RE-INVENT INCIDENT RESPONSE

Page 15: Reference Architecture for Data Loss Prevention in the Cloud

INTRODUCING A REFERENCE ARCHITECTURE FOR CLOUD DLP

Page 16: Reference Architecture for Data Loss Prevention in the Cloud

16© 2015 Netskope. All Rights Reserved.

6 KEY ARCHITECTURAL TENETS

Page 17: Reference Architecture for Data Loss Prevention in the Cloud

17© 2015 Netskope. All Rights Reserved.

1. Deploy a cloud access security broker (CASB) to find sensitive content in cloud apps.

2. Derive context from cloud app transactions.

3. Perform early classification of content in the cloud.

4. Quarantine and redirect potentially sensitive content to on-premises DLP solution.

5. Make users part of the solution.

6. Enforce policies and initiate incident response.

Page 18: Reference Architecture for Data Loss Prevention in the Cloud

18© 2015 Netskope. All Rights Reserved.

Page 19: Reference Architecture for Data Loss Prevention in the Cloud

19© 2015 Netskope. All Rights Reserved.

Quarantine Folder

Quarantine Workflow

On-prem DLP

Netskope MgmtPlane

Netskope DLP Engine

Rest API

Permit or Block

User

1

QuarantineAlert 23

4

5

6

7

Emailuser outcome and next steps

File upload attempted

File sent to Quarantine Folder

File upload denied

File pulled by DLP

for secondary inspection

User notified of quarantine

QuarantineApprover

Email toQuarantine

Approver

8Install DLP

bypass rule if “Permit”

Page 20: Reference Architecture for Data Loss Prevention in the Cloud

THANK YOU


Loss prevention and reduction

Loss prevention and reduction

Healthcare
LOSS PREVENTION - NAB

LOSS PREVENTION - NAB

Documents
Loss Prevention - events.nrf.com

Loss Prevention - events.nrf.com

Documents
Wheel Loss Prevention

Wheel Loss Prevention

Documents
Loss Prevention Certification

Loss Prevention Certification

Documents
Loss Prevention Workshop

Loss Prevention Workshop

Documents
Data loss prevention

Data loss prevention

Documents
Loss Prevention Services

Loss Prevention Services

Documents
Ironport Data Loss Prevention

Ironport Data Loss Prevention

Technology
Data Loss Prevention Partner Training - Carahsoft€¦ · Data Loss Prevention Partner Training ... • Data Loss Prevention Solution Overview Overview *Data is not necessarily Information

Data Loss Prevention Partner Training - Carahsoft€¦ · Data Loss Prevention Partner Training ... • Data Loss Prevention Solution Overview Overview *Data is not necessarily Information

Documents
Loss Prevention For the College Bookstore. Presenter : Chet A. Cohen Corporate Loss Prevention Manager, Associated Students UCLA Corporate Loss Prevention

Loss Prevention For the College Bookstore. Presenter : Chet A. Cohen Corporate Loss Prevention Manager, Associated Students UCLA Corporate Loss Prevention

Documents
Workers’ Compensation & Loss Prevention€™ Compensation & Loss Prevention ... Loss Prevention Program improves worker productivity and are proven to ... Next Steps Consolidate

Workers’ Compensation & Loss Prevention€™ Compensation & Loss Prevention ... Loss Prevention Program improves worker productivity and are proven to ... Next Steps Consolidate

Documents
EY Data Loss Prevention

EY Data Loss Prevention

Documents
Loss Prevention slides.pdf

Loss Prevention slides.pdf

Documents
Loss Prevention

Loss Prevention

Documents
LOSS PREVENTION PROGRAM

LOSS PREVENTION PROGRAM

Documents
Napeo Loss Prevention Presentation

Napeo Loss Prevention Presentation

Business
The role of IT Architecture in Active Loss Prevention

The role of IT Architecture in Active Loss Prevention

Documents
LOSS PREVENTION MANUAL - NAU · 4 1.0 Introduction 2.0 Loss Prevention Policy Statement 3.0 Loss Prevention Coordinator (AAC Title 2, Chap. 10 §206(B)) 4.0 Loss Prevention Committee

LOSS PREVENTION MANUAL - NAU · 4 1.0 Introduction 2.0 Loss Prevention Policy Statement 3.0 Loss Prevention Coordinator (AAC Title 2, Chap. 10 §206(B)) 4.0 Loss Prevention Committee

Documents
Loss Prevention PDF

Loss Prevention PDF

Documents
Loss Prevention Paradoxes Loss Prevention

Loss Prevention Paradoxes Loss Prevention

Documents
Loss prevention and security

Loss prevention and security

Business
Directors and Officers Liability Loss Prevention - · PDF fileDirectors and Officers Liability Loss Prevention ... DIRECTORS AND OFFICERS LIABILITY LOSS PREVENTION ... or loss control,

Directors and Officers Liability Loss Prevention - · PDF fileDirectors and Officers Liability Loss Prevention ... DIRECTORS AND OFFICERS LIABILITY LOSS PREVENTION ... or loss control,

Documents
Loss Prevention Presentation

Loss Prevention Presentation

Documents
Loss Prevention Standard

Loss Prevention Standard

Documents
Safety & Loss Prevention

Safety & Loss Prevention

Documents
LOSS PREVENTION - Scannabar

LOSS PREVENTION - Scannabar

Documents
TODAY’S LOSS PREVENTION TODAY’S LOSS PREVENTION Thomas Mohr Loss Prevention Manager Loss Prevention Manager Family Dollar Distribution Center Front Royal,

TODAY’S LOSS PREVENTION TODAY’S LOSS PREVENTION Thomas Mohr Loss Prevention Manager Loss Prevention Manager Family Dollar Distribution Center Front Royal,

Documents
HEARING LOSS PREVENTION

HEARING LOSS PREVENTION

Documents
Hair Loss Prevention

Hair Loss Prevention

Documents