External data threats have been big news in previous years, particularly in the politicized landscape of 2016 and 2017. It is important not to forget that some of the mammoth breaches last year were due to internal leaking of information, indicating there clearly aren’t enough data loss protection protocols in many companies. These, and other trends, are going to dominate the IT industry in 2018, so we’ve put together a list for you to prepare you to kick start the year prepared.
- Advanced analytics are available –it’s all how you use them
Data loss protection (DLP) plans are looking a lot more sophisticated than they did even a couple of years ago. The philosophy behind any DLP strategy has always been to think clearly about how the data is used, and therefore how it is breached or lost. This means that it’s agile enough to keep up with changes in technology, such as advances in user and entity behavior analytics that help companies better understand the areas where data is lost, and create tools to prevent this from happening.
- Prevention, not just protection
In the same vein, the shift in focus is definitely turning to, not just protect existing data, but also figure out ways to prevent loss in the future. Basic security, such as a firewall, is no longer cutting it. And, businesses are figuring out that they need to get their employees onboard to assist with preventing their own internal breaches. A well-communicated DLP plan and easy-to-implement processes will swiftly help companies in 2018.
- Industry compliance is here
Governments have been slow to catch up with the shifts in technology, particularly in creating regulations around them. However, they will be well and truly in existence in 2018, in that there is a push to crack down on the increasing challenge of data loss. Governments will, more and more, be placing the onus on companies to get their security up to an appropriate level. For instance, the General Data Protection Regulation, which comes into force next year, affects the way companies process the data of any European citizen – a huge move.
- CARTA as the core strategy
The Continuous Adaptive Risk and Trust Assessment Approach (CARTA) is a framework for approaching data security that is completely adaptive in its mindset. It came about because data security measures were not proving strong enough, simply because they were innovating measures for present problems and leaving it. The CARTA approach is all about review and iteration. Constantly looking at real-time IT statistics to inform good decision-making about where to next in terms of data protection.
- Adapting blockchain to protect data
Through blockchain, data is stored on an open server, so it is decentralized and distributed widely. Having no central location where data is stored makes it much harder for large chunks of the same data to be lost. The blockchain network would notice any change in the data storage on its open server and therefore make it even more difficult to carry out large data hacks.
The number of high profile data losses has been increasing in recent years, and not just through criminal activity. Because of this, governments are cracking down on companies to protect citizens from having vast amounts of their personal information get into the wrong hands. Additionally, of course, for companies carrying trade secrets and other intellectual property, the incentive to get data loss protection sorted is high. Luckily, 2018 is seeing data loss protection technology heading in the right direction. The mindset is changing towards ensuring that good data loss protection strategies are both preventative and adaptive.