Prateek Temkar, head of product management for Symantec’s information and network security business at Broadcom, said government agencies looking to protect data at rest and in transit should advance encryption, policy enforcement and continuous monitoring.
In an article published on Carahsoft.com, Temkar wrote that one of the measures agencies can take to safeguard cloud-based applications and data is creating a data loss prevention, or DLP, strategy.
Establishing a DLP Strategy
As an initial step, Temkar said agency leaders, app owners and legal and compliance teams should understand the risks associated with data loss and identify sensitive apps and data that require protection.
“Understand who has access to the data and how it flows—across email, endpoints, cloud apps and web traffic,” he noted.
He called on agencies to align their DLP strategy with regulatory requirements; identify those who will manage incidents and implement remediation measures in the event of a breach; and determine how they will coach employees.
“Finally, establish clear success metrics, which might include how many violations are detected, the rate of false positives, response times, and how the organization’s overall data protection posture improves over time,” he added.
Protecting Large Datasets Without Disrupting User Experience
In this piece, the Broadcom executive cited several technology platforms the company offers to safeguard large volumes of data from threat actors without impacting the user experience.
These include Broadcom’s content extraction library that speeds up DLP analysis, advanced fingerprinting tools used for scanning documents and scalable Exact Data Matching technology that facilitates “detection of sensitive content based on customer-defined datasets.”
To protect cloud apps and data, Temkar said the company partners with Microsoft, Salesforce, Google, ServiceNow, Box, Amazon Web Services and other cloud providers; integrates through application programming interfaces; and receives near-real-time notifications when content is modified or created.
“As users collaborate, we inspect data behind the scenes and automatically delete, unshare, or quarantine content based on policy without disrupting the user experience,” he added.