Data Loss Prevention utilizes customizable data identifiers, templates, and policies
to define, monitor, and protect your company-specific sensitive data from intentional
or accidental loss.
Before you can monitor sensitive data for potential loss, you must be able to answer
the following questions:
-
What data needs protection from unauthorized users?
-
How does the sensitive information transmit through the network?
-
What users have permission to access or transmit the sensitive data?
-
What action should occur if a security violation occurs?
This important audit typically involves multiple departments and personnel familiar
with the sensitive information in your organization.
If you already defined your sensitive information and security policies, you can begin
to define templates and company policies in the Data Loss Prevention system.
Data Identifier Types
Digital assets are files and data that an organization must protect against unauthorized
transmission. You can define digital assets using the following data identifiers:
-
Expressions: Data that has a certain structure. For details, see Expressions.
-
Keyword Lists: A list of special words or phrases. For details, see Keyword Lists.
