Justifying the Cost of Data Protection Solutions

By Gil Sever  |  Posted 2010-03-30 Print this article Print

Justifying the cost of data protection solutions

Back to our original question: how does a company justify the cost of data protection solutions? In analyzing a regional hospital with 500 beds, 1,000 employees and 200 laptops, the hospital serves a population of 100,000 and has one laptop stolen every six months, on average.

If 1,000 patient records were located on the stolen laptop and the hospital had to notify each patient at a cost of $202 per record, the hospital would be better off paying $4,000 for the encryption of the laptops to avoid spending $202,000 on the disclosure.

As the workforce continues to rely and expand its use of mobile devices (that is, smartphones and laptops), opportunity for data leakage of sensitive information increases. Let's explore a real-life example: a business executive using his laptop from an airport lounge is communicating via Skype to his family and child's soccer team coach. He accidently attaches a customer list instead of the soccer team registration. An effective data protection system will warn and block the transfer.

This type of accident is fairly common. A recent report from the Ponemon Institute suggests that the most common breaches (64 percent) occur from company insiders. In its January 2009 study, they found more than 88 percent of all cases involved insider negligence.

A comprehensive data protection solution can lower these statistics in several ways. First, it can assist organizations in identifying sources of unsecured PHI and PI. For example, advanced discovery tools are capable of quickly locating sensitive data no matter where it resides on your system. Second, an effective data protection and leakage prevention system comes bundled with extensive, ready-to-use templates containing policies that will provide effective protection and encryption with little to no user intervention. The more automatic and transparent the system, the better.

Gil Sever is Founder and Chief Executive Officer of Safend. Prior to founding Safend, Gil held several senior-level positions within the security industry. Gil served as COO of ECTEL, a leading provider of monitoring solutions for IP, telephony and cellular networks. He also held the position of Israel Site Manager and VP of R&D for Aeroscout (formerly Bluesoft), a company focusing on WiFi and Bluetooth location finding. Prior to his positions in the private sector, Gil served 18 years in the Israeli Defense Forces where he managed strategic planning and large-scale R&D groups and projects in the areas of communications, communication protocols and data security. Gil has a Bachelor of Science degree in Electrical Engineering from the Technion (Israel Institute of Technology) and a Master of Science degree in Electrical Engineering from Tel Aviv University. He can be reached at Gil.Sever@safend.com.

Submit a Comment

Loading Comments...
Manage your Newsletters: Login   Register My Newsletters

Rocket Fuel