Why Visibility Into Enterprise Data Movement Is a Major Security Asset | eWeek

Eight Tips to Protecting Your Organization’s Sensitive Data From Theft

1088_ProtectData
Jan 8, 2018
3 minute read
eWeek content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More


Eight Tips to Protecting Your Organization’s Sensitive Data From Theft

Eight Tips to Protecting Your Organization's Sensitive Data From Theft

A combination of poor password hygiene and countless database/credential leaks has made it easy for cyber-criminals to get their hands on important enterprise data, such as usernames and passwords. When it comes to protecting serious data—such as intellectual property, software source code, CAD files and business models—data classification, paired with new-gen software and targeted policies, is one of the first steps for organizations to consider. Data classification can sometimes be the only way for corporations to prevent compromises and identify potential threats in real time. This eWEEK slide show uses industry information from Tim Bandos, senior cyber-security director at Digital Guardian, to offer tips on successfully protecting an organization’s sensitive data.


Heighten Visibility

Heighten Visibility

The majority of cyber-attacks have a common goal: data theft. Without having enhanced visibility into all data movement activity, organizations can leave themselves at risk regardless of what other layered security controls they may have in place.


Prevent Data Compromises

Prevent Data Compromises

Not a week goes by without some type of breach involving usernames and passwords appearing in the headlines. Although there are a variety of ways to compromise this information, organizations can close off a number of vectors with a combination of training and tech to stop the execution of password-dumping programs, exfiltration of sensitive data and the malicious links being clicked on by less tech-savvy end users.


Advertisement

Classify and Protect

Classify and Protect

Relying only on users to do the right thing is an insufficient strategy when it comes to stopping corporate information from getting into the hands of mischievous hackers. Organizations need to inventory and classify critical data, applying both measures for understanding both content and context, so they can spend less time worrying about somebody in accounting inadvertently exposing their engineering data.


Know Where Critical Data Resides

Know Where Critical Data Resides

Even before applying oversight and controls on data, the first step to any successful data protection program is understanding where your most sensitive data resides. Are confidential or sensitive files stored in databases, file shares, the cloud or all of the above? Knowing what data you have and where it lives provides the ability to target classification and policy enforcement.


Thwart Attackers

Thwart Attackers

Today’s cyber-threats are becoming increasingly more difficult to detect and prevent. Exfiltration methods have evolved as well. From the standpoint of monitoring and detection, a focus not only on user activity but also low-level system activity allows you to protect data from above and below and reduce attackers’ ability to evade protective mechanisms.


Put Policies in Place

Put Policies in Place

The amount of data movement activity that takes place each day in an organization can be enormous; however, having targeted policies and rules in place can help eliminate the noise in order for you to focus on what matters the most. Using a team of analysts (internally or outsourced) with “eyes on glass” is also highly recommended. That way you can identify any anomalous trends that develop over time.


Advertisement

Curb Insider Threats

Curb Insider Threats

There will be times when an employee leaves an organization to work for another company, and often it may be a direct competitor. Having a process in place to generate a report on all file activity for that user before and after their resignation notice provides major insight into what may be leaving with the employee. Adding these users to a group with more stringent controls will provide additional comfort in knowing your data is protected. 


Move Beyond Antivirus

Move Beyond Antivirus

Malware infections can wreak havoc on your data, regardless of whether the data is being stolen or not. Ransomware has become increasingly more destructive in nature and effective at infecting endpoints and encrypting files. Making sure that your protective controls evolve to meet new attack techniques—and not just new malware—is important.

eWeek Logo

eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site's focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.