Data Loss Prevention – A Consultancy-led Approach for Nonprofits

Posted on 30 Nov 2018

Stricter General Data Protection Regulation (GDPR) guidelines and compliance around data protection pose a significant challenge and inhibit organisations and nonprofits from completely embracing cloud services. Controlling how data is used, stored, accessed and distributed is the only way to 100% guarantee compliance in this area, a near impossible task for any organisation. In the last 24 months however, advances in Data loss Prevention (DLP) tools now allow companies to protect sensitive information from falling into the wrong hands, a truly revolutionary solution to the question of data control.

DLP products work by monitoring occurrences that can lead to information leakages by using a defined set of rules and policies. Deployment strategies vary depending on the requirements of the business and can be broken down into three types:

Network DLP tools are integrated with data transit points on the network and scan all content passing through the ports and protocols of the company. Through reporting, organisations can see what data is being used, who is sending it and where it is going.
Suitable for Cloud Services, Storage DLP allows you to view confidential files stored and shared by your users and block and sensitive information to prevent leakage.
Endpoint DLP is recommended for endpoint devices that are used for transporting files like PC/Laptops, USB drives and mobile devices. The solution allows the organisation to monitor and prevent the output of sensitive data.

However, according to supportIT CEO Joe McGivern, caution is advised ‘Companies often throw themselves into compliance projects product-first and this is an ill-advised approach. Because Data Loss Prevention is policy-led; the success of the implementation rests on the following:

a) the knowledge of the type of data held

b) what constitutes sensitive data and

c) processes around data storage, distribution and control.

SupportIt strongly advise a consultancy process at the start to inform the technology solution you choose and guide the deployment in terms of what policies and rules need to be set up.’

SupportIT currently recommends Endpoint Protector by CoSoSys for Endpoint Protector requirements. ‘They have just finished a successful deployment of Endpoint Protector by CoSoSys with one our compliance clients and it was a great benchmark for this type of project; it deployed relatively easy and it is now integrated into their business processes. Most importantly, their client is now fully confident that the data being transferred out of the organisation does not contain confidential information.’ Joe also recommends that clients review existing technology tools within the business to see if they already have DLP functionality,

Office365 has a Data Loss Prevention module within the main console in the security settings. Rules and policies can be set up against data loss parameters and organisations just need to contact their Office365 provider to ensure they have the correct licensing requirements in place.’

Data Loss Prevention is the next generation in data protection; organisations who embrace the change will reap the benefits of more control and a higher level of compliance in this area.

For more information on SupportIT’s security offerings visit their website (www.supportIT.ie) or contact them here to book a detailed requirements session.

Become a Member of The Wheel

Providing practical supports and services, join our network of people powered change today.

Fresh Funding for Your Nonprofit

Subscribe to Fundingpoint, Ireland's largest database of funding opportunities.

Funding updates, sector news and training opportunities direct to your inbox.

Communications & Marketing

The Wheel's Summit 2024

29 May 2024

Dublin

This year's Summit will take you on a journey of reflection and exploration. We'll delve into the role of the sector in shaping the recent past, fostering innovation, and driving positive social change into the future.

Learn More

Fundraising

Creating a Funding Plan for Your Organisation (Webinar)

26 Apr 2024

This one-hour webinar will provide you with the practical tools to diversify your nonprofit's funding sources and put a more strategic fundraising approach in place.

Learn More

Governance

Strategic Planning: An Introduction (Online Training)

30 Apr 2024

It is best practice for all nonprofits to have a Strategic Plan...but where do you begin? This training, led by 2into3, covers some of the steps involved in strategic planning.

Learn More

Leadership

Developing a Staff Engagement Strategy (Online Workshop)

1 May 2024

This training will provide you with a ‘how-to’ engagement strategy through range of evidence-based and practical tools to co-create an improved workplace experience with your team.

Learn More

Communications & Marketing

The Future is Community: Local, EU, & General Election Campaigning

2 May 2024

The next 12 months will provide our sector with significant opportunities to influence politicians on the local, national and European stage. Join us on Thursday 2 May at 11am for this essential workshop.

Learn More

View all Training & Events