Thanks to Ed Snowden theft of enterprise data has almost become more of a concern than destructive hacking and DOS attacks. Here are 3 steps and products that can help:
- Prevention: Symantec’s Vontu program can be set to prevent an employee from moving data on to a portable storage device such as a flash drive. It can also detect data based on keywords leaving the system that shouldn’t.
- Detection: IBM’s InfoSphere Guardium Data Activity Monitor helps track who is accessing critical databases and flag unusual levels of activity.
- Response: After identifying a suspicious insider Guidance Software’s Encase can help conduct a forensics investigation to determine the extent of the theft and work reduce further damage.