1 00:00:01,000 --> 00:00:02,900 Data loss prevention. 2 00:00:02,900 --> 00:00:05,450 Data loss prevention, or DLP systems, 3 00:00:05,450 --> 00:00:06,536 are designed to protect data 4 00:00:06,536 --> 00:00:09,410 by conducting content inspection of your data 5 00:00:09,410 --> 00:00:12,530 as it's being sent out of your organization's network. 6 00:00:12,530 --> 00:00:15,550 While data loss prevention is the most commonly used term, 7 00:00:15,550 --> 00:00:17,510 it's also referred to as ILP 8 00:00:17,510 --> 00:00:19,093 for Information Leak Prevention, 9 00:00:19,093 --> 00:00:22,610 or EPS, Extrusion Prevention Systems. 10 00:00:22,610 --> 00:00:24,450 Usually, these systems are installed 11 00:00:24,450 --> 00:00:27,730 as a network-based DLP or a Cloud-based DLP. 12 00:00:27,730 --> 00:00:31,030 For example, my company happens to use a Cloud-based DLP 13 00:00:31,030 --> 00:00:32,690 through Google's G Suite. 14 00:00:32,690 --> 00:00:34,160 Anytime one of our employees tries 15 00:00:34,160 --> 00:00:37,040 to send information outside of our own domain through email, 16 00:00:37,040 --> 00:00:39,120 that email is flagged and they have to verify 17 00:00:39,120 --> 00:00:40,850 that they understand the data is being sent 18 00:00:40,850 --> 00:00:42,770 outside of Dion Training. 19 00:00:42,770 --> 00:00:44,370 We have our DLP set to low 20 00:00:44,370 --> 00:00:46,220 because we communicate with so many people 21 00:00:46,220 --> 00:00:49,160 outside of our organization on a daily basis. 22 00:00:49,160 --> 00:00:52,430 But if we wanted to, we could force a higher security level 23 00:00:52,430 --> 00:00:54,770 and make each email being sent be checked 24 00:00:54,770 --> 00:00:56,720 and verified by a third employee 25 00:00:56,720 --> 00:00:57,870 before it was sent out 26 00:00:57,870 --> 00:00:59,740 to ensure that no confidential data 27 00:00:59,740 --> 00:01:02,040 was being left outside of our network. 28 00:01:02,040 --> 00:01:04,260 Now, there's also automated ways to do this, 29 00:01:04,260 --> 00:01:05,920 so you can flag particular emails 30 00:01:05,920 --> 00:01:08,310 based on keywords or a no-no list 31 00:01:08,310 --> 00:01:10,454 and prevent any files or emails from being transferred 32 00:01:10,454 --> 00:01:12,640 with those keywords inside of them. 33 00:01:12,640 --> 00:01:15,300 It all depends on how you want to configure your DLP. 34 00:01:15,300 --> 00:01:18,510 DLPs are used to ensure your data stays within your network, 35 00:01:18,510 --> 00:01:20,270 that it isn't leaked out to outsiders, 36 00:01:20,270 --> 00:01:21,230 and that the privacy 37 00:01:21,230 --> 00:01:24,120 of your confidential data remains private. 38 00:01:24,120 --> 00:01:25,490 That's the whole goal here. 39 00:01:25,490 --> 00:01:27,240 We want to make sure that data isn't being sent 40 00:01:27,240 --> 00:01:29,670 outside of your network over and over again 41 00:01:29,670 --> 00:01:32,760 and have this massive data exfiltration going on. 42 00:01:32,760 --> 00:01:35,677 DLP systems can help you with that.