News Stay informed about the latest enterprise technology news and product updates.

Is DLP coming of age? Reconnex hopes to ease path

Firms have grappled with DLP, but after a hard experience, ING's Andre Gold tells why it may be ready for prime time. Meanwhile, Reconnex says its new product can ease the path.

Organizations testing the data loss prevention (DLP) waters typically ramp up with an extended learning period, creating, testing and refining rules to detect policy violations as they monitor traffic over an extended period. For some companies, this is often sufficient justification for DLP, as they test actual user behavior—usually inadvertent rather than malicious—against established policy and evaluate the effectiveness of their user awareness training programs.

The convergence of the need and the technology from a simplification perspective is coming together.
Andre Gold,
lead for IT Risk managementING

"We want to use DLP to evaluate the maturation of our risk program and how effective our user training/awareness program is," said Andre Gold, lead for IT Risk management at financial services provider ING.

The DLP market is evolving as focus shifts from the network to the endpoint, and consolidating, as Symantec (Vontu), McAfee (Onigma), Trend Micro (Provilla), EMC/RSA (Tablus) and Websense (PortAuthority) all made acquisitions to incorporate DLP technology into their product suites Among other vendors vying for market share are Denver, Colo.-based Vericept and Mountain View, Calif.-based Reconnex, which OEMs Provilla/Trend Micro to provide endpoint DLP to supplement its network solution.

Reconnex's newest product, Data Profiler, is something of a DLP starter kit. Leveraging the information indexing technology introduced last fall in Reconnex 7.0, the appliance allows enterprises to learn who is doing what with sensitive data without heavy investment upfront.

The DLP market:
Springing leaks: Getting smart about data loss prevention Companies are showing increased interest in data loss prevention (DLP) products, but they won't work well unless the business needs are understood and well defined.

Trend Micro acquires Provilla for data protection: Provilla's fingerprint-based endpoint data leak prevention technology will allow Trend Micro to offer customers more effective data protection.

Symantec acquires Vontu for DLP know-how: In a move that was widely expected, Symantec announced that it will acquire data loss prevention (DLP) vendor Vontu for $350 million.

"You can make an analogy to Google," said Faizel Lakhani, vice president of Reconnex products and marketing. "You never tell it in advance what you want to look for; it creates high performance index of data leaving the network."

Gold said that DLP can be an important tool as ING grows through acquisition and introduction of new products. "We don't want to take on residual risk"

The problem is that DLP has generally been regarded as expensive and difficult to implement, suggesting that the hype notwithstanding, the technology is not yet mature. That may be changing.

"The technology is getting more usable and less arduous to implement," said Gold. "The convergence of the need and the technology from a simplification perspective is coming together."

Gold said his first experience with DLP, at his previous company, Continental Airlines, proved too difficult to use, and he pulled the plug after a few weeks.

Reconnex says its Content Analytics Engine greatly simplifies policy creation. Users can query the indexed data and develop rules based on their findings, rather than create rules, test them, modify, test again, rinse and repeat. A Data Profiler appliance gets enterprises into DLP for about $20,000, rather than a six-figure DLP rollout.

Dig Deeper on Endpoint protection and client security

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.