Why data loss prevention (DLP) matters in a zero-trust world
Venture Beat
One weakness of legacy DLP is interestingly the greatest strength the enterprises need today: Treating every machine and human identity as a new security perimeter. Forrester and Code42 collaborated on a report that found enterprises are frustrated with DLP and cloud access security broker (CASB) solutions which are not fully supporting their security requirements â including zero trust. DLP and CASB are often originally acquired to control usersâ access to data and meet compliance requirements.

Unfortunately, DLP systems have earned a reputation for being too difficult to implement and maintain and not offering additional security across the tech stack. They have also earned a reputation for triggering false alarms. The chronic labor shortage that is hitting the cybersecurity sector also makes finding experts with legacy DLP expertise a challenge.

During CrowdStrikeâs Fal.Con 2022 conference, the cybersecurity companyâs customers detailed to VentureBeat their experiences with DLP and their plans for it in the future. Nearly every customer mentioned that DLPâs weaknesses â beginning with its reliance on a complex set of pre-configured rules and behavioral parameters â are challenging to work with.

DLP must continue to evolve by designing zero-trust network access (ZTNA) into the platformâs core, enabling least privileged access to the data, device and identity level. Leading vendors in this area include Cloudflare DLP, SecureCircle, Microsoft, NetSkope, Spirion, Palo Alto Networks, Polar Security, Symantec by Broadcom, and others.

CrowdStrike claims it acquired SecureCircle to provide its customers with an alternative to legacy DLP and to deliver zero-trust security across every endpoint, capitalizing on the global Falcon endpoint installed base.
Link: http://www.allusanewshub.com/2022/10/10/why-data-loss-prevention-dlp-matters-in-a-zero-trust-world/