DLP and CASB failures a wake up call to reassess your Insider Risk strategy
Organizations are failing to protect themselves from Insider Risk. Despite a massive investment in tools and programs that categorize and block data with tools like Data Loss Prevention (DLP) and Cloud Access Security Broker (CASB), organizations around the world continue to be hit with data breach events.
News of the latest high profile insider breaches is prominently reported on across the media including:
The evidence is clear. Code42’s 2021 Data Exposure Report on Insider Risk, Volume II found that more than three quarters of respondents said they suffered a data breach over the past year. What’s shocking is they had a DLP solution in place at the time of the event. This is up from 69% in our 2019 Data Exposure Report. According to the latest report, nearly six in 10 security leaders expect insider risk to increase significantly in 2021 while also saying their employees are more likely to leak data today than they were pre-COVID. Few, it seems, have faith that existing DLP or CASB solutions are able to meet today’s challenges managing and mitigating Insider Risk.
A more nuanced Insider Risk strategy is needed
Given what’s happened over the past 12 months, it’s easy to see why Insider Risk has risen substantially. Remote and hybrid work demand technologies that make it easy to collaborate and move files across the organization. This enables an agile business model that allows the organization to respond quickly to market changes, work from anywhere, and drive innovation, but the openness also exponentially increases Insider Risk to data leak, loss, and theft.
Security leaders across the industry know they need a more nuanced strategy than simply looking at good versus bad actions, and they know their teams will never actually reduce risk while living in the forced “maintenance mode” of these policy-based tools. The world has changed, and data security needs to evolve to keep up.
Consider these insights from the report:
- More than three-quarters of organizations have suffered a data breach despite having a DLP solution in place.
- More than half of organizations continue to use a network DLP solution to mitigate insider risk despite the acknowledgement that the network perimeter has dissolved.
- More than half of security professionals continue to rely on DLP and CASB solutions that do not provide visibility into untrusted destinations, such as personal email or private clouds.
The Code42 2021 Data Exposure Report on Insider Risk, Volume II highlights the frustrations security teams face with the industry’s inability to meet today’s growing Insider Risk to data. It should serve as a wakeup call for vendors and organizations to create a more effective, proactive strategy—one that allows organizations to recognize the extent of the problem while giving security teams a clear signal of the riskiest activity and a streamlined workflow to address it. This type of approach allows security teams to mitigate file exposure and exfiltration risks without disrupting employee productivity and collaboration.
It’s time to do a better job of protecting the organization’s most important data from Insider Risk. Download the Code42 2021 Data Exposure Report on Insider Risk, Volume II to learn more about how to rethink your data protection strategy.