Get Adobe Flash player

Security & Compliance

Print | Email
Share

Your information is at greater risk than ever as evidenced by recent high-profile breaches that involve the theft of proprietary data from large organizations. Many security teams are focused on preventing targeted attacks, but keeping the bad guys out is only one part of the strategy. Malicious and well-meaning insiders can also potentially steal and leak valuable intellectual property. Driving these security initiatives is compliancy. Are you protecting your data? Are you making sure you are compliant? What can you do to prevent insiders from causing a breach?

Today, companies are struggling to identify and protect sensitive information within their organizations. Securing information such as personally identifiable or personal health information of employees and customers, intellectual property and trade secrets, marketing plans and legal documents, is a top priority for them. CTH Technologies' Security & Compliance solution addresses these two areas by providing you an agent based software solution that is installed on the desktop to prevent sensitive data from leaving and help you achieve compliance in the different rules.

Data Loss Prevention

The need to protect key information assets in a wide open online environment has given rise to the increasing demand for data loss prevention (DLP) solutions.

What is Data Loss Prevention? DLP addresses three fundamental questions

  1. Where is my confidential information being held? - This includes the data's lifecycle or journey and where the data is being stored (third parties, off-shoring, outsourcing).
  2. How is the data being used? - This should include why, when, what and who accessed it.
  3. How can we best prevent data from being lost? - What are the risks and thus what possible mitigating actions could be deployed to avoid loss, theft or compromise? At the heart of Data Loss Prevention is understanding what the value of the data is to the organization, how everyone is responsivle for ensuring its 'health and safety' - in essence, this can only be achieved through a comprehensive understanding of the risk (risk analysis) facing your data, and educting the people who handle or access it, i.e. mandatory training for all people who come into contact with it. This may appear like a basic concept, but it is one that is often neglected - as with treating any symptoms, compromised, manipulated or stolen is a critical part of the process of understanding DLP and winning the 'hearts and mind's of every employee, and anyone who comes in contact with the data.

PCI

GLBA

HIPAA

SOX

Red Flags

Security & Compliance Resources

[Compliance Laws]
 Payment Card Industry (PCI)
 Gramm Leach Bliley Act (GLBA)
 Health Insurance Portability and Accountability Act (HIPAA)
 Red Flag Rule
 Sarbanes Oxley (SOX)

 

[Industries]
 Financial
 Education
 Healthcare
 Manufacturing
 Public Sector
 Retail
 Utilities

Privacy Policy | Contact Us

Copyright © 2011. All Rights Reserved.