145 Data Loss Prevention Criteria for Multi-purpose Projects

What is involved in Data Loss Prevention

Find out what the related areas are that Data Loss Prevention connects with, associates with, correlates with or affects, and which require thought, deliberation, analysis, review and discussion. This unique checklist stands out in a sense that it is not per-se designed to give answers, but to engage the reader and lay out a Data Loss Prevention thinking-frame.

How far is your company on its Data Loss Prevention journey?

Take this short survey to gauge your organization’s progress toward Data Loss Prevention leadership. Learn your strongest and weakest areas, and what you can do now to create a strategy that delivers results.

To address the criteria in this checklist for your organization, extensive selected resources are provided for sources of further research and information.

Start the Checklist

Below you will find a quick checklist designed to help you think about which Data Loss Prevention related domains to cover and 145 essential critical questions to check off in that domain.

The following domains are covered:

Data Loss Prevention, Data loss prevention software, Antivirus software, Bayesian analysis, Browser security, Chinese wall, Client–server model, Comparison of computer viruses, Computer and network surveillance, Computer virus, Computer worm, Data retention, Defensive computing, False positives and false negatives, Form grabbing, Information security, Instant Messaging, Intellectual property, Internet bot, Internet café, Internet security, Intrusion detection system, Intrusion prevention system, Keystroke logging, Linux malware, Machine learning, Macro virus, Metadata removal tool, Mobile malware, Mobile security, Network security, Palm OS viruses, Privacy-invasive software, Regular expression, Rogue security software, Timeline of computer viruses and worms, Trojan horse, User activity monitoring, Web threat:

Data Loss Prevention Critical Criteria:

Troubleshoot Data Loss Prevention decisions and be persistent.

– How is the complex digital supply chain -where multiple downstream providers provide services for each other and data residence and transmission points are increasingly obscure -being dealt with from an audit perspective?

– Does the tool we use have the ability to integrate with Enterprise Active Directory Servers to determine users and build user, role, and business unit policies?

– Does the tool we use allow the ability to assign different weightings to specific words, wild card operators and case sensitivity/insensitivity indicators?

– Does the tool we use provide the ability to delegate role-based user administration to Agency Administrator by domain?

– Is website access and maintenance information accessible by the ED and at least one other person (e.g., Board Chair)?

– Are there audit areas that are candidates for elimination or reduced audit coverage to accommodate strained budgets?

– Does the tool we use have a quarantine that includes the ability to redact and/or highlight sensitive information?

– Does the tool we use provide the ability to print an easy-to-read policy summary for audit purposes?

– Do employees use laptops or home computers to work on agency business outside of the office?

– Does the tool we use support the ability to configure user content management alerts?

– Where does your sensitive data reside, both internally and with third parties?

– Do handovers take place in a quiet room off the main ENT (ear nose throat) ?

– How will the setup of endpoints with the DLP manager occur?

– Do all computers have up-to-date antivirus protection?

– Do we have Data Protection Service Level Agreements?

– Do you store a copy of backed up data off-site?

– Do we have designated Privacy Officers?

– Are Incident response plans documented?

– Are all computers password protected?

– What is your most important data?

Data loss prevention software Critical Criteria:

Ventilate your thoughts about Data loss prevention software goals and define what our big hairy audacious Data loss prevention software goal is.

– Are there any disadvantages to implementing Data Loss Prevention? There might be some that are less obvious?

– What is the source of the strategies for Data Loss Prevention strengthening and reform?

– Is Data Loss Prevention Realistic, or are you setting yourself up for failure?

Antivirus software Critical Criteria:

Conceptualize Antivirus software tasks and adopt an insight outlook.

– Is maximizing Data Loss Prevention protection the same as minimizing Data Loss Prevention loss?

– Are accountability and ownership for Data Loss Prevention clearly defined?

Bayesian analysis Critical Criteria:

Own Bayesian analysis tactics and catalog what business benefits will Bayesian analysis goals deliver if achieved.

– What role does communication play in the success or failure of a Data Loss Prevention project?

– Risk factors: what are the characteristics of Data Loss Prevention that make it risky?

– Do you monitor the effectiveness of your Data Loss Prevention activities?

Browser security Critical Criteria:

Be clear about Browser security tasks and use obstacles to break out of ruts.

– How can we incorporate support to ensure safe and effective use of Data Loss Prevention into the services that we provide?

– Think about the functions involved in your Data Loss Prevention project. what processes flow from these functions?

– Do the Data Loss Prevention decisions we make today help people and the planet tomorrow?

Chinese wall Critical Criteria:

Map Chinese wall risks and report on developing an effective Chinese wall strategy.

– Think about the kind of project structure that would be appropriate for your Data Loss Prevention project. should it be formal and complex, or can it be less formal and relatively simple?

– What will drive Data Loss Prevention change?

– What is Effective Data Loss Prevention?

Client–server model Critical Criteria:

Study Client–server model governance and ask what if.

– How do your measurements capture actionable Data Loss Prevention information for use in exceeding your customers expectations and securing your customers engagement?

– What are the record-keeping requirements of Data Loss Prevention activities?

Comparison of computer viruses Critical Criteria:

Air ideas re Comparison of computer viruses governance and separate what are the business goals Comparison of computer viruses is aiming to achieve.

– How likely is the current Data Loss Prevention plan to come in on schedule or on budget?

– Are we making progress? and are we making progress as Data Loss Prevention leaders?

Computer and network surveillance Critical Criteria:

Exchange ideas about Computer and network surveillance tasks and overcome Computer and network surveillance skills and management ineffectiveness.

– How do we measure improved Data Loss Prevention service perception, and satisfaction?

– How do we know that any Data Loss Prevention analysis is complete and comprehensive?

Computer virus Critical Criteria:

Systematize Computer virus leadership and find the essential reading for Computer virus researchers.

– What are the key elements of your Data Loss Prevention performance improvement system, including your evaluation, organizational learning, and innovation processes?

– Meeting the challenge: are missed Data Loss Prevention opportunities costing us money?

– How will you measure your Data Loss Prevention effectiveness?

Computer worm Critical Criteria:

Powwow over Computer worm management and define what do we need to start doing with Computer worm.

– What sources do you use to gather information for a Data Loss Prevention study?

– Are there recognized Data Loss Prevention problems?

– Is the scope of Data Loss Prevention defined?

Data retention Critical Criteria:

Investigate Data retention governance and forecast involvement of future Data retention projects in development.

– Traditional data protection principles include fair and lawful data processing; data collection for specified, explicit, and legitimate purposes; accurate and kept up-to-date data; data retention for no longer than necessary. Are additional principles and requirements necessary for IoT applications?

– What management system can we use to leverage the Data Loss Prevention experience, ideas, and concerns of the people closest to the work to be done?

– How can skill-level changes improve Data Loss Prevention?

– What about Data Loss Prevention Analysis of results?

Defensive computing Critical Criteria:

Pilot Defensive computing results and adjust implementation of Defensive computing.

– What other jobs or tasks affect the performance of the steps in the Data Loss Prevention process?

– When a Data Loss Prevention manager recognizes a problem, what options are available?

False positives and false negatives Critical Criteria:

Prioritize False positives and false negatives planning and remodel and develop an effective False positives and false negatives strategy.

– What is the purpose of Data Loss Prevention in relation to the mission?

Form grabbing Critical Criteria:

Trace Form grabbing issues and probe using an integrated framework to make sure Form grabbing is getting what it needs.

– What new services of functionality will be implemented next with Data Loss Prevention ?

Information security Critical Criteria:

Accelerate Information security risks and create Information security explanations for all managers.

– Has the organization established an Identity and Access Management program that is consistent with requirements, policy, and applicable guidelines and which identifies users and network devices?

– Is the software and application development process based on an industry best practice and is information security included throughout the software development life cycle (sdlc) process?

– Do suitable policies for the information security exist for all critical assets of the value added chain (indication of completeness of policies, Ico )?

– If a survey was done with asking organizations; Is there a line between your information technology department and your information security department?

– Do we have an official information security architecture, based on our Risk Management analysis and information security strategy?

– Do suitable policies for the information security exist for all critical assets of the value added chain (degree of completeness)?

– Are information security roles and responsibilities coordinated and aligned with internal roles and external partners?

– Does your company have a current information security policy that has been approved by executive management?

– Are we requesting exemption from or modification to established information security policies or standards?

– Is there an up-to-date information security awareness and training program in place for all system users?

– Have the roles and responsibilities for information security been clearly defined within the company?

– Does your organization have a chief information security officer (ciso or equivalent title)?

– Are information security policies reviewed at least once a year and updated as needed?

– Ensure that the information security procedures support the business requirements?

– Does mgmt establish roles and responsibilities for information security?

– : Return of Information Security Investment, Are you spending enough?

– Conform to the identified information security requirements?

Instant Messaging Critical Criteria:

Communicate about Instant Messaging visions and find the ideas you already have.

– Are you looking for a vendor to provide instant messaging built into the solution so users of the system can instant message each other?

– Can we do Data Loss Prevention without complex (expensive) analysis?

Intellectual property Critical Criteria:

Deduce Intellectual property projects and describe the risks of Intellectual property sustainability.

– What will be the policies for data sharing and public access (including provisions for protection of privacy, confidentiality, security, intellectual property rights and other rights as appropriate)?

– How do you determine the key elements that affect Data Loss Prevention workforce satisfaction? how are these elements determined for different workforce groups and segments?

– During the last 3 years, have you received a complaint or an injunction arising out of intellectual property infringement, content or advertising?

– Is legal review performed on all intellectual property utilized in the course of your business operations?

– Am I concerned about intellectual property protection and legal issues of my application and data?

– Are there any data with intellectual property (e.g., patent, copyright) concerns with sharing?

– How is transfer pricing regulated for intellectual property in the United States?

– Who will own any copyright or intellectual property rights to the data?

Internet bot Critical Criteria:

Devise Internet bot risks and attract Internet bot skills.

– Are there any easy-to-implement alternatives to Data Loss Prevention? Sometimes other solutions are available that do not require the cost implications of a full-blown project?

– How do we manage Data Loss Prevention Knowledge Management (KM)?

– Why is Data Loss Prevention important for you now?

Internet café Critical Criteria:

Incorporate Internet café tactics and define what our big hairy audacious Internet café goal is.

– What are internal and external Data Loss Prevention relations?

– Is Data Loss Prevention Required?

Internet security Critical Criteria:

Prioritize Internet security goals and find the essential reading for Internet security researchers.

– What other organizational variables, such as reward systems or communication systems, affect the performance of this Data Loss Prevention process?

– How does the organization define, manage, and improve its Data Loss Prevention processes?

Intrusion detection system Critical Criteria:

Inquire about Intrusion detection system tasks and suggest using storytelling to create more compelling Intrusion detection system projects.

– Do we cover the five essential competencies-Communication, Collaboration,Innovation, Adaptability, and Leadership that improve an organizations ability to leverage the new Data Loss Prevention in a volatile global economy?

– Can intrusion detection systems be configured to ignore activity that is generated by authorized scanner operation?

– What potential environmental factors impact the Data Loss Prevention effort?

– What is a limitation of a server-based intrusion detection system (ids)?

Intrusion prevention system Critical Criteria:

Check Intrusion prevention system management and get answers.

– Are security alerts from the intrusion detection or intrusion prevention system (ids/ips) continuously monitored, and are the latest ids/ips signatures installed?

– What are the disruptive Data Loss Prevention technologies that enable our organization to radically change our business processes?

– Is a intrusion detection or intrusion prevention system used on the network?

Keystroke logging Critical Criteria:

Own Keystroke logging planning and spearhead techniques for implementing Keystroke logging.

– For your Data Loss Prevention project, identify and describe the business environment. is there more than one layer to the business environment?

– Does Data Loss Prevention create potential expectations in other areas that need to be recognized and considered?

– Do we all define Data Loss Prevention in the same way?

Linux malware Critical Criteria:

Examine Linux malware risks and research ways can we become the Linux malware company that would put us out of business.

– What are your most important goals for the strategic Data Loss Prevention objectives?

Machine learning Critical Criteria:

Reason over Machine learning engagements and budget for Machine learning challenges.

– Think about the people you identified for your Data Loss Prevention project and the project responsibilities you would assign to them. what kind of training do you think they would need to perform these responsibilities effectively?

– What are the long-term implications of other disruptive technologies (e.g., machine learning, robotics, data analytics) converging with blockchain development?

– Why is it important to have senior management support for a Data Loss Prevention project?

– How will you know that the Data Loss Prevention project has been successful?

Macro virus Critical Criteria:

Pilot Macro virus outcomes and create a map for yourself.

– What are the Essentials of Internal Data Loss Prevention Management?

– What are specific Data Loss Prevention Rules to follow?

Metadata removal tool Critical Criteria:

Troubleshoot Metadata removal tool engagements and handle a jump-start course to Metadata removal tool.

– What prevents me from making the changes I know will make me a more effective Data Loss Prevention leader?

Mobile malware Critical Criteria:

Huddle over Mobile malware quality and overcome Mobile malware skills and management ineffectiveness.

– How can you negotiate Data Loss Prevention successfully with a stubborn boss, an irate client, or a deceitful coworker?

– How do we go about Comparing Data Loss Prevention approaches/solutions?

– How would one define Data Loss Prevention leadership?

Mobile security Critical Criteria:

See the value of Mobile security leadership and find out what it really means.

– Which customers cant participate in our Data Loss Prevention domain because they lack skills, wealth, or convenient access to existing solutions?

– Among the Data Loss Prevention product and service cost to be estimated, which is considered hardest to estimate?

– Who is responsible for ensuring appropriate resources (time, people and money) are allocated to Data Loss Prevention?

Network security Critical Criteria:

Huddle over Network security decisions and innovate what needs to be done with Network security.

– Do we Make sure to ask about our vendors customer satisfaction rating and references in our particular industry. If the vendor does not know its own rating, it may be a red flag that youre dealing with a company that does not put Customer Service at the forefront. How would a company know what to improve if it had no idea what areas customers felt were lacking?

– Are the disaster recovery plan (DRP) and the business contingency plan (BCP) tested annually?

– Do we have past Data Loss Prevention Successes?

Palm OS viruses Critical Criteria:

Transcribe Palm OS viruses strategies and budget the knowledge transfer for any interested in Palm OS viruses.

– How can you measure Data Loss Prevention in a systematic way?

– What are current Data Loss Prevention Paradigms?

Privacy-invasive software Critical Criteria:

Incorporate Privacy-invasive software planning and define what our big hairy audacious Privacy-invasive software goal is.

Regular expression Critical Criteria:

Tête-à-tête about Regular expression failures and summarize a clear Regular expression focus.

– In the case of a Data Loss Prevention project, the criteria for the audit derive from implementation objectives. an audit of a Data Loss Prevention project involves assessing whether the recommendations outlined for implementation have been met. in other words, can we track that any Data Loss Prevention project is implemented as planned, and is it working?

– Does the tool we use provide the ability to combine multiple Boolean operators and regular expressions into policies?

– Does the Data Loss Prevention task fit the clients priorities?

Rogue security software Critical Criteria:

Match Rogue security software adoptions and transcribe Rogue security software as tomorrows backbone for success.

– How important is Data Loss Prevention to the user organizations mission?

Timeline of computer viruses and worms Critical Criteria:

Canvass Timeline of computer viruses and worms goals and proactively manage Timeline of computer viruses and worms risks.

– Is a Data Loss Prevention Team Work effort in place?

– Are there Data Loss Prevention Models?

Trojan horse Critical Criteria:

Powwow over Trojan horse tasks and devote time assessing Trojan horse and its risk.

– what is the best design framework for Data Loss Prevention organization now that, in a post industrial-age if the top-down, command and control model is no longer relevant?

User activity monitoring Critical Criteria:

Reorganize User activity monitoring adoptions and find answers.

– In what ways are Data Loss Prevention vendors and us interacting to ensure safe and effective use?

– Is the Data Loss Prevention organization completing tasks effectively and efficiently?

– What are the business goals Data Loss Prevention is aiming to achieve?

Web threat Critical Criteria:

Inquire about Web threat results and intervene in Web threat processes and leadership.

– Does Data Loss Prevention systematically track and analyze outcomes for accountability and quality improvement?

– Is there a Data Loss Prevention Communication plan covering who needs to get what information when?

– Does Data Loss Prevention appropriately measure and monitor risk?


This quick readiness checklist is a selected resource to help you move forward. Learn more about how to achieve comprehensive insights with the Data Loss Prevention Self Assessment:


Author: Gerard Blokdijk

CEO at The Art of Service | http://theartofservice.com



Gerard is the CEO at The Art of Service. He has been providing information technology insights, talks, tools and products to organizations in a wide range of industries for over 25 years. Gerard is a widely recognized and respected information expert. Gerard founded The Art of Service consulting business in 2000. Gerard has authored numerous published books to date.

External links:

To address the criteria in this checklist, these selected resources are provided for sources of further research and information:

Data Loss Prevention External links:

Data Loss Prevention – Zix Corp

A1Logic – Data Loss Prevention

Data loss prevention software
http://Data loss prevention solution is a system that is designed to detect potential data breach / data ex-filtration transmissions and prevent them by monitoring, detecting and blocking sensitive data while in-use (endpoint actions), in-motion (network traffic), and at-rest (data storage).

Data loss prevention software External links:

Data Loss Prevention Software | Safetica

Data loss prevention software
http://Data loss prevention solution is a system that is designed to detect potential data breach / data ex-filtration transmissions and prevent them by monitoring, detecting and blocking sensitive data while in-use (endpoint actions), in-motion (network traffic), and at-rest (data storage).

Data Loss Prevention Software Blade | Check Point Software

Antivirus software External links:

BullGuard 2018 | Antivirus Software for Windows, MAC …

Antivirus Software, Internet Security, Spyware and …

Spybot – Search & Destroy Anti-malware & Antivirus Software

Bayesian analysis External links:

Bayesian analysis. (eJournal / eMagazine, 2006) …

Bayesian analysis | statistics | Britannica.com

Bayesian Analysis (BA) – Project Euclid

Browser security External links:

Chrome Browser Security – Chrome for Businesses

Browser Security/Updates – DFAS Home

Chinese wall External links:

Chinese Wall Art | eBay

The Chinese WALL – Home | Facebook

Comparison of computer viruses External links:

Comparison of computer viruses – iSnare Free Encyclopedia

Computer and network surveillance External links:

Computer and network surveillance | The Meaning

Computer and network surveillance images, pictures, …

Computer virus External links:

What is a Computer Virus? Webopedia Definition

The Computer Virus (2004) – IMDb

FixMeStick | The Leading Computer Virus Cleaner

Computer worm External links:


Data retention External links:

[PDF]Data Retention and Destruction Policy

Netflow: data retention – Salesforce.com

[DOC]Data Retention Policy – hr.waddell.com

Defensive computing External links:

Defensive Computing | Washington State

False positives and false negatives External links:

False Positives and False Negatives – Math is Fun

Medical False Positives and False Negatives – …

Information security External links:

Managed Security Services | Information Security Solutions


Information Security

Instant Messaging External links:

Business Instant Messaging Software | LivePerson

CME Pivot Instant Messaging Platform

Intellectual property External links:

Loza & Loza LLP | Intellectual Property Law Firm

Patent & Intellectual Property Attorneys | Harness Dickey

One LLP – Intellectual Property & Entertainment Law

Internet bot External links:

How to create an Internet bot – Quora

What is an Internet Bot? – Definition from Techopedia

Internet café External links:

Open Mike’s Internet Café – Home | Facebook

Mouse Internet Café – Home | Facebook

Internet security External links:

Internet Security Threat Report 2017 | Symantec

Antivirus Software, Internet Security, Spyware and …

Bank of America | McAfee® Internet Security

Intrusion detection system External links:

Intrusion Detection Systems – CERIAS

[PDF]Intrusion Detection System Sensor Protection Profile

Intrusion prevention system External links:

Cisco Next-Generation Intrusion Prevention System …

Intrusion prevention system
http://Intrusion prevention systems (IPS), also known as intrusion detection and prevention systems (IDPS), are network security appliances that monitor network and/or system activities for malicious activity. The main functions of intrusion prevention systems are to identify malicious activity, log information about this activity, attempt to block/stop it, and report it.

Wireless Intrusion Prevention System (WIPS) | …

Keystroke logging External links:

Keystroke Logging Banner – CERT Coordination Center

Keystroke Logging – LifeLock

Machine learning External links:

Microsoft Azure Machine Learning Studio

Macro virus External links:

What is Macro Viruses – OoCities

Macro Virus – FREE download Macro Virus

Advisories : Melissa Macro Virus – SecureRoot

Metadata removal tool External links:

BatchPurifier LITE – Free Metadata Removal Tool

Mobile malware External links:

SVpeng Trojan – Mobile Malware – ATFCU

What is Mobile Malware? Webopedia Definition

Mobile security External links:

Mobile Security | Lookout, Inc.

Vipre Mobile Security

Lookout Mobile Security

Network security External links:

NIKSUN – Network Security and Performance

Palm OS viruses External links:

Palm OS viruses – WOW.com

Palm OS viruses – iSnare Free Encyclopedia

Palm OS viruses – Infogalactic: the planetary knowledge core

Privacy-invasive software External links:

PIS – Privacy-Invasive Software | AcronymFinder

Privacy-invasive Software – FRS

CiteSeerX — Privacy-Invasive Software in File-Sharing …

Regular expression External links:

RegexMagic: Regular Expression Generator

Easy Regular Expression Builder – RegexBuddy

Regular expression support in System Center …

Timeline of computer viruses and worms External links:

Timeline of computer viruses and worms – revolvy.com
https://www.revolvy.com/topic/Timeline of computer viruses and worms

Trojan horse External links:

Teachers learn to use math as Trojan horse for social justice

The Trojan Horse – Restaurant & Tavern

Trojan horse | Greek mythology | Britannica.com

User activity monitoring External links:

ShoreTel | Support – User Activity Monitoring

User Activity Monitoring Software Overview | TrustRadius

User Activity Monitoring and Employee Monitoring …

Web threat External links:

Security Intelligence Research – Web Threat Analysis

RSA Web Threat Detection | RSA Link

Leave a Reply

Your email address will not be published. Required fields are marked *