Provisioning data loss prevention services could be a complex and costly process, historically requiring additional consultation from DLP vendors. Advanced DLP, however, is specifically designed to remove this complexity and enable service providers to include a comprehensive DLP into their practice.
The service is provisioned to clients through the Acronis Cyber Protect Cloud agent and requires only a flick of a switch in the management console. In initial provisioning, Advanced DLP should be set in observation mode to automatically create the initial DLP policy by observing end users’ behavior and optionally requiring a one-time justification from them for newly detected data flows. The baseline data loss prevention policy creation period should take between one and two months, depending on the quantity of observed data flows during that period.
Once generated, the baseline (initial) DLP policy is presented in an easy-to-understand graphical format. It is then validated with clients, who best understand their business’ specifics and can help make the DLP rules more accurate. The validation process is extremely easy, requires no technical knowledge from clients, and is done in just a few hours.
Once validated, the data loss prevention policy is enforced to allow all business-related transfers of sensitive data while blocking any sensitive data transfer that is not used in the business process. The policy can be enforced in two ways — strict enforcement or adaptive enforcement. In adaptive enforcement, you can leverage automated, user-assisted extensions of enforced policies with additional rules to allow and protect new data flows that were not observed when creating the initial DLP policy. The adaptive enforcement mode enables better business continuity, ensuring new data flows will not be blocked. The strict enforcement mode is for clients who require more strict controls, Advanced DLP will block any new data flows that do not match already approved ones in the DLP policy.