The additional use of the Data Loss Prevention (DLP) product to manage data across the network is integral to compliance of the CIA triad. Global Limiteds approach of layered security from end- point to end user utilized several different methods of controls thus providing their clients with a single comprehensive strategy. Although there is no real way to have complete security against all threats, Global Limited has provided their clients with a secure solution without being so intrusive that the end users cannot do their jobs. If a company or organizations data and systems are not secure, be it from lack of proper controls or improper physical security, then they would be out of compliance with industry standards. According to the SOX act a company is supposed to have internal controls in place to prevent and detect unauthorized access of financial data. Globals risk management approach was a key factor in the success of their efforts to protecting their clients information assets.
By utilizing risk management strategies Global was able to detect vulnerabilities where there were the most likelihood of threat and implement controls to detect and/or prevent breaches of the security controls. The risk management process ensured Global addressed security measures at all levels of the IT/domain. Having remote external access to Globals network poses many threats. Lack of physical controls over devices could result in breaches. If a person lost a laptop that ad sensitive data or kept their login credentials stored on their phones, an unauthorized person could gain access.
If data is not properly classified and protected it could be compromised through VPN. Some other tools that are comparable to those used by Global are Biometrics and cryptographic keys used for authentication. Titan CMS is similar to Globals DLP suite in that it classifies, monitors and secures data across a network. Clone Guard provides vulnerability scanning, intrusion detection, and penetration testing to test an organizations defensive countermeasures and identify threats.
Managed Network Security, IDS IPS Solutions Provider Clone Systems, Inc. (n.d.). Retrieved March 30, 2014, from http://www.clone-systems.com/?gclid=CPCGzpWn1r0CFaVxOgodtEcAeQ Titan CMS content management systems. (n.d.). Retrieved March 30, 2014, from http://titancms.com/home.htm