Endpoint data protection
Endpoint data protection is a common measure for monitoring and controlling data transmissions in a network, both internally and externally. This measure is taken in companies and authorities in order to prevent the undesired outflow of data and thus to protect against data protection violations.
Endpoint data protection is usually implemented organizationally and technically in the area of data leakage prevention / data loss prevention and security awareness .
Organizational measures
- Educating employees about the dangers involved in handling sensitive data
- Raising employees' awareness of the use of external data carriers
- IT security training and further education measures for IT administrators
- Training of employees on IT security
Technical measures
- Protection of the company network through firewalls and virus scanners
- Patch management
- Application control to protect installations and the execution of unauthorized applications
- Device Management (interface control)
- Transparent encryption of external data carriers (e.g. USB encryption)
- Hard disk encryption (+ PreBoot authentication)
- BSI-compliant destruction of sensitive files
- Logging of data transfers to mobile devices
Due to numerous incidents and media reports on data theft and the loss of critical customer data, attention and awareness of action has risen sharply. For this reason, training courses and events in the area of endpoint security / endpoint data protection are attended more frequently for training measures and further education. In terms of technical measures, a broad market of solution manufacturers has developed in recent years. Products range from simple encryption tools, USB blockers, application filters and software for combating harmful software to extensive endpoint data protection program packages.