Data Loss Prevention Academic Senate Meeting October 18, 2017 Data - - PowerPoint PPT Presentation

data loss prevention
SMART_READER_LITE
LIVE PREVIEW

Data Loss Prevention Academic Senate Meeting October 18, 2017 Data - - PowerPoint PPT Presentation

Oct 02, 2022 283 likes •332 views

Data Loss Prevention Academic Senate Meeting October 18, 2017 Data Protection Program Empower users with the Secure critical data assets, ability to use new protect data confidentiality, and technologies while managing minimize

slide-1
SLIDE 1

Data Loss Prevention

Academic Senate Meeting October 18, 2017

slide-2
SLIDE 2

2

Data Protection Program

Data Confidentiality Enhanced Technology Regulatory Compliance University Reputation

► Secure critical data assets,

protect data confidentiality, and minimize potential impact to our students, faculty, employees and business partners

► Support USC’s requirements

to protect regulated data such as:

► Healthare and payment

card data

► Federal research data ► Empower users with the

ability to use new technologies while managing USC’s data security risks

► Minimize the potential for

significant harm to USC’s brand and reputation due to sensitive data loss

slide-3
SLIDE 3

3

  • High-Value Assets (HVAs) are the information and data which, if inappropriately

used or disclosed, could result in significant damage to the University.

  • USC maintains a wealth of HVAs – USC is responsible for the protection of:
  • Regulated healthcare data (HIPAA)
  • e.g. Medical records
  • Regulated payment card data (PCI)
  • e.g. Credit card data
  • Sensitive employee and student data
  • e.g. SSN & payroll data
  • Proprietary and regulated research data
  • Valuable intellectual property
  • High-profile donor information

What Information is at Risk?

It’s of paramount importance that USC safeguard student, faculty, patient, business, and sensitive research data

slide-4
SLIDE 4

4

Data Loss Prevention

An automated email scanning process (much like antivirus & URL scanning) that looks for data patterns reflecting USC’s most sensitive data (SSNs, etc.) The pilot program will begin on October 20th for faculty & staff.

After the pilot ends, we’ll analyze current business practices to provide future recommendations around secure business processes and data loss prevention. Please let us know if you believe your existing processes may be in violation of policies or regulations related to our HVAs by emailing secureconnected@usc.edu

For the purpose of the pilot, the Office of the CISO will be monitoring reports generated by the scanning system to verify that regulated data is not being shared via email in ways that would require public disclosure on the part of USC.

What it is How it will work Next Steps