Security Intermediate

What is Data Loss Prevention (DLP)?

A strategy and set of tools that detect and prevent unauthorized transmission of sensitive data outside an organization.

DLP systems monitor and control data movement across networks (network DLP), on endpoints (endpoint DLP), and in cloud services (cloud DLP). They identify sensitive data (credit cards, SSNs, health records) using pattern matching, keywords, and machine learning.

Actions include blocking transmission, encrypting data, alerting administrators, and quarantining files. DLP is required by regulations including GDPR, HIPAA, and PCI DSS. Implementation requires careful policy tuning to balance security with productivity.

Learn More About This Topic

SOC Analyst Fundamentals

Related reading

SOC Analyst Advanced: Incident Response & Forensics

Related reading

Ethical Hacking & Penetration Testing

Related reading

Related Terms

A technique that controls the number of requests a client can make to a server within a specified time period.

A security model that requires strict identity verification for every user and device, regardless of their network location.

JWT (JSON Web Token)

A compact, self-contained token format used for securely transmitting information between parties as a JSON object.

Webhook Signature Verification

A security mechanism that verifies webhook payloads are authentic and unmodified using cryptographic signatures.

A systematic examination of an information system to assess compliance with security policies, identify vulnerabilities, and verify controls.

Penetration Testing

An authorized simulated cyberattack on a system to evaluate its security defenses and identify vulnerabilities.

View All Security Terms →