DigitalDefence
Home > Protect > Audits >> > Data Leakage Audit

Data Leakage Audit

Intellectual property, client credit card numbers, and employee data are leaking from your network ...

Can you identify what is being lost?

How will you stop it?

If a security breach should occur, how will you handle it?

Most organizations employ a series of mostly technical controls to protect sensitive information—proprietary business data, client and employee personal information—from external attacks. However, these controls are system-centric; they function best in securing the network or specific devices such as servers.

But what about the data leakage that occurs during use throughout the information lifecycle? Or increasingly common events such as loss or theft of a laptop containing personal information?

And what about the actions of a trusted insider, such as an employee or contractor, who abuses that trust to alter or steal data? How will you identify their malicious actions and secure your critical data resources?

Organizations must adopt a data-centric approach to securing their data at rest, in transit, in use / processing, and while it is beyond their perimeter. DigitalDefence’s Data Leakage Audit is the first step in identifying and mediating this potentially significant loss to an organization.

Service Delivery

The Data Leakage Audit will assess some or all of the following:

  • Corporate governance and commitment to data protection
  • Compliance with all relevant government and industry privacy and security standards, including foreign entities
  • Risk assessment to identify critical data and the potential impact of loss or disclosure
  • Information lifecycle, mapping the locations and handling of data at rest, in use, and in transit
  • Policies, standards, and procedures that control access to, and use of, corporate data
  • Management, technical and operational controls
  • Active discovery of sensitive data on the client network, including egress monitoring to identify data being sent to external locations, and identification of the sender of the data
  • Review of contractual obligations of third parties, including on-site reviews of third parties handling your corporate data
  • Existing employee training programs for security awareness and practices


Datasheet – Data Leakage Audit [236 kb]