DLP (Data Loss Prevention) is a failed industry and if you disagree you're almost certainly selling it.
So what is DLP?

Generally it's an appliance, software, etc. that makes sure that your employees don't copy sensitive data out of your environment.

Sounds good in theory, right?
In practice it's crap.

It has to MitM secure connections, so that's awesome. (A one stop breach!)
It has to recognize what the sensitive data is in the first place. (Is that a SSN or just a nine digit number?)
It has to work everywhere your sensitive data lives.
You've gotta worry about people plugging in USB drives, disabling Airdrop, sniffing email, preventing access to S3 and random web servers, etc. etc. etc.

Meanwhile people have cell phone cameras in most workplaces.
So it’s noisy as hell every time it misfires, people feel the lack of trust, it can be evaded by nefarious folks, and it mostly serves to get in the way of getting work done.

But at least it’s very expensive.
"So how do you intend to protect your data instead?"

Restrict the sensitive stuff to as small an environment as possible, audit the living hell out of accesses to the secure thing, and hire trustworthy people.

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Corey Quinn

Corey Quinn Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @QuinnyPig

16 Jul
So @FarrahC32 is a relatively new @awscloud employee and mistakenly believes that people know she works there because of her badge.

In reality, that's not how people know you work at AWS. A thread!
When you catch up with people you haven't seen since before the pandemic, you start off by handing them a document of what you worked on for them to read first.
Suddenly your favorite restaurant is "The Cheesecake Factory" because it's the only place that has a menu long enough.
Read 16 tweets
15 Jul
Customers: Fix your cross-AZ data transfer pricing, it's killing us.

AWS: Here are four more ways to run containers!
Customers: We'd really like to understand how all of these services interact together.

AWS: We've scheduled re:inforce and the Americas Online Summit for the same days!
Customers: I live in fear of the free tier billing me.

AWS: You set up a Managed NAT Gateway and now you owe us approximately "Guam."
Read 5 tweets
14 Jul
And now I will write a thread of reasons an organization would choose to use @awscloud, @googlecloud, and @Azure all at the same time.
"Idle hands do the devil's work" and that goes double for lawyers, so make sure they're kept busy renegotiating expiring contracts constantly.
Selecting "best of breed" technologies from each one in theory but in practice getting it hilariously wrong so you're using the worst of all worlds.
Read 15 tweets
13 Jul
Common misconception! A thread, because it’s counterintuitive…
I made fun of this behavior a few years ago and found myself rapidly educated.

Let's say you buy a new vacuum every, what? Ten years or so?

The odds of you buying a new vacuum today then are 1 in 3652.5.
You just bought a vacuum. Great!

Maybe it'll break. Maybe you'll want one for your summer house. Maybe it broke. Maybe you just discovered a very specific fetish for which I will not shame you.

But for a while, you're *likelier than the average shopper* to buy another.
Read 4 tweets
7 Jul
All of the managers I ever reported to were complete crap until I managed people myself. Now I look back fondly at them.

A thread, partially in honor of @sarah_edo's bold new book.
In hindsight, the recurrent failing that my managers always had was that they failed to explain just exactly WTF their job was. It turns out that 'managing me while catering to my every whim' was absolutely not it.
From where I sit, the hard truth is partially that having employees isn't the manager's job; having employees is simply their current approach to getting the actual responsibility handled.
Read 17 tweets
7 Jul
"Build a better mousetrap and the world will beat a path to your door" is a lie presumably spread by mice. Your door must feature a cash register because the mousetrap will not sell itself.
Take what we do at the @DuckbillGroup as an example. "Consulting projects that pay for themselves many times over before they're complete" sounds super compelling and easy to sell.
There is no such thing as an easy sale to a sophisticated business customer. Thus we hire salespeople to drive the sale and thus keep our Spite Budget topped up. Their primary job is helping a buyer sell the project internally.
Read 10 tweets

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!

Follow Us on Twitter!

:(