Met with the IT chief of a movie studio today. He was concerned about data breaches, in light of the the recent past.
In contrast to his peers, his users produced and broadcast content. A breach would disrupt business, not just embarass employees by hanging out the dirty laundry.
As we presented the capabilities of the Bitglass Breach Discovery service, he became quite intrigued. The meeting lengthened well beyond the time alloted to us.
"I don't want to block Dropbox or GoogleDrive," he said. "One startup called me saying they are leaders in ShadowIT discovery. To me that seems like the blind leading the blind. Our employees have legitimate business reasons for collaborating with outside parties via file-sharing services. I want to detect malware uploading data to Dropbox, but I don't want to get in the way of our users. " he said.
Of course! We understand that users have legitimate business reasons for collaborating with the outside world. Even our customers in the Federal Government do not want to block Dropbox to prevent breaches. We do see banks blocking Dropbox. But banking is an unusual business in that their customers come to them. All other businesses have to go to their customers.
Detecting data breaches is useful. Detecting breaches early helps you prevent damage. Detecting "ShadowIT" is not very useful unless you want to block some apps and piss-off your users.