The following presentation was given by Duncan Brown, EMEA Chief Security Strategist at Forcepoint, during the e-SIDES workshop "Towards Value-Centric Big Data" held on April 2, 2019 in Brussels.

1. “You’re monitoring my what…?!”
Balancing privacy against enhanced security outcomes
Duncan Brown
EMEA Chief Security Strategist

2. © 2019 Forcepoint | 2
What’s wrong with this picture?
2011 2012 2013 2014 2015 2016 2017 2018
Sources:
1. CVE List, The MITRE Corporation 2019
2. Information is Beautiful (Dec 18 update)
3. Accenture Ponemon 2017 Cost Of Cyber Crime Study
4. https://www.avtest.org/en/statistics/malware/
5. IDC Software Tracker Historical (2H17) & Forecast (2018): Security Software
6. IBM Ponemon Cost of a Data Breach Report 2018. Per capita cost = total cost of data breach
divided by the number of lost or stolen records.
CAGR 2011-18 except:
- 4. 2013-17
- 6. 2014-18
Breached PII
records1 (m), 51%
231m
4,202m
389m
New malicious
programs2 (m), 44%
65m
856m
Variablescale
CVE Vulns3, 22%
5,331
21,210
Average cost of cyber
crime4 ($m), 10%
$7.2m
$11.7m
Security software
spend5 ($b), 7.7%
$21b
$29b
Per capita cost of
data breach6(m), 1%$145
$148

3. © 2019 Forcepoint | 3

4. Inadvertent
Behaviors
Poorly communicated
policies and user
awareness
Broken Business
Process
Data where it shouldn’t
be, not where it should
be
Rogue
Employee
Leaving the
company, poor
performance review
Criminal Actor
Employees
Corporate espionage,
national espionage,
organized crime
Malware
Infections
Phishing targets,
breaches, BYOD
contamination
Stolen
Credentials
Credential exfiltration,
social engineering,
device control hygiene
MALICIOUS INSIDER COMPROMIZED INSIDERACCIDENTAL INSIDER
TRUSTED USERS PUTTING ORGANISATIONS AT RISK

5. 13%23%64%
MALICIOUS INSIDER COMPROMIZED INSIDERACCIDENTAL INSIDER
TRUSTED USERS PUTTING ORGANISATIONS AT RISK
Source: Ponemon 2018

6. © 2019 Forcepoint | 6
Risk-Adaptive In Action Senior sales rep,
Copenhagen, DK
Monday
January 21 @ 10am
Working while on PTO
+ Additional Context
Thursday
January 24 @ 1pm
Downloads customer records to Excel
+ Additional Context
Wednesday
January 30 @ 9pm
Copy multiple files to staging
area
+ Additional Context
Saturday
February 9 @ 6am
Bulk copy to USB drive
+ Additional Context
Forcepoint Proprietary
Risk Score: 30
Risk-Adaptive Protection
No enforcement action
Risk Score: 50
Risk-Adaptive Protection
Enhanced auditing activated
Evidence available for investigation later
Risk Score: 80
Risk-Adaptive Protection
Copy allowed but file encrypted
No corporate data at risk
Risk Score: 95
Risk-Adaptive Protection
Action is blocked & account is locked
Avoided $10M breach and forensic proof of
the attack is available

7. © 2019 Forcepoint | 7
Do privacy concerns outweigh security objectives?
You’re tracking my what???!!!

8. © 2019 Forcepoint | 8
Processing personal data for security is a legitimate
interest
“The processing of personal data to the extent strictly necessary and
proportionate for the purposes of ensuring network and information security …
constitutes a legitimate interest of the data controller concerned.”
GDPR Recital 49

9. © 2019 Forcepoint | 9
We already “monitor” our users
Logins
Failed login attempts
Application access
Presence (Skype, WhatsApp, Chatter, Slack, etc)
Cloud apps (sanction, blocked, tolerated, etc)
Web filtering
White- and black-listing
Endpoint process monitoring
Physical card swipes for office access
Join these dots to create an overall risk profile for each user
Have a framework for transparency that protects our users, customers and partners
We should…

10. © 2019 Forcepoint | 10
Where should companies strike the balance?
How bad is the Privacy risk
to employees?
How bad is the Security risk
to the firm?

11. Thank you
duncan.brown@forcepoint.com
© 2019 Forcepoint | 11Forcepoint Proprietary