Data Loss Prevention Control Requirements: The contractor's solution: Must provide real-time monitoring of data access and usage. Must prevent unauthorized data copying to external devices, printing, or sharing. Must allow for requesting end-use to provide reasons for data copying to external devices, printing, or sharing. Must prevent or allow the end-user to provide reason for the copying and/or pasting of sensitive data between applications. Must prevent or allow the end-user to provide reason for screen captures of sensitive data. Must block, restrict or allow the end-user to provide reason for access to sensitive data based on predefined policies. Must provide for encryption of sensitive data to USB devices. Must provide for detection and prevention of data exfiltration attempts. Must prevent or allow the end-user to provide reason for uploads of sensitive data to the web or cloud services. Must prevent or allow the end-user to provide reason for copying or moving sensitive data to network shares. Must provide customizable end-user notifications when sensitive data policies are violated. The contractor’s solution should have Optical Character Recognition (OCR) capabilities for identifying sensitive data. The contractor’s solution should store forensic evidence on-site; however, cloud storage would be considered...
