The deal, the terms of which have not been disclosed, was made to bolster Trustwave's data security and payment card industry (PCI) compliance management solutions, the company said in a news release Thursday. DLP can be used to detect when data is being misused or mishandled, as well as to demonstrate compliance to mandates such as PCI DSS and HIPAA.
“Trustwave is heavily focused on PCI, and a major portion of that is content discovery, so it makes sense that this is something they would want in their security arsenal,” Rich Mogull, founder of information consultancy Securosis, told SCMagazineUS.com on Thursday.
During the past few years, a number of other large security firms, including Symantec, McAfee and Trend Micro, have picked up DLP providers to integrate the technology into their offerings. In January, for example, CA acquired Orchestria.
The DLP market has seen “slow, steady growth” over the past couple of years, a trend that is likely to continue, Mogull said.
The benefit of DLP technology is two-fold for companies, he said. It can help improve an organization's overall security posture by detecting data that is being stored where it shouldn't be and also can help with security audits.
Many organizations plan to earmark part of their 2010 IT security budgets for data leakage prevention solutions that contain encryption capabilities, according to a study released in August by research firm TheInfoPro. That is because organizations want a comprehensive plan to mitigate the threat of data loss while analyzing where information is being stored, the study found