O'Higgins said canned policies work as long as they are configured correctly, but that can be laborious given the volume of information that must be first scanned. Although policies will work better for smaller organizations, O'Higgins said small businesses are less likely to have even heard of DLP to know they must address it.
Overall, O'Higgins said there will always be a new security whole that emerges post-DLP deployment. For instance, other security technologies might even work against DLP like encrypted data that DLP cannot scan.
The downloadable DLP offering is a continuation of Websense's strategy to tightly intertwine Web, e-mail and data. The company already released last February a unified console and architecture called Triton that merges DLP with e-mail security. "You can expect more of that consolidation," said Yun.