As data governance is a emerging discipline, the idea of storing data in the cloud triggers this discipline by default. Both business and risk management will state their wishes and requirements. Resulting in a set of policies and instructions enabling the business and reducing the risks inherent to data storage.
But business is "the" stakeholder in this question. As IT security and risk management we can make business aware of risks. Keep in mind, don't bite the hand that feeds you (yes they pay the bill)
A small mental image: a car needs brakes, not to slow down. A car needs brakes to go faster. (Thank you, Serge Moreno) As long we act in IT security and risk management as brakes without having a car (representing the business) we will be seen as a burden preventing business to move faster.
This is the logical workflow of the data scanning and the place where you can get the scan results and what happens with the files that did not get blocked by your current solution. Or just files that you want to evaluate for special content.
All files uploaded will be sent to a locked folder, once scanned they will be deleted. The policy within the Forcepoint Solution is configured not to keep forensic data.
Files will be scanned with Forcepoint web DLP engine. At the moment, the scans are looking for PII,HIPA,ITAR,PCI/DSS & GDPR. If you want other triggers please contact me
After 20 to 30 seconds the upload has been performed, the results should reflect in the dlp incident frame on this page