SASE Blindspots – Endpoint DLP

SASE on the Edge

The new global business reality has created a slew of new challenges on the data protection front.

Changes to network configuration and norms in company system access have made many traditional security models inefficient if not completely obsolete.

Trends in global commerce adapting to the pandemic work environment have accelerated these realities. A Gallup poll from May for instance showed that seven out of ten white collar workers are still working from home. From an information security perspective, this means the vast majority of workers are accessing their company networks–with some level of regularity–outside their defined workstations.

The growing prevalence of remote working and other similar patterns have increased exponentially the modern phenomenon of wide-area networking (WAN) in which digital communications and information delivery need to be maintained over a wide geographical area but within one integrated working environment. This in turn has created high demand for security tools that can address new realities. Many organizations have turned to Secure Access Service Edge (SASE) solutions designed to defend diffuse networks.

Companies however are facing a quickly changing technological landscape that is quickly finding ways to circumvent SASE protocols. Workers now have ways of getting around company VPNs and even disable SaaS-based web security. What managers need is a platform that can adapt and respond to the ever-increasing SASE gaps.

Endpoint DLP that Workstm for a complete solution

Taking on this unique set of enterprise challenges, GTB has recently announced its new release of the DLP the Works platform. The latest version of GTB’s innovative and AI-powered DLP targets that diverse endpoint problem and offers solutions to businesses that need to maintain network flexibility.

The improved platform offers Advanced MIP support integrated into GTB’s Endpoint agent to classify and protect files using its signature MIP engine. The DLP solution also offers protection for using legacy collaboration tools such as Microsoft Teams, allowing the seamless use of these programs while securing file uploads and transfers. It also contains controls for off-premises operations such as the Off-premises Printing protocols, all at the Endpoint agent level. The improved File Share DLP function controls access and monitors file share activities and includes the unique ability to accurately prevent the saving of sensitive files to predefined paths.

Furthermore, the latest iteration of GTB’s data loss protection software has amplified even further its signature detection accuracy, providing IT departments and end-users alike the assurance they need to streamline data-based operations.

Visibility: Accurately, discover sensitive data; detect and address broken business process, or insider threats including sensitive data breach attempts.

Protection: Automate data protection, breach prevention and incident response both on and off the network; for example, find and quarantine sensitive data within files exposed on user workstations, FileShares and cloud storage.

Notification: Alert and educate users on violations to raise awareness and educate the end user about cybersecurity and corporate policies.

Education: Start target cyber-security training; e.g., identify end-users violating policies and train them.

  • Employees and organizations have knowledge and control of the information leaving the organization, where it is being sent, and where it is being preserved.
  • Ability to allow user classification to give them influence in how the data they produce is controlled, which increases protection and end-user adoption.
  • Control your data across your entire domain in one Central Management Dashboard with Universal policies.
  • Many levels of control together with the ability to warn end-users of possible non-compliant – risky activities, protecting from malicious insiders and human error.
  • Full data discovery collection detects sensitive data anywhere it is stored, and provides strong classification, watermarking, and other controls.
  • Delivers full technical controls on who can copy what data, to what devices, what can be printed, and/or watermarked.
  • Integrate with GRC workflows.
  • Reduce the risk of fines and non-compliance.
  • Protect intellectual property and corporate assets.
  • Ensure compliance within industry, regulatory, and corporate policy.
  • Ability to enforce boundaries and control what types of sensitive information can flow where.
  • Control data flow to third parties and between business units.
Comments are closed.
Want to see something cool in less than 30 seconds?

Want Easy Access to
Data Security that Works?

Secure your Sensitive Data, including from  Remote Users

Try it for Free

Take the Next Step to Stop Data Breaches