Media releases are provided as is by companies and have not been edited or checked for accuracy. Any queries should be directed to the company itself.

Symantec Arms Companies with More Options to Protect Sensitive Data

Symantec Corp. announces the industry’s first open data loss prevention (DLP) platform, giving customers more options to find and fix data loss problems
  • 28 October, 2009 14:24

Symantec Arms Companies with More Options to Protect Sensitive Data

Data Loss Prevention 10 Openly Integrates with Additional Security Technologies

Sydney, AUSTRALIA – 28 October, 2009 – Symantec Corp. (Nasdaq: SYMC) today announced Symantec Data Loss Prevention 10, the industry’s first open data loss prevention (DLP) platform, giving customers more options to find and fix data loss problems. As organisations strive to centre their security strategies around information, DLP becomes essential.

To help customers better protect sensitive data , Symantec’s open DLP platform will help organisations effectively leverage content-awareness across security deployments enterprise-wide and take actions that secure data and prevent its loss. Symantec Data Loss Prevention 10 will allow companies to apply encryption and enterprise rights management (ERM) based on content and will integrate with additional Symantec solutions.

Apply Encryption and ERM Based on Content

The new FlexResponse feature of Symantec Data Loss Prevention 10 will help security teams apply policy-based protection to files containing confidential data, including encryption or ERM. Until now, integration of DLP with other IT solutions has required manual processes.

By partnering with leading third-party providers, including GigaTrust, Liquid Machines, Oracle and PGP Corporation, Symantec will offer customers the broadest range of integrated remediation options.

For example, a company that is restricting access to a merger agreement to a small group of people will easily be able to instruct their DLP policy to classify data and use Microsoft Active Directory Rights Management Services (ADRMS) to apply ERM to copies of this content providing granular protection.

Extend Usage of DLP Intelligence

New support for XML and Web Services will enable Symantec Data Loss Prevention 10 to send rich DLP data to any application or reporting system, including enterprise security dashboards and compliance solutions, such as Symantec Control Compliance Suite.

For example, an e-commerce site might begin by using DLP to identify servers with data that falls under PCI DSS regulations. By sending this information to Symantec’s Control Compliance Suite, the DLP incident data can be used to prioritise these servers for more frequent auditing to provide additional scrutiny to places where valuable data is housed.

New import/export capabilities will allow organisations to keep policies current with new regulations as well as collaborate and exchange policies to share best practices with other users.

Integrate with Additional Symantec Solutions

New integration with Symantec Workflow will enable users of Symantec Data Loss Prevention 10 to trigger policy-based actions such as automatic encryption and endpoint lock-down by Symantec Endpoint Encryption, Symantec Endpoint Protection, and other security solutions from Symantec as well as third-party providers.

For example, if an employee is trying to download confidential information to a USB drive, Symantec Data Loss Prevention can trigger Symantec Endpoint Protection to disable USB usage through a simple workflow.

Users of software-as-a-service (SaaS) email security solutions, such as MessageLabs Hosted Email Encryption (a Symantec Hosted Service), will be able to monitor, protect and securely deliver confidential information in outbound email without requiring on-site email gateway infrastructure.

Services, Language & Availability

Symantec Data Loss Prevention Services enable customers to achieve measureable success from DLP deployments and gain the knowledge and experience needed to continually optimise the solution over time. By combining industry-leading advisory consulting services and data loss prevention technologies, Symantec provides customers with a detailed analysis of their exposure to internal and external data breaches, and a quantitative assessment of actual data loss across networks, web applications storage and endpoints.

Symantec Data Loss Prevention 10 will have policy and detection support for 25 languages and will add full product localization for Japanese, Simplified Chinese and French languages so that native speakers can create policies, manage and respond to incidents, and perform full system management.

Symantec Data Loss Prevention 10 is expected to be available in December 2009.

Supporting Quotes

“Gaining flexibility in our enterprise security environment is immensely valuable,” said Fabio Recine, senior security engineer, Computershare. “We will now be able to seamlessly use Symantec Data Loss Prevention with other security technologies of our choosing, which allows us to capitalize on investments already made and extend the usefulness of each security solution. It’s a case of 1+1=3.”

“By opening our DLP platform, we give customers more choices and flexibility to better protect the sensitive information in their unique IT environments,” said Francis deSouza, senior vice president, Enterprise Security Group, Symantec. “We’re a step closer to realising the vision of true information-centric security by extending content-awareness into many layers of security.”

Additional Resources

Press Release: Symantec Partners with GigaTrust, Liquid Machines, Oracle, PGP to Stop Data Breaches

Product Info: Symantec Data Loss Prevention 10

About Business Solutions from Symantec

Symantec helps organisations secure and manage their information-driven world with IT Compliance, discovery and retention management, data loss prevention, and messaging security solutions.

About Symantec

Symantec is a global leader in providing security, storage and systems management solutions to help consumers and organisations secure and manage their information-driven world. Our software and services protect against more risks at more points, more completely and efficiently, enabling confidence wherever information is used or stored. More information is available at www.symantec.com

NOTE TO EDITORS: If you would like additional information on Symantec Corporation and its products, please visit the Symantec News Room at http://www.symantec.com/news.

Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.

Press Contacts:

Jasmin Athwal

Max Australia

+61 2 9954 3492

Jasmin.Athwal@maxaustralia.com.au

Most Popular
CSO Corporate Partners
  • Clear Swift
  • Trend Micro
  • Sophos
  • juniper
  • NetIQ
rhs_login_lockGet exclusive access to CSO, invitation only events, reports & analysis.
CSO Directory

SECURE Email Gateway

Clearswift SECURE Email Gateway is an effective and resilient email gateway for 50 to 50,000 users.

more »
Security Awareness Tip
Clearswift tips: Guidelines for introducing and policing an effective IT Policy

1. Make it clear that the policy is not about playing ‘Big Brother’ but to ensure the security of employees, company information and data and to safeguard the company’s reputation.
2. Invest time to get buy-in from managers and their teams.
3. Convey the message of flexibility – with regard to social media, it is not about blocking staff usage but working in everyone’s interests to ensure that threats are contained.
4. Introduce a regular company-wide training programme that everyone attends at regular intervals throughout the year, not merely as part of an induction programme.
5. Within the training programme make sure that there are specific examples to demonstrate each rule or regulation, and that there is a clear explanation of the dangers of casual or careless talk on social networking sites. Again use examples, employees need to understand the consequences of raising a throwaway comment that has negative connotations for the business, as much as they need to be aware of dangers of making a more direct but ill-considered attack on a competitor, regulator or even a fellow colleague. They need to be clearly advised on any impact on the company and/or legal action or inquires that may be raised as a result.
6. Alert employees to any changes in policy through regular clear communication.
7. Reinforce the operational policy guidelines regularly, cover everything from blogging to Facebook, LinkedIn and Twitter.
8. Ensure that the rules are fair and that they apply throughout the business.
9. Enforce the rules – if there is a deliberate or malicious contravening, disciplinary action needs to be taken. A policy isn’t worth having if it is seen to be lax and unenforced.
10. Review the policy regularly to ensure you keep up to date with new systems and technology.

Phil Vasic is Regional Director, APAC, at Clearswift, the software security company www.clearswift.com
Security ABC Guides

7 Ways to Protect Your Business Printers

Can a hacker burn down your business by remotely setting one of your printers on fire? Researchers at Columbia University have recently proposed such a scenario, although HP quickly denied that it's possible. However, even if your printers can't be used as remote firestarters, there are many risks involved in networking a printer.

Read More
more »