Avoid the Deadly Sins of DLP and Know your Enemy

©2010 Check Point Software Technologies Ltd. | [Unrestricted] For everyone

Avoid the Deadly Sins of DLP and Know your Enemy

Check Point University 2010

22©2010 Check Point Software Technologies Ltd. | [Unrestricted] For everyone |

Agenda

1 Requirements

2 Solution


Data Loss Prevention

What is DLP?

[email protected]

Corporate Strategy

Green World Strategy Plan 2010

E-mail sent to the wrong

recipient, intentionally or by mistake.

Data breaches have happened to all of usData breaches have happened to all of us

Company document uploaded to an external website.


The Cost of DLP

Costs

Professional Services:

Identify Data

Data loss risks – SMTP, HTTP, FTP

Data Classification

On going Classification

Employee awareness

Risks

Lack of business edge on competitors

Brand damage

Regulatory Compliance

Financial penalties – ISO


Risk AnalysisIm

pact

Probability

90% of all Data Loss incidents

seem to be accidental loss through -SMTP

email

Accidental

SMTP

Intentional

SMTP

Intentional

HTTP

high

lowlow

high


Requirements


Agenda

1 Requirements

2 Solution

3 Future


Graduate R&D employees are intelligent users, unintentional data loss is primary issue.

Users need to be educated regarding their actions. Must protect against information posted to Web sites and

FTP servers. Growing organization has finite IT administrator resources,

any solution must not be too onerous. The Solution must increase Data Leakage Visibility Gateway based Check point DLP will address these

issues.

Megahopeful


John,

Let’s review the corporate strategy in our morning meeting.

Green World Strategy Plan 2010

[email protected]

Corporate Strategy

Data Loss Prevention Alert

An email that you have just sent has been quarantined.

Reason: attached document contains confidential internal data

The message is being held until further action.

Send , Discard , or Review Issue

Introducing Check Point Data Loss Prevention

Educate

Users on corporate data policies

Educate

Users on corporate data policies

EnforceData loss

business processes

EnforceData loss

business processes

PreventMove from detection

to prevention

PreventMove from detection

to prevention

Check Point Combines Technology and Processes to Make DLP Work

Check Point Combines Technology and Processes to Make DLP Work

NEW!


Check Point Solves the DLP Challenge

Technology ChallengeEmpowers users to remediate

incidents in real time

Technology ChallengeEmpowers users to remediate

incidents in real time

IT Staff ChallengeEducates users on DLP policies

without involving IT staff

IT Staff ChallengeEducates users on DLP policies

without involving IT staff

New UserCheck™ TechnologyNew UserCheck™ Technology


Item No.

Name Social Security Number

Job Title Gross Pay

1 John Smith 987-65-4320 CEO $200,000

2 Kevin Brian 987-65-4221 VP R&D $150,000

3 Margret White

769-65-7522 VP Marketing

$153,000

4 Bob Johns 342-62-3323 CFO $140,000

5 Mike Riddle 777-43-4324 COO $180,000

Correlates data from multiple sources using open languageCorrelates data from multiple sources using open language

New MultiSpect™ Technology

MultiSpect Detection EngineMultiSpect Detection EngineMultiSpect Detection EngineMultiSpect Detection Engine

Detects more than 600 file formatsDetects more than 600 file formats600+ File Formats600+ File Formats250+ Data Types250+ Data Types

Over 250 pre-defined content data types

Over 250 pre-defined content data types

Detect and recognize proprietary forms and templates

Detect and recognize proprietary forms and templates


Simple Rule-based Policy Management

Easily Define Policy to Detect, Prevent or Ask UserEasily Define Policy to Detect, Prevent or Ask UserEasily Define Policy to Detect, Prevent or Ask UserEasily Define Policy to Detect, Prevent or Ask User


Using Document Templates

Using document templates to identify sensitive Data


Project Plan Numbers

Create an updated list of current project numbers, to check for project details leaking out


More standardized Protections

Other Leakage protections


For acquisitions solution may be extended Could use either the same policy or one more

tailored to their needs All secured from a central location using the

same entities As their current infrastructure is Cisco, DLP-1

appliance would slot in for immediate protection

New on the Block

New Acquisitions


SmartEvent

Check Point SmartEvent will allow real time altering of DLP incidents


Solution Overview


Agenda

1 Requirements

2 Solution


Summary

Check Point Application ControlSoftware Blade

Check Point Application ControlSoftware Blade

Detect and control application usage

Available on EVERY gatewayAvailable Q4 2010

AppWiki—Industry’s largest library with over 50,000 applications

Educate users on corporate policies

Documents

Avoid the Deadly Sins of DLP and Know your Enemy