Lumension Device Control, the primary component of Lumension Data Protection™ solution enforces organization-wide usage policies for removable devices, removable media, and data (such as read/write, encryption). Using a whitelist / “default deny” approach, administrators can centrally manage your devices and data. Lumension Device Control enables organizations to embrace productivity-enhancing tools while limiting the potential for data leakage and its impact.
|
|
How it works
1. Discover - identify all removable devices that are now or have ever been connected to your endpoints through the use of a “learning” mode that allows you to collect information without disrupting business.
2. Assess - define rules at both default and machine-specific levels for groups and individual users with regards to device access by class, model and/or specific ID and uniquely identify and authorize specific media. These permissions can be linked to the user and user group information stored in Microsoft Active Directory or Novell eDirectory.
3. Implement - enforce device and data usage policies by: file copy limitations (amount per day, time of day) and file type filtering. You can also enforce the encryption of data moved onto removable devices / media and apply permissions to specific and/or groups of endpoints, ports, devices and users (both on- and off-line), including scheduled / temporary access.
4. Monitor - continuously monitor the effectiveness of device and data usage policies in real time and identify potential security threats by logging all device connections, recording all policy changes and administrator activities and tracking all file transfers by file name and content type. You can even keep a copy of every file that is transferred to or from a removable device using our patented bi-directional shadowing technology.
5. Report - create both standard and customized reports on all device and data activity showing allowed and blocked events, which can be saved into a repository, shared via email, and/or imported into 3rd party applications. Detailed forensic reports and comprehensive auditing capabilities enable you to demonstrate compliance with internal security policies and external government and industry regulations such as SOX, HIPAA or PCI DSS.
Improves Network Security
Provides flexibility needed to handle unique needs & environments.
Ensures user productivity is not disrupted by applying permissions for Plug & Play devices when detected.
Improves Network Security
Provides flexibility needed to handle unique needs & environments.
Ensures user productivity is not disrupted by applying permissions for Plug & Play devices when detected.
Delivers Granular Permissions Control
Provides greater control at lower levels for effective access management.
Secures Data
Limits DVD/CD access to your company’s standard discs, to avoid use of
unauthorized content and/or encrypts removable media to prevent
unauthorized viewing.
Secures Data from Data Leakage/Theft
Eliminates unknown or unwanted devices in your network, reducing the risk of data leakage / data loss.
Limits uploading of unknown or unwanted files (i.e., malware or other unauthorized files).
Removes risk of large amounts of data leaving your network.
Blocks Malware Attacks and Protects Data
Reduces risk of sensitive files leaving your network, and unwanted
files (i.e., malware or other unauthorized files) entering your network.
Enhances Security Policy Enforcement
Switches access on without having to remember to switch it off again later.
Provides another method to manage access to sensitive data.
Increases Endpoint Security
Provides deeper, finer-grained control over access to endpoints,
reducing possible problem areas in all anticipated environments.
Enhances Security Policy Enforcement
Permits permission updates no matter the status of the endpoint to ensure uniform security policy enforcement.
Increases Security Compliance
Ensures that data cannot be accessed if removable devices or media are lost or stolen.
Reduces the risk of data leakage / data loss.
Balances Productivity and Protection
Reduces your workload while still ensuring that sensitive data is not inadvertently exposed.
Increases Data Protection
Reduces risk of hackers breaking into lost or stolen removable devices
(such as USB memory drives) and media (such as DVDs/CDs) using brute
force methods (e.g., “dictionary attacks”).
PGP Encryption
Perfect complementary solution to an existing or planned PGP Universal managed environment.
Delivers Audit Readiness
Captures the flow of information into and out of your network.
Enables you to quantify the risk and report for compliance purposes.
Enables audits of filename and/or full file content for forensic purposes.
Delivers Precise Control with Access Limits
One administrator can manage a large installation (over continents);
optionally, have multiple administrators managing appropriate portions
of installation.
Limits access to appropriate, authorized personnel (e.g., allow
auditors to audit but not change policies), and distributes workload
among administrators as needed.
Reduces IT Workload and Improves Productivity
Provides granular user permissions that remain with user login regardless of machine.
Leverages existing directory information when enforcing policies.
Reduces workload and improves productivity while enforcing security policy.
Reduces setup / startup / ramp up time.
Adapts to Your Growing Business
Supports entire range of organizations, from small, local startups to
large, global corporations, from hundreds of endpoints to hundreds of
thousand endpoints; fast growing organizations can scale installation
as needs dictate.
Download Lumension Device Control Brochure |