Protecting Corporate Data:
Until now, business leaders have been forced to depend on end user compliance with corporate security policies to protect sensitive data. The DataDefense solution by Iron Mountain removes the need for special end user compliance and returns control and safeguarding of data to business leaders and IT management.
DataDefense is Efficient and Easy to Administer
The DataDefense protects corporate data througha a solution that is centrally administered through a web-enabled interface, giving business owners control over their data with a variety of device settings and event-driven rules that can trigger actions to enforce organizational security policies. The DataDefense settings and rules can be used individually, or in combination, to enable you to tailor the DataDefense controls to meet your organization's specific needs. Because it is centrally administered, DataDefense ensures business owner control of sensitive data without additional reliance on the policy compliance of individual end users.
DataDefense is Transparent so End User Acceptance is Assured
Business leaders have long been forced to depend on PC users' compliance with organizational security policies to protect sensitive corporate data. Unfortunately, users concerned with immediate business needs and personal productivity often sidestep these policies because they can be burdensome. The DataDefense solution provides silent mobile policy enforcement which removes compliance obligations from the user to protect corporate data. DataDefense is completely transparent to the user, therefore, there is no training required or new passwords to remember. In fact users will not need to alter their usual behavior at all.
Multi-Layered Approach Ensures Administrator Control Over Many Threats
DataDefense, a solution engineered to provide a PC data security tool that anticipates a multitude of threats, operational scenarios and user behaviors. The DataDefense application can detect behaviors which are inconsistent with authorized use and swiftly take action to eliminate the possibility of a security breach. Administrators can also use the DataDefense application to proactively enforce security policy. For example, a date and time can be chosen to eliminate specific files from any group of devices. In addition, the DataDefense solution will take pre-set administrator prescribed actions even when the device is removed from the network and internet.
Using its proprietary custom interface, the DataDefense solution also allows the business owner to centrally deploy and intelligently manage the Microsoft Windows Encrypting File System (EFS), which may be used in place of other costly and burdensome encryption products.
How DataDefense Works
If, for example, an employee loses a laptop containing secure and protecting company data and a thief attempts to crack the logon password, the DataDefense solution would recognize the attack and trigger one or more "Failed Logon Attempt"rules, either concurrently or in succession, which would take action like destroying the sensitive data.
In another situation, a manager reports that her laptop has been stolen. The DataDefense administrator changes her computer's DataDefense status to "Stolen." The next time the computer checks in via the internet, it receives a destruct command and the sensitive data on the hard drive is immediately destroyed.
If the thief fails to connect the device to the internet, thereby preventing the device from checking in with the DataDefense Server, special timers will expire and the data is destroyed anyway. Data may be overwritten then deleted; customized warnings and persistent system shutdowns are available as well.
ENHANCING AND EXTENDING SECURITY FOR PROTECTING CORPORATE DATA
Security of electronic data can be viewed in layers. There are some basic layers such as physical security and logon passwords that most companies routinely employ to protect and secure corporate data.This is similar to locking your front door and arming the alarm system when you leave home. The shortfall is that once a thief has breached these basic measures, they have full access to the device, the data residing on it, and can use it to gain access to corporate resources.
The typical security model is enhanced by integrating DataDefense with your traditional layers of security. The addition of the DataDefense solution to your security suite allows you to extend security into the domain where the user has full access while still providing data security even as the user is using the device.
Encryption is also used and extended beyond the typical security model into the area where the user has full access. This allows the administrator to continue to apply additional encryption beyond what the typical user might employ.
