Many thanks for your reply.
1. Yes we would be going like this First SEP would be deployed.
2. Then PGP and DLP would be deployed to achieve the following goals
2.1 Emails would be encrypted, but before encryption every email will be first monitored through DLP rules so that no confidential document would be sent out.
2.2 Web browsing will be done via SWG but contents will be monitored through DLP.
2.3 USB Data should be encrypted along with WDE, But when any mobile user come we would be able to provide him encrypted USB/Portable device with Data that can be dcrypted by user with passphrase of any other methodoly without the usage of any third party software.
2.4 If someone trying to leak out any confidential data via USB then DLP should be monitoring the contents before Encryption.
2.5 Usage of SEP would be if any one trying to copy again and again then DLP should trigger some rule to get the USB blocked. or if DLP have this capbability then Excellent.
2.6 Do we need Data Protection center License as a MUST for these three to integrate, if yes then what benefits would be given by Data protection center.
The important thing would be desinging of the flow in this whole scnario.
Regards,
Kashif Sohail