We help you protect your data from loss and theft, comply with privacy laws, and safeguard your reputation. Symantec Data Loss Prevention software discovers, monitors, protects and manages your confidential data wherever it’s stored and used – across endpoints, mobile devices, network and storage systems. It consists of a unified management platform, content-aware detection servers, and lightweight endpoint agents. Unlike other data loss prevention solutions, Symantec is proven to work in highly distributed environments and scale up to hundreds of thousands of employees.
Management and Reporting
Ninety percent of DLP is about what you do after you find confidential data. With the Symantec Data Loss Prevention Enforce Platform, you can easily manage policies and remediation workflows, review incident snapshots, and measure risk reduction from a unified, web-based management platform.
The Enforce Platform is a powerful web-based management console where you manage data loss policies and workflows, review and remediate incidents, analyze and report risk reduction, and perform system administration.
It includes an advanced reporting module, Symantec Data Loss Prevention IT Analytics, that you can use to easily create reports and dashboards that communicate the ROI of your DLP program to executives, business stakeholders and auditors.
Laptops and Desktops
Employees are downloading and sending confidential data while in the office, on the road or at home. Symantec Data Loss Prevention for Endpoint monitors and protects data used on laptops and desktops, when users are on and off the corporate network.
Endpoint Discover scans and inventories internal hard drives on laptops and desktops for confidential data.
Endpoint Prevent monitors user activity on and off the corporate network; prevents confidential data from being copied or shared inappropriately over email, removable storage (e.g., USB, CD/DVD), printing and faxing, and cloud storage (e.g., Dropbox).
The Endpoint Agent monitors a wide range of user events on physical endpoints running Windows XP, Windows Vista, Windows 7, and now Windows 8.1; discovers data stored on Mac OS X; monitors virtual desktops and applications hosted by Citrix XenApp 6.5, VMware View and Microsoft Hyper-V; and monitors data transferred through the Microsoft Remote Desktop Protocol (RDP).
Employees are bringing their own devices to work and accessing confidential data from them, with or without permission from IT Security. In fact, a new study revealed that 2 out of 5 employees download work files to their personal smartphones and tablets. Security teams can now manage Bring Your Own Device (BYOD) policies while securing confidential data with Symantec Data Loss Prevention for Mobile.
Mobile Email Monitor detects confidential email downloaded by users to iPads, iPhones, and now Android devices over the Microsoft Exchange ActiveSync protocol.
Mobile Prevent monitors and protects outbound network communications sent from the native mail client, browser and other apps (e.g., Dropbox, Facebook) on iPads and iPhones.
Email and Web
Email and web are two of the most common channels for data loss. A recent survey found that 50 percent of employees regularly email work files from the office to personal accounts. Symantec Data Loss Prevention for Network monitors egress points and cloud email to prevent confidential data from being exposed over network protocols.
Cloud Prevent for Microsoft Office 365 detects confidential data in cloud email sent from Microsoft Exchange Online. It seamlessly extends your existing data loss policies and workflows so you can confidently migrate your Exchange servers to the Microsoft cloud. Cloud Prevent provides flexible deployment on-premises or in an Infrastructure as a Service (IaaS) environment. It also seamlessly integrates with Symantec Email Security.cloud to ensure final email delivery.
Network Monitor detects confidential data sent over high-risk network protocols without sampling or dropping packets: SMTP, HTTP, FTP, IM, NNTP, custom port-specific protocols, and now Internet Protocol Version 6 (IPv6) networks.
Network Prevent for Email detects confidential data in email; notifies users of policy violations; and blocks or routes email to encryption gateways for secure delivery. It supports integration with any SMTP-compliant Mail Transfer Agent (MTA) and cloud services such as Microsoft Exchange Online and Symantec Email Security.cloud.
Network Prevent for Web detects confidential data sent over HTTP and HTTPS; notifies users of policy violations; and blocks or conditionally removes data from web posts. It supports integration with any ICAP-compliant Web proxies and cloud services such as Google Postini and Symantec Web Security.coud.
File Shares, Databases and Document Repositories
Users are storing large amounts of confidential files on the corporate network with open access, which leaves them vulnerable to loss and theft. Symantec Data Loss Prevention for Storage scans your data centers to discover and protect confidential data stored on file shares, databases, and repositories.
Data Insight is a unique file monitoring technology that analyzes file access and usage patterns on network-attached storage (NAS) filers, Windows servers, and SharePoint. It identifies true data owners; calculates folder risk for prioritized remediation; correlates data owners with storage incidents; and alerts you to anomalous activity and outlier users.
Network Discover performs high-speed scanning of file servers and shares, databases, and document repositories including Microsoft SharePoint and SharePoint Online, Documentum and LiveLink.
Network Protect secures confidential files by quarantining, relocating, or applying policy-based encryption and digital rights management to exposed files and folders.
Self-Service Remediation Portal enables business data owners to review and remediate network file policy violations directly from an intuitive online portal, and streamlines the risk remediation process.
You can easily extend the functionality of Symantec Data Loss Prevention to other security and storage solutions from Symantec:
Symantec Backup Exec System Recovery – Data Loss Prevention integrates with Backup Exec System Recovery to enable scanning of backup images for confidential data.
Symantec Control Compliance Suite – Data Loss Prevention incident data can be imported into Control Compliance Suite to identify systems that may be subject to technical control policies based on the data that is stored on them.
Symantec Encryption – Data Loss Prevention integrates with Symantec Endpoint Encryption to enforce policy-based encryption of files as they are copied in real-time to USBs; it integrates with Symantec FileShare Encryption to extract, decrypt and analyze text in FileShare-encrypted documents; it integrates with Symantec Universal Gateway Email to enforce policy-based encryption of email and provide closed-loop confirmation of secure delivery in the Data Loss Prevention Enforce Platform.
Symantec Endpoint Protection – Data Loss Prevention integrates with Endpoint Protection to enforce policy-based lockdown (e.g., application control, port blocking, device control) on laptops and desktops.
Symantec Enterprise Vault – Powered by the Data Loss Prevention content detection engine, Enterprise Vault Data Classification Services provide policy-driven data classification and tagging services for archived email. Symantec Enterprise Vault Compliance Accelerator and Symantec Enterprise Vault Discovery Accelerator leverage the classification results to support records retention, legal compliance, and eDiscovery.
Symantec Messaging Gateway – Data Loss Prevention integrates with Messaging Gateway so you can easily review, release and route quarantined messages directly from the Data Loss Prevention Enforce Platform.
Symantec Mobile Management – Data Loss Prevention integrates with Mobile Management to enforce virtual private network settings on mobile devices, display on-screen notifications when users attempt to tamper with device profiles, and enforce policy-based remote wipes on devices.
EXTENDED DATA LOSS PREVENTION CAPABILITIES
Add-on scalable agents and options tailored to your environment
Show All Agents, Options and Add-OnsHide All Agents, Options and Add-Ons
SYMANTEC MESSAGING GATEWAY
Network Prevent for Email
Stop spam, malware, and data loss threats. New integration capabilities available in Symantec Data
Loss Prevention and Symantec Messaging Gateway deliver comprehensive inbound and outbound email protection for
Symantec Web Gateway, with its integrated ability to act as an enforcement point for Symantec Data
Loss Prevention, gives customers the ability to monitor and protect sensitive information being communicated across the
Symantec Enterprise Vault features Symantec's data loss prevention technology to analyze Microsoft
Exchange email content and metadata to help determine the archiving and retention strategy for all messages.