Will ADLP improve the security of my file transfers?
Files transferred via Managed File Transfer (MFT) may bypass security policies. That’s because MFT generally isn’t integrated with a company’s data loss prevention (DLP) solution. So if you have personal or sensitive data entering / leaving the organisation by SFTP, or being exchanged between people via an ad hoc file exchange module, that data may not be picked up. Equally, malicious content may be able to enter the organisation the same way.
So is it possible to stop users from accidentally leaking personal or sensitive information, or to prevent malware being sent from a trusted partner, without completely disrupting business processes?
Adaptive Data Loss Prevention (ADLP) adds an additional layer of security to your MFT solution, detecting sensitive data, then carrying out a range of complex onward actions.
“The Clearswift SECURE ICAP Gateway (SIG) integrates with the MFT ICAP interface to enable the content inspection. This detects certain data from key words or patterns – such as credit card numbers, personally identifiable data, healthcare details, or a more complex examination for Intellectual Property. The results of the inspection are then passed back to the MFT workflow, which will determine what happens next.”
Steve Jeffery, Pre-Sales Engineer at Clearswift
Onward actions might include:
- Returning the file to the original sender;
- Quarantining the file and sending an email alert so it can be manually reviewed;
- Redacting data, eg: replacing digits in credit card data with XXXX.
““It works in reverse too for unwanted data acquisition,” explained Steve. “We worked with a hotel to reject incoming credit card data, which customers sometimes emailed in. The technology detected the data, returned it with the data redacted, and directed the customer to a secure payment portal.”
Some other use cases include:
- Removing metadata in a document history. This is particularly useful for ad hoc person-to-person transfers, where a document has been updated multiple times. An updated proposal for a new customer, for example, may still contain data relating to a previous customer in the document history;
- The anti-malware component will remove macros in a document, which can contain malicious code.
Integrating your MFT with Adaptive Data Loss Prevention technology will secure the entire flow of data in and out of your business. It does this without halting business operations when something is detected. It supports compliance with the GDPR and other requirements.
Not all MFT products support this integration. If you would like to discuss whether yours does, please get in touch. You can contact us via the web form, or call 0333 123 1240.