Kreken wrote: » For email DLP, I just recently installed Cisco IronPort. So far it works great and is relatively easy to implement into the environment. Nice integration with Exchange and AD. It is very decently priced too. For removable media, I created the GPO to remove write access to any kind of removable media. I was looking at Checkpoint website today and saw Checkpoint Go (Check Point GO | Check Point Software) which looks very similar to Cisco discontinued Secure Desktop. Something to consider if you have remote users working with a sensitive data.
theanimal wrote: » I kind of feel bad requesting all this info and trials from so many companies when ultimately only one is getting picked.
theanimal wrote: » Just to start off - I haven't been in my security position very long so I don't have the most experience in the world, so forgive me there. The company I work for passes all PCI DSS requirements but we have no sort of DLP in place. So, I started toying around with OpenDLP originally which worked fantastic for finding data containing Credit Cards/PANs/SSN but it does have many flaws, and is just a project some guy made and has no support. Upon using this I found a lot of data in various places just sitting around that shouldn't be which opened up the doors for me to implement some sort of DLP. Then I started testing out MyDLP which compared to OpenDLP, obviously had a much cleaner interface with more advanced options, though lacking some simple aspects of OpenDLP like a progress bar, total file sizes, files scanned, estimated time to completion, what the string/text found was, etc. I've been speaking with MyDLP and they've told me they're releasing an update sometime this week, I'll have to see how it is, but as of now I'm not completely sold on the product. We're mainly looking for something that scans shares/servers/PC's for Credit Cards/PANs/SSN/other sensitive data and reports it the string/text found and file/file location, but I would also like to implement some sort of removable media and email DLP, but it isn't a top priority for us at the moment. I'm currently in contact with Symantec, McAfee, EMC, CheckPoint, and CA to look at the features of their products an; this may be a stupid question but, what other products are out there? What DLP solutions does anyone have experience with, do you like it, pros/cons?
[LIST] [*]Manual and scheduled locking of various leakage points, including Flash drive, DVD/CD writers, PCMCIA ports, Network ports, Printer ports, Infrared ports and Bluetooth port. [*][B]Disable ports[/B] to prevent unauthorized access. [*]File Transfer Log maintains detailed record of all the files added, deleted, transferred, or renamed in USB storage devices. [*][B]Block USB[/B] and other ports when PC is unused or idle [*]Secure important information with unique Print Screen Locking feature. [*]Disable ports for schedule duration. [*][B]Restrict USB[/B] usage with USB read only feature to make any mass storage device read only. [*]Email filtering log displays the complete report of blocked emails of MS Outlook client. [*]Activity log feature keeps a track of activities performed on [B]Port Locker[/B] software, including all the changes done on settings or locking and unlocking of ports. [*]White listing feature allows access to authorized USB devices, with the help of unique hardware ID. [*]Alerts, if access is detected on Locked Ports [/LIST]
theanimal wrote: » I'm currently in contact with Symantec, McAfee, EMC, CheckPoint, and CA to look at the features of their products an; this may be a stupid question but, what other products are out there? What DLP solutions does anyone have experience with, do you like it, pros/cons?
