Auditing & Reporting
You’ve spent time implementing your data classification solution, but this is where data classification really adds value.
When the CSO or CISO asks you to justify spend in data security, or you need to review your security policy to prove compliance, you need hard data.
Data Classification solutions offer a customisable dashboard and bespoke reporting, so you’ll be able to discover the journey of your data; where it’s stored, who sees it, who can access it, and where attempts at unauthorised access have been made … and blocked.
Auditing for compliance
With an increasing pressure on companies coming from legislation, such as GDPR, SOX and HIPAA, to prove policies are in place to protect their data, any-time auditing becomes easy. You can have confidence in your compliance, and the information you need at your fingertips.
Dashboards for data analysis
Data Classification solutions usually come with an in-built customisable dashboard that you can configure to tell you what you need to know. Visual dashboards work in real time, displaying activity as it happens. By drilling down into specific data classifications or activities you can receive granular data, allowing you to understand and act on behavioural patterns and trends and support forensic enquiries.
There is also the option to customise reports that can keep you up to date, run at a frequency you choose for each classification of documents. These versatile reports can reflect activities by user, business area or organisation to show you how and where your data is travelling.
Advanced data reporting capabilities
Every activity your users make, from the selection or downgrading of a classification to the saving of a file, is recordedand sent to a local Windows events log.
Advanced Data Classification solutions can report on this using built-in reporting tools, or if you prefer, these logs can be automatically forwarded to a SIEM solution for monitoring in a SOC by your company’s security specialists. This automation can save your IT team hours laboriously reviewing logs, making faster and more thorough log reviews for unusual patterns of behaviour.
Deployments
We secure the entire journey of your data, from consultancy and technical design, right through to installation, training and support.
Challenge: Controlling data with vast user access
With over 4000 end users, an Insurance industry client came to HANDD for help. They needed to ensure policy details couldn’t be sent to unauthorised external parties by email. Using data classification, we identified and classified new documents containing policy numbers. Then we integrated the classification platform with the client’s Symantec DLP solution, enabling DLP to work more efficiently to ensure sensitive content only travels to cleared recipients.
Challenge: Managing compliance with large volumes of legacy data
With billions of records to sift through and strict compliance mandates, a global bank needed to get control over their legacy data. First, using a discovery tool HANDD helped them identify their sensitive data and discover where it was stored. Then, we labelled their data using Data Classification. This enabled them to apply protective measures efficiently to their most sensitive files for the first time.
Challenge: Ad-hoc application of protective measures
Staff typing SECURE into email subject lines to trigger downstream protection of sensitive data left plenty of scope for error. At this leading financial services organisation classification was inconsistent and ad-hoc. Security of delivery was unreliable. They contacted HANDD for help improving their classification processes. We implemented a Data Classification solution that would automatically classify emails. Integrating with a message gateway it prevents data falling into the wrong hands.
Challenge: Controlling data with vast user access
With over 4000 end users, an Insurance industry client came to HANDD for help. They needed to ensure policy details couldn’t be sent to unauthorised external parties by email. Using data classification, we identified and classified new documents containing policy numbers. Then we integrated the classification platform with the client’s Symantec DLP solution, enabling DLP to work more efficiently to ensure sensitive content only travels to cleared recipients.
Challenge: Managing compliance with large volumes of legacy data
With billions of records to sift through and strict compliance mandates, a global bank needed to get control over their legacy data. First, using a discovery tool HANDD helped them identify their sensitive data and discover where it was stored. Then, we labelled their data using Data Classification. This enabled them to apply protective measures efficiently to their most sensitive files for the first time.
Challenge: Ad-hoc application of protective measures
Staff typing SECURE into email subject lines to trigger downstream protection of sensitive data left plenty of scope for error. At this leading financial services organisation classification was inconsistent and ad-hoc. Security of delivery was unreliable. They contacted HANDD for help improving their classification processes. We implemented a Data Classification solution that would automatically classify emails. Integrating with a message gateway it prevents data falling into the wrong hands.