A functional component of the DeviceLock DLP, DeviceLock Discovery enables organizations to gain visibility and control over confidential “data at rest” stored across their IT environment in order to proactively prevent data breaches and achieve compliance with regulatory and corporate data security requirements.

By automatically scanning data residing on network shares, storage systems, and endpoint computers accessible to the DeviceLock Discovery Server, it locates documents with exposed sensitive content, provides options to protect them with remediation actions, and can initiate incident management procedures by sending real-time alerts to Security Information and Event Management (SIEM) systems used in the organization.

 

  • Functions
    • Scan and inspect content of files in the corporate IT environment
    • Detect content stored at wrong places
    • Remediate, alert, log and report data-at-rest policy violations
  • Structure
    • DeviceLock Discovery Server
    • DeviceLock Discovery Agent
    • Optionally – discovery module built in DeviceLock Agent
    • DeviceLock Management Console
  • Targets
    • Network shares and storage systems accessible via SMB
    • Windows endpoints: local file system & connected storage devices

 

A functional component of the DeviceLock DLP Suite, DeviceLock Discovery enables organizations to gain visibility and control over confidential “data at rest” stored across their IT environment in order to proactively prevent data breaches and achieve compliance with regulatory and corporate data security requirements. By automatically scanning data residing on network shares, Windows Servers, storage systems and Windows endpoint computers inside of the corporate network, DeviceLock Discovery locates documents with exposed sensitive content and provides options to protect them with remediation actions, as well as can initiate incident management procedures with real-time alerts sent to Security Information and Event Management (SIEM) systems and data security personnel in the organization.

 

  • Operation modes
    • Agentless Discovery Server via SMB
    • Agent-based  Discovery Agent or DeviceLock Agent scan local files, connected removable storage and accessible network shares on protected computers
    • Hybrid  configurable combination of scans performed by Server and Agents
    • Automatic non-interruptive Discovery Agent installation & removal centrally from Discovery Server
  • Content detection methods
    • Textual content – files, archives, images in graphical files and documents
    • Types of data – file types, file/document properties, embedded image properties
  • Remediation actions
    • Delete, Safe Delete, Delete Container
    • Set Permissions
    • Log, Alert, Notify User
    • Encrypt

 

For Datasheet Please Click here: