Case Studies

Overview
Resources

Financial Services

Manufacturing and High Tech

Aerospace and Defense

Public Services and Utilities

 

Wall Street Financial Institution

"A host-based approach to DLP allows us to actually catch and address data loss before it occurs and provides a better end user experience. Network based solutions cannot be used to prevent in our environment - there are just too many false-positives. The Enterprise DLP product is the only one that takes a platform approach to DLP, allowing it to address many of our DLP requirements for information barrier capabilities across business lines." -- Executive Director

Goal:

  • Protect data across all endpoints and applications.
  • Maintain an information barrier between teams for SEC compliance.
  • Ensure client data is handled properly.

Problem

  • IT department of a well-known institutional bank manages all endpoints (laptops/desktops) & Office applications.
  • Need to maintain information barriers so analyst researchers do not disclose unpublished research to investment banking.
  • Customer cannot be disclosed to improper or unintended recipients.
  • Hidden data within documents must be removed prior to sending outside the organization, primarily via email.
  • Manage disclosure via removable media; connected USB devices are not officially company sanctioned.

Why NextLabs?

  • Single policies can be applied across multiple applications and control points.
  • No other vendor has a robust information barriers capability.
  • Addresses many critical vectors of potential risk from general desktop document use within Microsoft Office, email communications to USB.
  • Native support of AD and LDAP provide identity based DLP with dynamic role evaluation within the company and externally, such as researchers and sales.
  • Multi-channel communications protection covers the various methods in which a user could share data.

 

Leading Fortune 100 Electronic Manufacturing Services Company

"The NextLabs solution enabled us to demonstrate our adherence to IP protection and information handling requirements of our OEM clients and instilled confidence that their data will be handled properly. Automated information handling policies allow us to precisely protect us from risky use of data so business processes are not negatively affected. Our internal teams are empowered through educational policy messages on proper handling procedures. Collaboration, productivity and morale improved." -- Vice President, Operations

Goal:

  • Protecting internal and customer intellectual property covering product designs, manufacturing processes, RFPs, business plans, and financials.
  • Provide information barriers between teams engaged in contracts with competitive clients.
  • Multiple contracts; has sensitive client IP.
  • OEMs require design and manufacture of products that compete with each other.

Problem:

  • A high tech outsource manufacturing services provider for OEMs seeks to automate and streamline manual and physical controls.
  • Excessive, expensive controls to prevent leakage and conflict of interest between teams.
  • Physically isolated networks in the corporation.
  • Disabling communications ports on PCs (prevents USB access).
  • Designers are only allowed to use shared workstation for email, no web access provided.
  • Collaboration internally or with partners and clients is inconvenient and unproductive when information needs to be shared.
  • IT infrastructure is inflexible. Cost from redundancies in maintaining internal isolated networks. Only one node on an external facing network has WWW or external email access.
  • Personnel feel mistrusted and “second-class”.

Why NextLabs?

  • Comprehensive Endpoint Data Protection provides robust information barriers that establish collaboration domains.
  • Ensures proper information usage and prevents IP leakage at endpoints.
  • Consistent information entitlement controls that protect client data across multiple SharePoint and File Server repositories.
  • Data level and application level control through support for CAD, EDA, and PDM tools.
  • Policy Assistants provide policy alerts to educate end-users and policy-driven workflow to streamline approval process.

 

 

A Regional Full Service Telecommunications Provider

"Enterprise DLP allows us to focus on simply data loss discovery and softer remediation responses, like reporting and user education to solve our problem, without interfering with normal user workflow." -- President and CEO

Goal:

  • Protecting business confidential information including financial documents, HR, and business confidential data.
  • Ensure information is being handled, per corporate policy.

Problem:

  • Confidential information resides on Windows file servers and local desktops, including PCs and laptops.
  • There was no visibility into how this information was being handled, per corporate policy.
  • Smaller IT department requires a solution that is easy to manage.

Why NextLabs?

  • The NextLabs solution takes a complete approach by not only preventing misuse of data, but providing visibility by monitoring how information is used, as well as automated alerts in educating users how to handle data properly.
  • The solution was the only solution to monitor both endpoints and file servers in a unified manner and across the breadth of Microsoft Windows and Office products.
  • Universal controls are important for consistency across client desktops and laptops, and servers, with common reporting to ensure a picture of complete visibility.
  • NextLabs solutions are easy to maintain without heavy IT involvement—Policy creation and deployment must be simple for business users to manage.

 

 

Global Enterprise Independent Software Vendor (ISV)

"No other products provided both out-of-box solutions for scenarios such as mobile user data loss prevention and IP protection, while also providing the flexibility of a platform that allowed us to integrate across different applications and systems we use in our business" -- General Manager

Goal

  • Protect internal intellectual property (IP) and source code that requires protection from data loss.

Problem

  • The protection must apply not only own IP and source code, but also to the source code that is licensed from OEM partners.
  • Large base of mobile employees, often disconnected, requires protection to be enforced both on and offline.

Why NextLabs?

  • The unique approach of extensible enforcement points provided a distributed solution that could provide portable policy enforcement.
  • NextLabs provided solutions does the difficult work of developing a common policy decision point (PDP) that easily integrates with various applications and systems, many of them unique for managing source code and IP.

 

 

Large Semiconductor Equipment Manufacturer

Goal

  • Ensure company’s critical IP exported from Web and enterprise applications are protected.
  • Ensure IP information is shared on as needed basis.
  • Ensure client data is protected against stolen laptops.

Problem

  • IT department of a well-known  semiconductor company is rolling out applications to manage  knowledge base and Intellectual property.
  • Information is protected in the web and server applications; however when it is exported out of the application controls needs to be applied to ensure proper usage and handling of the information.
  • Information should only be accessed on need to know basis.
  • Access to IP information should be renewed on periodic basis.
  • Exported IP information should be protected against lost or stolen laptops.
  • Managing disclosure via removable media; connected USB devices are not officially company sanctioned.

Why NextLabs?

  • Single policies can be applied across multiple applications and control points.
  • No other vendors provide a solution that seamlessly integrates with multiple IP repositories and applications.
  • Encryption and decryption of information should be transparent to the user. NextLabs is the only solution that offers automated encryption and decryption of information seamless to user.
  • Native support of AD and LDAP provide identity based DLP with dynamic role evaluation.
  • Ability to control access to information based on context such as user, application, time, location, remote access, access renewal and content.

 

An Aerospace and Defense Electronics Systems Joint Venture

Goals

  • Track ITAR technical data export
  • Prevent unauthorized access of ITAR technical data by non-US or non-exempted or unauthorized Foreign Nationals
  • Detect and prevent inadvertent leakage of ITAR data to non-ITAR systems caused by copying or distribution of data
  • Prevent copying of ITAR controlled data to Removable Media
  • Allow only authorized personnel to print ITAR controlled data

Problem

  • A broad range of ITAR related policies covering information sharing among US and non-US persons, between the company and non-US companies,
  • Information and technical data communicated in various enterprise document types including Microsoft Word, Microsoft Excel, design files, and Adobe PDF.

Why NextLabs?

  • Easy policy specification, deployment, updating and retirement across the entire policy lifecycle
  • Flexible policies that cover a breadth of data access and usage scenarios, and a wide breadth
  • Simple workflow and automation encrypts ITAR information when copied to local drive to prevent against lost/stolen laptops
  • Simple workflow process secures Compliance Officer approval, when ITAR information is shared with non-US personal
  • Simple workflow automatically appends disclaimers when ITAR information is emailed outside the company
  • Automated matching, accounting and fine-grained detailed reporting of information exports to export licenses license  (TAA or DSP)
  • Fine-grained detailed reporting of access and usage of ITAR information supports auditing and compliance demonstration

 
 
Datasheet-Information-Risk-Management-Compliance-Enterprise-DLP