1 / 25

Secure Messaging Environment: Information Risk Management

Learn how to maintain a secure messaging environment across email, IM, web, and other protocols with information risk management. Protect your organization from data leaks and ensure regulatory compliance.

ajensen
Télécharger la présentation

Secure Messaging Environment: Information Risk Management

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Information Risk Management - Maintaining a Secure Messaging Environment across Email, IM, Web and other Protocols Brian Dainton – Information Risk Management Specialist MENA & S. Africa

  2. Agenda Symantec Enterprise Security Strategy 1 Information Risk Management 2 Information Foundation 2007 Customers 3 4

  3. Security 2.0 – Building On The Vision Point solutions – silos, complex Operationalizing security (central view, simple) People-based exploits Vulnerability exploits Information focus Infrastructure focus Security 1.0 Security 2.0

  4. Security Management ! i Security Dashboard Infrastructure Protection Cell Phone File Server Application Server Messaging Server Database Server Laptop Desktop Symantec’s Security Vision Information Risk Management

  5. Scope Of Information Is Expanding Voice Email Collaboration IM Digital Voice Mail, VoIP, … Yahoo!, AOL, MSN, LCS, … Files, SharePoint, Web, … Exchange,Domino, … • “88% of Enterprises want a unified archiving solution…” • Enterprise Strategy Group • October 2006 5

  6. Archival and Retention Management Policy and Governance Management Discovery and Analytics Management Resource Management Threat Management Keep Systems Up, Costs Down Keep Bad Things Out Keep Things As Long As Needed Keep Important Things In The Evolution of Information Risk Management Keep Things And Mine Them

  7. Corporate Information • Structured Information Stored In Databases • HR Records, Financial Information, Customer Records • Unstructured Information Stored In Email & File Servers • Source Code, Design Documents, Personal Information • Downloaded HR Records, Financial Information, Customer Records! File Server Messaging Server Database Server

  8. Messaging is Mission Critical Email is a mission critical application 75% of a company’s IP is contained in email 75% of all corporate litigation involves email discovery 70% of all corporate email is spam File Server Messaging Server Database Server 8

  9. Changing Threats to Data Security • Insiders have surpassed threats from external hackers • Majority of data leaks are due to faulty business practices or accidental disclosures

  10. Summary • Messaging is mission critical by default • The legal risk of messaging systems is increasing • Messaging is more than email • The threat landscape is changing, information leakage is emerging as the primary risk of messaging

  11. Information Risk Management (IRM) 2 1 4 3 Keep The Important Things In Keep The Bad Things Out Web Servers File Servers Email Servers IM Servers Find Things Easily When Needed Retain Things Only As Long As Necessary Data Loss Prevention External Threat Protection Electronic Discovery Archiving / Retention 11

  12. IRM Stakeholders Web Servers File Servers Email Servers IM Servers Executive Management & Messaging Dedicated Teams 1 2 4 3 Keep The Important Things In Retain Things Only As Long As Necessary Find Things Easily When Needed Keep The Bad Things Out Information Security Network/ Messaging Legal, HR & Compliance Messaging/ Storage 12

  13. The Symantec Path to IRM Phase 5 Information Risk Management Phase 4 Information Risk Management Phase 1 Best Of Breed Email Mgt Phase 3 Enterprise Messaging Mgt Phase 2 Email Security & Availability … EV 6.0Email, Files, DA EV 2007Int. Cont. Arch. SMS 8200AS, AV, CF EV 7.0Int. Cont. Arch. KVS 5.0Email Archiving BrightmailAnti-Spam Web 2007CF (BETA) SMS 8200AS, AV SMS 8300AS, AV, CF, IM … … 13

  14. Information Foundation 2007 Product Suite Components • Symantec Enterprise Vault • Provides a flexible archiving platform for email, IM, file system, SharePoint and other collaborative environments • Reduces storage costs and simplifies management, with powerful search and e-discovery capabilities • Symantec Mail Security 8300 Series • Provides integrated, best-of-breed antispam, antivirus, and content-filtering technologies that stop inbound and outbound email-borne threats • Helps organizations manage risks associated with data leakage, regulatory compliance & internal governance. • Symantec IM Manager • Provides seamless management, security, logging and archiving of corporate instant-messaging traffic

  15. Information Foundation 2007 Benefits Total Information Risk Protection A common Solution providing a comprehensive risk management foundation Intelligent content classification makes risk management a reality Integrated policy controls & incident management enable end-to-end remediation Lower Total Cost of Ownership Reduced system and management costs through a common archive Centralized audit-ability and discoverability for multiple data sources Lower vendor management & administration costs through a single vendor

  16. Information is Sensitive Protect employee, customer & patient data Demonstrate regulatory compliance Prevent loss of intellectual property • Social security • Credit cards • Account information • HIPAA, GLBA • PCI • State data privacy • Corporate IP • Sensitive information • Source code 16

  17. Typical Customer Today Gateway Groupware Archive Email Server Email Gateway Enterprise Archive IM Server IM Gateway Portal Server Web Gateway 17

  18. Symantec’s Approach Gateway Server Archive Email Gateway Enterprise Archive Email Server Categorization IM Gateway IM Server Retention Discovery Web Gateway Portal Server Hygiene Hygiene Content Control Content Control Integrated Product Suite from a Single Vendor, Single Price 18

  19. Market Leading Products A Recognized Leader In Security & Archiving ( + + ) Mail Security Enterprise Archiving IM Management Source: Gartner 19

  20. Information Foundation 2007Product Suite Components Information Foundation 20

  21. Summary - Information Risk Management Symantec’s solution helps optimise the performance of messaging systems, reduce the risk of downtime, control costs, helps to protect confidential information from leakage and demonstrate compliance with corporate IT policies and regulations.

  22. Proven Success • 6000+ customers and 8 MM+ users • Customers w/ 5 MM+ messages/day and 100K+ users • There are 40 accounts of more than 50,000 Exchange mailboxes using Enterprise Vault • Some International references: • 85,000+ Mailboxes Ministry of Defence (Holland) • 80,000+ Mailboxes Royal Bank of Canada (Canada) • 70,000 Mailboxes Wal-Mart (USA) • 65,000 Mailboxes ING (Netherlands) • 50,000 Mailboxes US Army Reserves (USA) • EADS and Eurocopter (France) • Some local references: • Dubai World, Mashreq Bank, Moroc Telecom • National Bank of Abu Dhabi, ADMA OPCO, GASCO…

  23. Return on Investment - ING Renault F1 Team • Challenge • Protect and help ensure 24x7 access to business-critical data • Reduce IT costs associated with searching and retrieving emails • Improve backup reliability • Archive expanding volume of email and provide search-driven access to archive • Solution • Email archival, discovery, and retrieval and backup and restore data protection solutions • Benefits • Saved $2.5 million per year in tangible, measured cost savings • Saved $112,000 in reduced support costs • Saved $1.8 million in productivity • Single, consistent enterprise backup across all platforms • Increased system availability by 1.9 percent, year on year • Improved database response by 40 percent Industry: Automotive

  24. Information Risk Management from Symantec Business Drivers Symantec Delivers • Spam blocking • Protection from email & IM viruses • Manage email & messaging systems • Email management consolidation • Gartner Magic Quadrant Leader in Security Boundary & Archiving & Forrester leader • Only vendor with perfect rating on the virus bulletin Anti-virus effectiveness testing • Scalable open architecture: hardware agnostic MESSAGING MANAGEMENT • Records retention • Email & files system storage & performance optimization • Exchange & Notes migration • Only Gartner Magic Quadrant Leader in Archiving • Scalable open architecture: hardware agnostic • Strongest integration in MSFT; Exchange; Sharepoint, LCS, & File System & IM ARCHIVING • Protect sensitive customer and company information • Meet regulatory requirements for reporting and disclosure • Leader in endpoint security, archiving & messaging security DATA LOSS PROTECTION • Litigation readiness & response • Internal investigations • Audit • Purpose built solution for litigation support including automated legal hold DISCOVERY

  25. Thank You Brian Dainton Brian_dainton@symantec.com

More Related