SIRVA, Inc.
Enterprise organizations are faced with the challenge of understanding what is considered sensitive information and protecting the proliferation of that information. Identifying sensitive information, such as source code, patient information, financial information, product plans, drug formulas, or other intellectual property, is a difficult task that generally requires collaboration amongst information security professionals as well as business unit stakeholders. To further increase the challenge, sensitive information continues to change as products are released or milestones are reached.
Reconnex Data-in-Motion provides robust information security protection and visibility that allows enterprise organizations to not only understand where their sensitive data is going, but also help organizations understand what their sensitive data is.
Reconnex Data-in-Motion leverages the purpose-built, performance-oriented, hardened iGuard appliance family, deployed at network ingress and egress points, to classify and index incoming and outgoing traffic in real time. Traffic entering or leaving the network is then analyzed against a series of information rules to determine where broken business processes may exist or detect the presence of a leak of sensitive information. .
Reconnex Data-in-Motion helps you to protect your brand and protect your business. By providing visibility into and control over the propagation of the information that is critical to your business, Reconnex Data-in-Motion helps prevent leakage of sensitive information such as intellectual property or privacy data, while also helping you to ensure that your corporate resources are used in a manner that conforms to corporate acceptable use policies. Incidents of data leakage continue to make headline news-costing enterprise organizations hundreds of thousands or even millions of dollars -not to mention the impact to the company reputation.
Consider the following real-world examples:
- A large fortune 500 company found that one of its servers containing its sensitive IP was compromised and had malicious software sending intellectual property using an IRC protocol over TCP port 80, which was considered legitimate and permitted by network security devices.
- A similar case in higher education, a major university discovered one of its servers containing Social Security Numbers and personally-identifiable information for 137,000 students and alumni had been repeatedly penetrated by hackers from the US and international locations for over a year. The university is now facing a class action lawsuit by those affected, alleging violation of privacy.
- A large health care provider was communicating with bill partners without having encryption properly established on their emails that contained patient health care information, causing a violation of HIPAA compliance and costing thousands of dollars.
- A large food service company was required to disclose to the public that it had lost a number of laptop computers containing private information on over 50,000 individuals that were associated with the company, including personally identifiable information (PII) and Social Security Numbers.
- A financial services provider was required to disclose to its customers that its systems had been compromised, and account information and personally-identifiable information from a large number of customers had been extracted from the company.
The Reconnex Data-in-Motion solution helps organizations protect information critical to their business, protect corporate brand identity and public perception, and maintain compliance with regulation.
The Reconnex Data-in-Motion solution provides the following benefits to your organization
- Better Adherence to Compliance and Regulations: Leaks of privacy data, such as patient information, financial data, or customer information, are recorded and can be blocked to allow remediation. Reconnex identifies and blocks situations that put compliance with regulation at jeopardy, which helps minimize fees associated with compliance violations while reducing time to visibility and remediation of such incidents.
- Understand and Identify Intellectual Property: The state-of-the-art Reconnex information capture database enables organizations to adapt as intellectual property or its sensitivity changes. With Reconnex, identifying intellectual property is streamlined, thereby allowing you better visibility and control in a shorter amount of time.
- Protect Sensitive Information: Propagation of intellectual property and other sensitive information can be stopped, thereby ensuring competitive posture and brand identity are maintained. All violations are recorded and can be managed through the integrated Reconnex case management system, allowing multiple stakeholders to act upon a series of incidents.
- Ensure Acceptable-use of Corporate Resources: Exchanges of questionable content, including text, images, or other media files, is logged and can be blocked to ensure adherence to company policies surrounding how employees and associates leverage corporate infrastructure.
- Historical Data Analysis: By providing a unique historical capture database, organizations can perform searches against past network traffic patterns to understand network usage, improve rule accuracy, and remediate broken business processes.
Based on Reconnex's purpose-built turn-key iGuard appliance, the Data-in-Motion solution includes the following technology features:
- Architecture for Performance: Reconnex uniquely supports challenging high-throughput network environments through a number of patented hardware and software optimizations that ensure that content classification, inspection, and remediation can be performed in even the most demanding networks.
- Port- and Protocol-agnostic Application Classification: Reconnex analyzes all incoming and outgoing traffic to classify communications and content to then determine if policy violations occur. Using our patented "all ports / all protocols" approach, no up front mapping of applications to ports are required. Reconnex will automatically determine what application is in use, regardless of port number.
- Historical Information Capture Database: Reconnex captures all incoming and outgoing traffic into a unique historical information capture database, which allows the administrator to perform queries against historical data for the purposes of forensics, investigations, search, rule and policy tuning, and understanding behavior.
- Fine-grained Controls and Flexible Content Definition: Reconnex provides flexible content definition to allow accurate detection of sensitive information through the use of content types, keywords, and templates. Concepts provide a powerful framework for defining structures of sensitive information, including regular expressions, proximity, locality, frequency, weights, and match percentage. Documents can be registered directly with Reconnex to ensure protection of specifics sets of information, even if the information has been plagiarized, conjugated, transposed, or otherwise changed.
- Industry-leading Remediation Capabilities: By integrating with 3rd party mail transfer agents, security proxies, network switches, encryption gateways, and firewalls, Reconnex can enforce remediation when policy violations occur, including encrypting and blocking content. End users can also be notified of and educated about the violation to correct behavior.
- Bi-directional Operation: Reconnex provides content classification, inspection, and remediation for both directions of traffic flow—incoming and outgoing—to allow you full visibility and control to information entering or leaving your network.
- Centralized Management and Monitoring: Reconnex Data-in-Motion integrates seamlessly into the Reconnex inSight Console for centralized management, incidents and case management, device configuration and provisioning, rule and policy definition, device and system monitoring, and system-wide or device-specific search against the capture database.
