Automation eliminates users’ need to decide the security policy for a sensitive email or document. It reduces user friction, which can hamper user adoption—even automation in a system flow results in improved user experience – e.g., single sign-on.
Automating data protection provides more considerable benefits to the IT departments within a large organization. Let us look at Seclore Policy Federation as an example to understand the benefit of automation better. Seclore Policy Federation enables organizations to federate security policies defined in an enterprise application, making it the single source of truth. Leveraging the application’s security policies eliminates maintaining security policies in another system and updating them if the configuration in the enterprise application changes. Federating security policies also reduces significantly the overall administrative overhead — apart from the initial configuration — the incremental IT administrative overhead in maintaining security policies in Seclore Unified Policy Server is ZERO.
When data protection is automated, the scope of manual errors is ZERO!
Case Study: ZERO Incremental IT Overhead, ZERO Manual Error, ZERO Exposure
The value of automation in data protection is quickly realized in large organizations. One of Seclore’s customers, a large financial corporation with over 100,000 users, has a flexible work policy where employees can request an internal transfer to learn and work on different organizational functions. The organization records over 8000 internal transfers each year – the daily average is approximately 40 internal transfers per working day.
For each transfer, IT must reallocate the user’s assets to the new team, re-align organizational hierarchy, revoke access to resources in the previous team, and provide access to the new team’s resources. And then, to add to the complexity, manage remote workers. It became a logistical nightmare for IT to access each users’ system to ensure sensitive data was no longer accessible to them. And their flexible internal transfer policy required additional IT administrators allocated just for this activity.
Another challenge they faced was that sensitive data was protected only when the documents were within the enterprise application. When employees transferred to a new team, they continued accessing documents downloaded on their desktop previously. The unprotected documents on employee desktops exposed the organization to potential insider data leaks. In a recent Dell Survey, 72% surveyed said they were willing to share confidential, sensitive, and regulated data (CSRD), and 37% said they were willing to share CRSI data with an unauthorized person. With more than 40 transfers processed every day, the organization was sitting on a ticking bomb.
Seclore’s ability to automate data protection ensures documents leaving an enterprise application are automatically protected, eliminating the need for user intervention. Seclore Policy Federation ensures that the IT admins do not have to manage permission in a separate system. As soon as a user’s permissions are revoked from a previous team’s resources in the enterprise application, the user is automatically revoked from downloaded documents, anywhere in the world, AUTOMATICALLY – with ZERO IT Admin effort and ZERO manual errors. By revoking access to documents, regardless of where they reside, a chance of a data breach through insider threat or unauthorized internal sharing is diminished when an employee changes teams. Plus, IT administration resources are reduced, and the risk of a costly data breach is averted, saving the organization from reputation damage, financial loss, and regulatory fines.
Seclore’s Offering for Automated Protection:
Seclore’s open Data-Centric Security Platform enables organizations to seamlessly integrate and automate their existing investments in data-centric security (DLP, CASB, Data Classification, Collaboration (EFSS, ECM, ERP) and Reporting (SIEM) systems with Seclore Rights Management’s advanced data protection and tracking. The open framework leverages metadata to automate processes between the various systems, ensuring sensitive information is automatically protected without user intervention as documents are discovered, classified, downloaded, or emailed.
All this with no incremental IT admin costs, ZERO manual errors and ZERO exposure to a Data Breach!