Perimetrix, a leader in business-driven security management technologies and services, launched an innovative service to assist organisations in identifying security vulnerabilities and risks, and implementing a strategy for improved efficacy that is consistent, sustainable, measurable and positively impacts the bottom line.
The Sensitive Data Vulnerability Evaluation (SDVE) accurately identifies the top data security and privacy priorities, reviews information security policies, associated workflow processes, data classification metrics, and assists in positioning organisations toward compliance with regulatory demands.
An essential component of the SDVE is the deployment of the SafeSpace tool to assist in the automated classification of sensitive data - independent of Meta Data, measurement of data leakage vulnerabilities, monitoring of data movements, and real-time notification of potential violations, thus giving a client a realistic view of their current business reality and risk. SafeSpace is an unsurpassed blend of DLP, IRM, ILM and SIEM, with real-time notification built-in.
Perimetrix MD Cindy Durston explains that as a matter of 'best practice', it is recommended that companies review at least annually their systems of internal controls over using and sharing of sensitive and confidential information.
The SDVE provides companies with intelligence into the relationship between people, processes and technology, and the compounding vulnerabilities posed by this collective. The SDVE also proposes what interventions are best suited to bring the required changes to ensure maximum information security within the company and optimise return on investment from the various technologies deployed across the company.
Durston states that most companies clearly understand the value and importance of ensuring the integrity, confidentiality, and availability of their information. Executives and boards of companies are acutely aware that data leakage or exposure of critical business information may not only lead to the interruption of business services, but may also damage reputation and stakeholder confidence, especially if breaches are publicised.
The dilemma for many companies is how to assure authorised access to information to enable operations whilst protecting the business. At the core of the problem is often the lack of a system whereby confidential or commercially sensitive information is clearly identifiable; whereby employees are aware of their obligations; and whereby the company has identified ways to mitigate the risk of confidential information being leaked, albeit unintentionally or even stolen by an employee.
Simply defining information as confidential will not make it confidential. The solution to successfully safeguarding critical and sensitive business information from unauthorised transmission or disclosure is reliant on the alignment of security-conscious people, effective processes and sophisticated technology. To make data leakage protection and prevention a robust reality in any organisation, the business value of data must be realised in order to determine and implement the appropriate level of IT security. These control elements work together to help ensure that data is utilised in its intended manner.
Armscor, one of the Perimetrix clients to use the SDVE, sited multiple benefits to their organisation. Ms Vuyo Menye, Senior Manager Information Management, had the following comment: “The SDVE is extremely effective and it concisely determines the vulnerabilities in an organisation that could be detrimental to effective execution of a robust information management and information security strategy. It provided us with pertinent information pertaining to the risks and vulnerabilities in our organisation, and the potential impact it would have on business if not addressed. This assisted us in positioning our strategic roadmap towards regulatory compliance.”
Perimetrix strongly promotes the notion that good information security management should allow the right people access to the right information over a secure infrastructure, enabling cost-efficient protection of information assets.
Share
Perimetrix Holdings
Perimetrix Holdings is a data leakage prevention software company, focused on the distribution and implementation of the Perimetrix SafeSpace software, as an integral part of a confidential information security analysis system. SafeSpace protects sensitive and confidential data against internal information security threats through their Secret Document Lifecycle revolutionary software.
The product is developed by Perimetrix, a Russian company based in Moscow, and a member of the CompuLink Group, the leading IT alliance in Russia. The founder members of the company have expert knowledge and experience in international intelligence, and in particular information security, which they have put to excellent use in the design and delivery of a world-class solution to safeguard organisations against internal data loss threats.