|
Protegrity is an experienced leader delivering the most comprehensive suite of data protection software and service in the market. Leading companies choose Protegrity to protect their most valuable asset — their data.
Protegrity is Defiance Suite continuously secures sensitive data while it is "In Use", "In Transit", "At Rest" and "In Archives". Protegrity delivers application, database, file, and storage security for enterprise-class, defense-in-depth protection.
Protegrity Defiance Suite provides:
- Centralized definition and control of security and privacy policy throughout the enterprise
- Protection for major application packages as well as "homegrown" applications
- Support for all major databases and operating systems
- Comprehensive auditing, alerting and management / regulatory compliance reporting
Based on years of experience in data security, Protegrity has developed a world-class Data Security Strategies (DSS) consulting practice to complement our technology solutions. Our DSS consultants guide organizations to identify vulnerabilities, characterize current data and organizational domains, and mitigate exposure and risk.
Protegrity is unique DSS methodology is an in-depth investigative technique that helps clients understand how to reduce the risk and costs of data security breaches, and how to improve the effectiveness of their data protection technology investments.
Centralized Management
Defiance Suite empowers your security staff to define, distribute, enforce, and audit security policies in line with your business objectives. Centralized management improves operational efficiency while reducing costs. It is the only way an organization can be assured of consistent, enterprise-wide security policy enforcement. It dramatically simplifies the rollout of policy changes and updates to remote locations for enforcement.
Protegrity supports a wide range of computing environments to ensure that our solution works in your world. We deliver optimal control of policies, access roles and permissions. With complete separation of duties of security management from database, operating system and application management, Protegrity guards against malicious "super-user" activity.
Protegrity is Intelligent Escalation enables security managers to tighten security across multiple platforms automatically. Based on predefined policies to defend against internal and external threats, an alert can trigger notification and a response in other systems.
Comprehensive Data Protection
Protection extends from data acquisition and use, to backup, archive and recovery; it ranges all the way from external users of Web applications to internal users of corporate databases and files. Protegrity focuses on protection of sensitive information throughout its functional lifecycle within your enterprise and beyond. Unlike standalone security appliances and point products, Protegrity delivers end-to-end protection across all layers of your security challenge.
Protegrity Defiance suite delivers:
- Highly scalable, enterprise-class software platforms that detect and block unauthorized access to corporate data, and re-direct malicious behavior
- Complete policy-driven control and audit of user behavior that is critical to satisfy your auditors and regulators.
- Granular protection of only the sensitive data your organization needs to protect so security does not get in the way of business.
- Strong patented key management that ensures the data is secure today, and you can recover your archives in the future.
Control
Controlling your enterprise security requires the ability to define policy for critical applications and data storage. Policies encompass data in-use, data-at-rest, and all the applications, and other functional pathways, that your enterprise relies on to access sensitive data
- Role-based policies – Defiance Suite delivers policies that identify distinct access roles, and duties, on a user-by user basis, across the enterprise.
- Boundary setting – Defiance Suite applies limits on authorized data use, necessary to avoid internally generated breaches. Setting limits as part of data policy is critical to overall enterprise security.
Auditing
Logging user access and events is a basic requirement. In addition to tracking users’ interactions with sensitive data, it is also critical to track the activities of security administrators as they amend and adjust security policies. Defiance Suite provides for granular definition of which actions should be logged, and ensures that logs are secure. By delivering control over what is being logged, the logs become manageable and useful for forensic investigations.
- Usage activity audit: log activity such as authorized and unauthorized requests for information – enables you to answer the question "who did what, when?"
- Extensive forensics: detail activity, and sharpen security policy focus.
- Protected audit logs: the audit logs themselves are secured, to protect against tampering, and to prevent a defacement of the audit record.
Reporting & Alerting
Reporting and monitoring security policy is based on a structured information flow from protection points to the central administration console. Most regulations stipulate that a security system must provide "reasonable protection from threats."Your security organization needs to know that its security policies are in effect delivering security for your organization. Reviewing the activities at all the protection points in a consolidated manner provides the greatest visibility into threats. Defiance Suite has the most comprehensive enterprise reporting provisions of any solution on the market:
- Alerting: each security protection point is subject to malicious attack, and when an attack is detected, it is important to raise an alert and potentially tighten down related systems. Defiance Suite incorporates Intelligent Escalation to drive notification and action.
- Compliance reporting: one-click reports for event analysis, executive summaries, and auditing, help to manage industry, regulatory, and government legislative mandates such as: PCI, US state privacy laws (i.e., California SB1386), Sarbanes-Oxley, GLBA, HIPAA, PIPEDA, and the EU Privacy Directive.
- Administrative reporting: standard reports to monitor protection points and usage statistics.
- Managerial reporting: standard and dynamic reporting to inform security and IT management of the results and contribution and the value of the security investment.
|
