Enforce USB Security Policies for Removable Media Devices, Data Encryption and Port Protection with Lumension Device Control.

The problem of data leakage due to the accidental or sometimes malicious use of removable devices and/or removable media has reached alarming levels. In fact, over 85% of privacy and security professionals reported at least one breach and almost 64% reported multiple breaches that required notification.

Overview

Lumension Device Control, the primary component of Lumension® Data Protection solution enforces organization-wide usage policies for removable devices, removable media, and data (such as read/write, encryption). Using a whitelist/"default deny" approach, administrators can centrally manage your devices and data. Lumension Device Control enables organizations to embrace productivity-enhancing tools while limiting the potential for data leakage and its impact.

How It Works

• Discover-Identify all removable devices that are now or have ever been connected to your endpoints through the use of a "learning" mode that allows you to collect information without disrupting business.

• Assess-Define rules at both default and machine-specific levels for groups and individual users with regards to device access by class, models and/or specific ID and uniquely identify and authorize specific media. These permissions can be linked to the user and user group information stored in Microsoft Active Directory or Novell eDirectory.

• Implement-Enforce device and data usage policies by: file copy limitation (amount per day, time of day) and file type filtering. You can also enforce the encryption of data moved onto removable devices/media and apply permissions to specific and/or groups of endpoints, ports, devices and users (both on- and off-line), including scheduled/temporary access.

• Monitor-Continuously monitor the effectiveness of device and data usage policies in real time and identify potential security threats by logging all device connections, recording all policy changes and administrator activities and tracking all file transfers by file name and content type. You can even keep a copy of every file that is transferred to or from a removable device using our patented bi-directional shadowing technology.

• Report-Create both standard and customized reports on all device and data activity showing allowed and blocked events, which can be saved into a repository, shared via email, and/or imported into 3rd party applications. Detailed forensic reports comprehensive auditing capabilities enable you to demonstrate compliance with internal security policies and external government and industry regulations such as SOX, NERC, HIPAA or PCI DSS.

Features

Benefits

• Per-Device Permissions
• Uniquely Identify and Authorize Specific Media
• Data Copy Restriction
• Read Only Access
• Temporary/Scheduled Access
• Context-Sensitive Permissions
• Offline Updates
• Policy Controlled Encryption for Removable Media
• Decentralized Encryption
• Portable Encryption
• Enforce “Strong” Password Requirements
• Password Lockout
• Syslog Support
• PGP Aware Filename Tracking/Full File Shadowing
• Centralized Management/Administrators’
• Roles Based Access Control
• Tamper-proof Agent
• Flexible/Scalable Architecture

• Improves Network Security
• Delivers Granular Permissions Control
• Secures Data from Data Leakage/Theft
• Blocks Malware Attacks and Protects Data
• Enhances Security Policy Enforcement
• Increases Endpoint Security
• Increases Security Compliance
• Balances Productivity and Protection
• Ensures Password Consistency
• Increases Data Protection
• Enables Integrated Event Management
• PGP Encryption
• Delivers Audit Readiness
• Delivers Precise Control with Access Limits
• Reduces IT Workload and Improves Productivity
• Adapts to Your Growing Business