On paper, combining two robust software products to form a more complete solution is a no-brainer. But how does it actually work in “real life?” First, let’s take a look at what the two solutions – adaptive data loss protection (A-DLP) and managed file transfer (MFT) – each offer to users. Then, we’ll highlight a few specific use cases where the combination of DLP and MFT elevates an organization’s cybersecurity position better than each solution could alone.
DLP offers content inspection:
- Replacing sensitive text – including PII, PCI, and HIPAA – with asterisks
- Detecting and redacting text contained in images, even scanned ones
- Redacting text but allowing for files to still be delivered, minus offending content
MFT delivers secure file transfers:
- Dashboard-friendly, centralized control
- Auditing and reporting
- Advanced workflow automation
- Document collaboration
- File transfer security
Know the Terms: GoAnywhere Glossary
What Data Security do DLP and MFT Provide Together?
With MFT in place, the movement of files inside and outside of your organization is secure and automated, with the collaboration and data tracking functionality not available with DLP alone.
- MFT securely transfers attachments between organizations and trading partners
- The ICAP Gateway intercepts content when threat protection and DLP requirements exist
- ICAP runs rule sets (keyword search, executable renaming, script removal, etc.).
- If the content can be sanitized the transmission is allowed and continues
- If content cannot be sanitized the transmission is blocked
Together, HelpSystems’ Clearswift A-DLP solution and GoAnywhere MFT provide a layered, unified, and web-based solution from the content contained to the secure data transfer of the content. Both solutions are trusted worldwide for their ability to provide enterprise-level protection against data breaches. When software is paired from a single provider, like HelpSystems, it provides stability and superior customer service.
Related Reading: Pair Clearswift DLP with GoAnywhere MFT to Elevate your Cybersecurity Stance
MFT and DLP Use Cases: Combined for End-to-End Security
Use Case #1: Defense sector vendor needs to transfer attachments between employees and trading partners
Originally, this vendor used MFT to securely transfer the attachments sent between its employees and partners. They decided to also add deep content inspection to these file transfers by integrating their MFT with Secure ICAP Gateway, adding Structural Sanitization and Anti-Virus for additional layers of security. With both solutions in place, the vendor can:
- Intercept content when threat protection and DLP requirements exit.
- Run the proper rule sets (keyword search, executable renaming, script removal, etc.).
- Control whether content is allowed or blocked. If content can be sanitized, then transmission continues. However, if content cannot be sanitized then the transmission is blocked.
Use Case #2: Credit card vendor needed insight on when customer, employee and/or patient records in a file were being uploaded to MFT and more
This credit card vendor needed to detect when records contained in files (for employees and/or patients) were being uploaded to MFT. They also needed to be able to count the records and maintain an audit log showing what data was being shared and with whom, and to have the ability to corroborate files from a single record. The vendor was able to do all of this by integrating the secure ICAP Gateway with MFT. In addition, with this combination of solutions, they can take advantage of Lexical Expression Qualifiers and trigger different actions based on the number of records detected – actions such as an audit, refer to sender, redaction or block).
Use Case #3: US State government agency needed same level of security from uploads received as they got from their MFT transactions
This government agency regularly needs to accept file uploads from partners and the public. However, because this action can be exploited to deliver active content or even viruses and malware, they knew they needed to achieve comparable threat protection to what they had in place with their MFT file transfers. The agency integrated the Secure ICAP Gateway with their MFT for a combined, secure solution. Now, any file can be scanned before it is either passed or accepted and infected content is then destroyed or redacted. They also have the choice of triple-AV (Kaspersky/Sophos/Avira) and constant Active Content Protection in place.