This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.
Reference
More than 30 IDM realisations in the Czech Republic and abroad
Deployment of the Safetica solution for SwissLife Select
SwissLife Select
To minimize the risk of sensitive data leakage and ensure compliance with security standards, a DLP solution was implemented to provide full control over its management and protection.
Project Goal
The client faced risks associated with protecting sensitive data when there was a risk that it could be unintentionally or intentionally leaked outside the company. Existing security measures were insufficient to monitor and prevent data leakage at the endpoint device level and within the network infrastructure.
The goal of the project was to deploy a Data Loss Prevention (DLP) solution that would provide complete control over how sensitive data was being managed and protected to minimize the risk of data leakage. The project focused on ensuring compliance with internal and external security standards and enhancing the protection of key data flows in connection (integration) with M365.
Solution Description
The DLP software used enabled centralized management of security policies and control over data access, both on endpoint devices and on the network. The solution was able to identify sensitive data in real time and provide instant alerts for potentially risky situations.
Swiss Life Select a.s. implementation was carried out in two phases:
1) Server installation and deployment to end stations, first a test circuit of devices, later to all devices. During the implementation, the server was migrated on the customer side and the environment was changed (internal changes).
2) Setup and configuration – basic DLP was designed based on best practice and implemented gradually – first in log-only mode, on a test group, then on other PCs. Restrictive policy settings were also successfully tested on the test group.
Then the analysis of the environment and client expectations was refined, and after the decision to protect critical documents via MIP labels, we set up data classifications on M365 labels and policies that were linked to them and categorized by protection level into several groups. We tested these and again, first in logging mode and on the test group, and later in restrictive mode and on the entire environment, we applied the final DLP policies.
The whole project is still in process and after setting up the advanced DLP, we are now checking the environment, updating the end stations and also taking time to prepare for the migration to Safetica 11 environment, risk analysis and minimum assumptions.