Truly Raising the Bar for SharePoint DLP

Truly Raising the Bar for SharePoint DLP

By Steve Marsh | September 04, 2015

The NSA security data breach by Edward Snowden (much of it leaked from a SharePoint server); Sony Pictures hack of personal information; and a number of other high profile private and government system breaches in the past year have been a wakeup call for businesses and the public sector to review their security strategies. These attacks proved successful because privileged credentials were compromised and exploited. And the stakes are getting higher – perpetrators are no longer lone hackers, but organized groups, some allegedly sponsored by nation states.

Employees are often the weakest link when it comes to data and network vulnerability. Sending information to the wrong people or inadvertently attaching files to mass emails. Access privileges are particularly vulnerable. By gaining access to user names and passwords (alarmingly, in the case of administrator credentials, many of which are shared or infrequently changed), hackers are able to access multiple systems across the organization. In addition, data is commonly stored in the wrong place, on a less secure system, or incorrectly classified and tagged on a supposedly secure system.

As data breaches continue to become more commonplace and more devastating in their consequences, security controls that aim to keep system administrators honest or from mistakenly putting the organization at risk has become increasingly important.

While Microsoft provides out-of-the-box tools that have some benefit within Office 365, the options for on-premises SharePoint, particularly in the area of Data Loss Prevention, have been very limited up to this point.

However, this is an area that business and government must urgently address by raising the bar of expectations and results. The data breaches that have regularly hit the headlines recently and the subsequent damage caused to organizations impacted by those breaches either through loss of revenue, job losses or major regulatory fines has dramatically raised the profile of this issue.

As threats happen 24/7, you must have the resources to detect and address the potential loss of data. Shareholders, government leaders and the public will no longer accept excuses. It’s past time for business and government to raise the bar to protect against an attack and data loss.

DLP Powered by Patent Pending Machine Learning

Metalogix redefines Data Loss Prevention (DLP) for sensitive content. This includes personally identifiable information (PII), credit card data, and protected health information (PHI) to aid in Health Insurance Portability and Accountability Act (HIPAA), and Health Information Technology for Economic and Clinical Health (HITECH) Act compliance for SharePoint on-premises and in the cloud. Powered by advanced machine learning technologies, Metalogix Sensitive Content Manager surpasses existing data protection strategies and provides a far higher degree of accuracy for context aware identification, filtering and classification of content. Other DLP solutions employ rules and techniques to find PII that amounts to little more than “Ctrl + F” and as a result often generate large numbers of “false positive” results that cause these systems to grind to a halt.

Confidently Detect & Secure Sensitive Content

ControlPoint and the new Metalogix Sensitive Content Manager provide a new layer of security for PII, credit card and health information. By identifying where content of this type exists, SharePoint Administrators have the tools needed to take action to secure this content.

Upon detection of PII and sensitive content that exceeds permissible thresholds, ControlPoint can alert, isolate, or remove policy violating files. Permissions’ reports can be run against the Sensitive Content Manager scan to check who has access to the content containing PII and corrective permissions management steps can be taken if a security risk is identified. ControlPoint also enables an administrator to run a report on who has recently accessed sensitive content. Custom workflows can be architected with ease to enforce corporate governance strategies while reducing the workloads on SharePoint administrators, content owners and compliance officers..

Superior Approach, Superior Results

The complexity of content collaboration and the risks associated with security breaches means you need to raise the bar for more sophisticated security and compliance solutions. In today’s cybersecurity environment, investors, executives, government and others trust and expect you to have the insight and analysis.

Metalogix takes protecting sensitive content to the next level by:

  • Detecting, classifying and securing sensitive content;
  • Being powered by patent pending machine learning technology
  • Using on-demand scanning and real-time protection to prevent regulatory policy violations

Metalogix Sensitive Content Manager leverages the Metalogix next generation machine learning engine and when combined with ControlPoint provides a deeper level of insight and analysis into the location and nature of sensitive content.

Metalogix is leap frogging traditional solutions on the market. Metalogix Sensitive Content Manager provides you and your IT colleagues with the ability to store content in SharePoint with the assurance of being in compliance with both regulated and data retention policies. You can now feel comfortable knowing you have significantly reduced the risks associated with data breaches and inadvertent insider threats.

You’re on the front lines to protect your organization’s sensitive data from external and internal threats. Metalogix has the people and resources to work with you to mitigate risks that jeopardize your business. Metalogix is truly #RaisingtheBar to address data protection loss. Are you and your executives?

To help you take action, see:


Dr. Marsh is Director of Product Marketing with Metalogix and is an expert in SharePoint migration and management technologies. Prior to Metalogix, Dr. Marsh spent over five years working at Microsoft UK Ltd where he held a number of roles, including SharePoint Server Product Manager, in which he was responsible for business and marketing strategy, as well as awareness of Microsoft's SharePoint technologies. He holds a PhD in Microelectronics and Physics from the University of Dundee where he worked on the research and development of novel semiconductor memory and flat-panel display technology.

Written By: Dr. Steve Marsh

Leave a Comment

Add new comment