There are two things this solution has helped improve. 

In terms of the DLP, it can protect from data breaches in your company since you need to define secret and sensitive data in your organization. And the DLP solution monitors all of this data. For example, if you have personal data, you can define this data to the DLP, and then, if someone tries to send this data outside of your organization, this solution would prevent that data breach or generate an alert. 

The second way the DLP solution can help is by implementing best practices. For example, every organization has a business flow. This business flow can sometimes be wrong according to regulations. For example, with GDPR, if you are working with European customers, European clients, or European residents, you need to follow GDPR regulations. Or, if you are working with the payment industry or storing credit card data, you need to follow PCI DSS rules. This DLP solution can help customer organizations ensure they follow best practices.

DLP is a control instrument for ensuring that an organization complies with regulatory requirements. For example, banks have requirements for storing credit card data, GLBA regulations, etc. DLP can help a bank avoid fines and protect it from civil liabilities.

Companies are audited annually, and DLP improves their risk posture. It ensures business operations won't get shut down because we don't know what we don't know. There are also internal threats, such as people leaving with privileged information on a USB. For instance, an earnings report could be stolen by a disgruntled worker and leaked to competitors. Symantec provides good definitions in the rule set. It can be customized to scan inside documents and pattern-match any unstructured data to comply with what the company needs.

It helps us meet requirements. There is no product that gives you 100 percent coverage, but it's quite an improvement. It gives us added value.

When it comes to operational costs, a lot of false positives have been eliminated. It's an ongoing activity.

There is still potential for improvement when it comes to data discovery over a network. How successful the process is depends largely on the network configuration and connectivity to the destination. Utilizing a detection server or network discovery can help facilitate the data discovery process. Recently, I discovered around 15,000 to 20,000 shareholders for Symantec using DLP for data discovery. Agent Discovery is also highly effective, with no performance issues showing up when performing endpoint discovery for the Symantec database.

I have not had much experience working with Macs, but they come with an in-built security feature. This can be challenging to work with, as not all features are supported in comparison to Windows. However, the solution recently became compatible with the Linux operating system, allowing us to deploy agents on this system as well.

Symantec Data Loss Prevention is a globally accepted product that provides an enterprise-level view of an organization. Although some of the features the solution offers are being utilized, there is still more potential to be explored if the organization puts more focus on using them to their fullest potential. Recently, the ICD or ID features, which cover all increase points and every other technology, were introduced. The solution provides features that correlate all events and generate top results. In DLP, the role bit and success management are present, allowing us to escalate incidents. We can also define an escalation process, allowing data owners to view incidents and escalate them as necessary. This functionality is provided by the solution. The primary goal of the DLP is to monitor and control the organization's data usage, as well as to facilitate audibility and accountability. Symantec Data Loss Prevention is well-suited to fulfill these needs.

The solution helps us find sensitive data and apply policies based on user risk. We can use indexing for highly confidential documents that are not to be published or shared with more than two to five people outside of the organization, such as the board of directors. Indexed Document Matching is a useful feature that can help ensure that the document remains secure. We can create remote detection over the product and map the UNC part. The data owner will put the file of a particular document, which will be converted into IDX format. We can then apply the policy remotely so that the data will not come to the DLP admin or any other person and will remain protected.

The solution offers a range of pre-defined data identifiers to meet all regulatory requirements, such as those mandated by the GDPR, PHI, PCI, and USUN. These data identifiers can be used to identify and protect personal data globally.

The solution helped reduce the time our DLP administrator spends on data loss protection. Spending time monitoring the data is essential. We have to stay up to date and investigate any issues that arise in order to improve health monitoring by fine-tuning incidents and reducing false positives because automation is not available. 

With Symantec DLP, we can identify where most of our sensitive data resides. By scanning the database and file server, we can find sensitive data and determine how people use it with the analytical view. For example, we discovered someone copying some sensitive data and project information during their two-week notice period. The SOP for any solution implemented in the infrastructure is placed in SharePoint. They tried to copy that information and send it to their personal email. We identified the potential leak and notified the leaders of the firm.

The endpoint DLP isn't something that provides 100 percent coverage. It is a strategic solution and a process by which we strengthen rules and policies for detecting and identifying sensitive information and how it can leave the company. The DLP solution doesn't provide total coverage, but it can protect about 70 percent of our daily process activity. It also reduces the time DLP admins spend on these tasks by about 20 percent.

Symantec also helps us meet our regulatory requirements. Symantec DLP has preset rules for PCI DSS compliance that we can use to monitor if any users are sending credit card numbers to outside parties. It has similar features for compliance with GDPR and other types of regulations.

The benefit is that users can't copy or send sensitive data to another user outside our organization.

It has also helped save so much time. For me, as an administrator of the agents, who installs and puts group policies and rights in place, it saves me 20 or 30 percent of my time.

Symantec Data Loss Prevention primarily targets confidential data. We utilize the indexing feature along with Endpoint Discover (EDM) to analyze consultation files. This involves scanning their content using OCR and managing data access accordingly.

We used the solution to protect data from going out of the organization based on emails or regular expressions. We didn’t want users to share their debit or credit card details with others outside.

Symantec Data Loss Prevention has significantly improved our organization, particularly regarding data management and incident response. The solution has streamlined internal processes and enhanced data security measures. By integrating Symantec into our management systems, we've achieved better packaging and handling of sensitive information.

When our Oracle database is corrupted, we have the ability to restore the data. This helps a lot.

Another unique feature which I have found is a solution that we needed for one of our customers. They provided laptops at one of their facilities. Their users had administrator access, but the company cannot control those laptops. They are things, moving outside and inside for technical work. They noticed that their users have personal email accounts through Gmail and they installed Google Drive on their laptops. The problem is when Google Drive synchronizes, most of these company documents have a few admins that sync back up to these personal laptops. 

After deploying Symantec, we created a policy for data loads. We found some confidential files had been backed up to the cloud from their personal laptops. The company documents back up through employees' personal Google Drive. They found it and informed the company, who restricted the application purpose for those employees.

The customer was happy about the solution.

We use it to discover unacceptable employee behavior, such as threats and bullying. It helps us identify insider threats.

Previously, what was happening was that anyone could send any data outside. We now know who is sending what data and where. We can then question them: "Why have you sent that data?"

Data Insight is a very good component that steps outside the standard DLP functions, but helps the client to gain visibility over the data usage, ownership and permissions.

It provides an efficient solution but the enforce server is difficult to understand.

We are able to contain our confidential data in our environment. Previously, we had no controls placed on our documentation.