In this guest blog product manager John Stringer explores how Sophos’s Data Loss Protection (DLP) technology can help companies tackling Information Rights Management. Over to you John..
In “Up in the Air” George Clooney’s character loved to travel – for the reward points and the free miles kickback. Now, in business, it’s not just the axe man that likes to travel; documents fly all over the place too. But for a business the kickback can be less welcome.
Protecting sensitive information beyond the network perimeter is critical and Information Rights
Management (IRM) is a mature technology that provides an answer.
So where does DLP come into the mix? Well, DLP can be used to identify IRM-protected documents, audit their transfer and – where appropriate – apply IRM classification based on document content. This complements traditional methods for applying IRM such as manual classification by employees.
At Sophos we’re really excited about working with a number of IRM vendors, such as Oracle, to achieve exactly this.
Today the Sophos DLP “engine” can identify files protected by both Oracle and Microsoft IRM. As the video below demonstrates, this is actually pretty useful if you use or plan to use IRM.
(Enjoy this video? You can check out more on the SophosLabs YouTube channel and subscribe if you like)
A policy can easily be put in place to simply monitor the transfer of IRM protected file (audit when and how they are leaving your organisation) or even to limit document transfer onto removable storage i.e. only allow files protected by IRM.
IRM provides the document protection and Sophos DLP an enforcement control. Expect to see more on this in the future.