Titus Presentation - 17.03

Zora Arnautovic Regional Sales Manager
Central and Eastern Europe, CEE

Andreea Avrigeanu – Manager of Crucial
systems (Romanian Distributor)
Phone: +40 745 042350; e-mail:
andreea.avrigeanu@crucial.ro
www.crucial.ro/titus
Why is Data Loss a Hot Topic?
WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

And….

Email is the #1 Data Loss Risk
 Compliance Regulation Fines

(PII, PCI DSS, SOX, GLB..)
 Lawsuits
 Embarrassing headlines
 Loss of IP
 Possible risk to public safety
WWW.TITUS-LABS.COM
WWW.TITUS.COM
| © TITUS
| © TITUS.
LABS. ALL RIGHTS RESERVED |
Why information classification?
 Security -document classification and labeling

creates awareness of sensitivity of information, and
can trigger further security.
 Retention – classification allows enterprise to build
and enforce retention rules. More efficient use of
storage resources.
 E-Discovery – easy to find relevant documents
when using classification metadata as part of
search.
5
WWW.TITUS-LABS.COM
WWW.TITUS.COM
| © TITUS
| © TITUS.
Industry Analysts on Data Classification
Gartner Forrester IDC Ferris
Classify your Many critical reasons Classification is User based

information to ensure for classifying important for Policy classification ensures
that the appropriate information – such as Compliance information is
protective controls are ensuring security, identified at time of
implemented in a cost- implementing a creation and facilitates
effective manner retention policy and for a consistent and
optimizing the use of efficient method of
storage finding data in
reasonable time.
ItItall
allstarts
startswith
withData
DataClassification
Classification
6
Global Data Breach pandemic
Source: http://datalossdb.org/
TITUS Classification Solutions
E-Mail Documents
SharePoint
Classification & policy enforcement at the desktop

8
Titus Customer Base
Over 1.5 Million Users
Military
Military Government
Government Commercial
Commercial

TITUS Partners

Technology Alone is Not Enough
The Driver
(User) has a
role to play in
Information
Security

The Stressed The Overcautious The
The Home Worker Newcomer
The User Community

The Careless The Inexperienced
The Disorganized The Partisan The Spy The Industrious The Lazy
12
The Costs of Information Leaks
 In October 2009, a 2,400 page document was leaked
from the British Ministry of Defence called the Joint
Services Protocol 440 which was posted to the
internet.
 In July 2010, a massive document leak occurred of
over 91,000 records covering the U.S. led war in
Afghanistan from 2004 to 2010. This set of records is
referred to as the Afghan War Diary and a subset of
approximately 75,000 records was made available to
the public on the WikiLeaks web site.
1
WWW.TITUS-LABS.COM
WWW.TITUS.COM
| © TITUS
| © TITUS.
Securing Information from Widespread
Distribution
The most important step in securing information
 The first step in this strategy is to classify documents and
information
 The second step is to automatically assign security
permissions to the documents or information based on its
classification metadata, with the purpose of controlling
access.
1
WWW.TITUS-LABS.COM
WWW.TITUS.COM
| © TITUS
| © TITUS.
Classification Selector – Simple for Users
Click Send
Classification pop-
up
Guided classification
Compose email

Classification in Microsoft Outlook®
Subject Marking
Header
Footer
Disclaimer

Reduce Inadvertent Disclosure
Policy Verifier:
Before Send
 Trusted Domains
 Safe Recipients
 Content Validation
 No Change/Downgrade
 Maximum Recipients
 Warn on Send
All user messages are customizable

Detect External Recipients
Click Send
External Address
Classify
Trusted Domains
Warning

Content Validation
Sensitive content detected

Click Send
Forced classification

Redaction: Email with PII

Content Review and Redaction

Redacted Email

Check Attached Documents
Message
Upgraded
Classify
Attachment Check
Attach
Document
Document label
added

Prevent Changes and Downgrades
Attempt downgrade
Downgrade
Compose Reply prevented

TITUS + RMS = Automated Protection
User applies TITUS Unclassified info remains shareable

classification label
Forward
Copy
UNCLASSIFIED
Print
RMS RMS Rights

Encryption Management

Encrypt Transparently
Microsoft RMS automatically

Select applied (S/MIME also
Classification supported)
No RMS user training

required
2
TITUS + RMS = Automated Protection
User applies TITUS Unclassified info remains shareable

classification label
Forward
Copy
UNCLASSIFIED
Print
RMS RMS Rights

Encryption Management

How does TITUS trigger ADRMS
 Automatically apply RMS Template
 Office 2003-2010
 Outlook 2003-2010
 Can be tied to any label (at any level)
 Exchange Transport Rule (x-header)

Benefits

3
Inbound Classification: Bulk
Click the “T”
Highlight emails
(bulk classification)
Emails
now
classified
WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED | 32

PROVOCAREA: Web-based Email
• Sunteti ingrijorati asupra informatiei pe

care utilizatorii o acceseaza folosind
OWA?
• Vreti sa va asigurati ca mesajele

INTERNE vor ramane INTERNE ?
• Politica Dvs. interna prevede ca toate

email-urile sa fie clasificate (etichetate)?

Sample Dashboard
Timeline of Message
/Document classification
activity
Policy Activity Summary:

Show the policies in use
within the organization and
the resulting actions

Remediation Report
 User focused report to determine actions taken on Policy Warnings

Auditing: Windows Event Logs
Windows
Event Event Log
Viewer details
User
response
recorded

Events and Reporting
 User activity / decisions can be logged
 Workstation logs can be aggregated and reported on based on
native Microsoft or 3rd party tools

3
Message Classification Web Access
Classification and policy enforcement for OWA
emails, meeting requests, and tasks
Key Features Benefits
Classification Enforce classification at point of creation
Selector
Label Marker Raise security awareness through visual
markings
Metadata Generator Interoperate with TMC for Outlook, and enhance
archiving, DLP, perimeter security solutions
Policy Verifier Educate users and stop email slips
OWA Prevent Prevent viewing of confidential information when
using OWA

TMC Web Access Benefits

Provide Policy Reminders
Select
classification
Warn on Send
Compose email

Restrict OWA to Non-Sensitive Data
 The OWA Prevent
feature can be
configured to
prevent users
from viewing
confidential or
sensitive
messages.
 Configuration of
the OWA Prevent
feature is based
on the
classification of
messages being
viewed using
OWA.

TMC Outlook and OWA Integration
Outlook OWA

Classification for Mobile Users
• Label Messages
sent from the
BlackBerry
Smartphone or
Windows Mobile
Device

BlackBerry Classification

Titus Labs BlackBerry Interop

BlackBerry Classification

Centralized Administration
WWW.TITUS-LABS.COM
WWW.TITUS.COM
| © TITUS
| © TITUS.
Now Available for Lotus

Reduce Inadvertent Disclosure
Policy Verifier: Before
Save or Print
 Attachment Checking
 No Downgrade
 Content Scanning
 Document Inspector
 RMS
All messages are

customizable

Classification Selector in Word
Classification pop-up
with guided
classification
Compose
document
and save

5
Visual Labels for Awareness
Header/footer
Watermark

5
Clasificare document - PowerPoint
TDC Ribbon
Marcaje Vizuale
TDC Task Pane
Marcaje Vizuale

Clasificare Document - Excel
TDC Ribbon
TDC Task Pane

Marcaje Vizuale

Customizable Online Help
Reinforces
marking training

Pre-Announcing
In fact Any File Type is Supported!

Native Support beyond Microsoft Office
File Type File Extension

Audio Video Interleave AVI
Joint Photographic Experts Group JPEG, JPG, JPE, JIF,JFIF,JFI
QuickTime File Format MOV, QT

Motion Pictures Expert Group MP3
Motion Pictures Expert Group MPEG-4
Portable Document Format PDF
Portable Network Graphic PNG
PhotoShop PSD
Tagged Image File Format TIFF, TIF
Waveform Audio File Format WAV
Microsoft Office 2007/2010 .docx, xlsx, pptx
Microsoft Office 97/2003 .doc, xls, ppt
Open XML Paper Specification .xps

Easy to Manage
Easily create/modify
organizational data

Some Practical Use Cases

Complement your DLP System
Classify Metadata added Control
ICTED
RESTR
• File metadata • DLP false positives

• End-users apply automatically injected reduced
classifications to files • Icon marked • Costly re-work avoided
• No end-user technical
knowledge needed

New! One Click Classification
Outlook 2003

One Click Classification
Outlook 2007/2010

One Click Classification
 Designed for simple configurations
 One classification level
 Up to 8 labels
 Single selection only (no multi-select)
 Works on Outlook 2003, 2007, 2010
 Can be configured with a default classification so that most
emails require no clicks at all!
 Works with all existing TMC features (Safe Recipients, RMS
Integration, Content Validation, etc.)
 Works with the new Help tooltips feature

Titus Case Studies–Overview
 Large Government Agency Uses Classification Labels to Protect Personally
Identifiable Information
 Fife Constabulary: Classifying Messages with Titus
 G4S Security Services Certified to ISO 27001 Standard for Compliance
 Leading Aerospace Company Meets ITAR and EAR Compliance
Requirements
 Dow Corning User Classification Labels to Help Protect Intellectual Property
(see attached printings)

Romania-New Market-New Customer
First Customer in Romania - UniCredit Tiriac Bank

G4S Security Services Bulgaria
Integrated Titus solution helped G4S prevent inadvertent data leakage and achieve ISO
27001 Compliance.
Business Challenge Solution Results/Benefits
• Protect PII • Classify emails and • Comply with ISO

• ISO Compliance documents standards
• Prevent data leakage • Apply encryption • Reduce inadvertent
• Control content and protection disclosure
enforce policy • Apply visual markings • Control Access
• Secure Confidential • Apply metadata to • Automate encryption
data leverage existing • Raise awareness with
infrastructure visual labels

Solution Summary: How They Work Together
TITUS McAfee DLP Customer Value
• Integrated • Content is checked to • Leverage originating

classification by users ensure appropriate user to make
BEFORE save/send Titus metadata is sensitivity decisions
present
• Ensure emails are • Enable automated
going to appropriate • Non-compliant enforcement and
parties content is blocked blocking
• Apply classification • Full detection of non-
metadata marked information
Summary:
How McAfee and TITUS Can Help You
• Prevent data leakage • Streamline • Block leakage of

over multiple classification of email sensitive information
channels & documents
• Reduce inadvertent
• Risk Mitigation • Consistently apply disclosures/spillage
classification labels
• Control content and
• Capture classification • Efficiently locate and
enforce policy secure sensitive data
in metadata
• Improve E-Discovery • Enforce information • Enable audit of
security policy at questionable behavior
desktop
McAfee DLP and TITUS
User McAfee DLP
3. Send/Save/Print 4. HBSS/DLP 5. Policy Decision

1. Compose 2. Classify
Agent
Allow
Prevent
Quarantine
6. Return non-classified content for classification Protect
Audit Return
Example 1:
Confidential Info Too Widely
Distributed Internally
Protect...
• Financial statements
• Personnel data
• HR/Health Benefits
• Hiring plans, etc...

Example 2:
Confidential Project Plans Sent
Externally
Protect against...
• Emailing personal
accounts
• Domains/countries known
IP/copyright issues
• Competitors, etc...

Example 3:
Interactive Redaction of
Customer Information
Protect against...
• Distributing Names
• Distributing PII
• Distributing Financial
Details
• Distributing Customer
Details, etc...

Title
Name
Date
TITUS Metadata Security for
SharePoint
 Automates the application

of item level permissions
 Automates changes to any
item level permissions
 Security based on existing
document metadata
WWW.TITUS-LABS.COM
WWW.TITUS.COM
| © TITUS
| © TITUS.
8
SharePoint Metadata
Metadata columns
8
Permissions Based on Metadata
Alice is a Finance employee, Bob is in R&D
Policy - In the Product Development library, Finance documents should only be

visible to finance staff
8
Defining the Metadata Security Policy

8
Using Metadata Security
Alice’s
Bob’s
view
view
Bob is not able to see the Finance documents
8
Benefits
8
Titus Metadata Security
Supported Platforms
• Windows SharePoint Services 3.0 (WSS 2007)
• Microsoft Office SharePoint Server 2007 (MOSS 2007)
• Microsoft SharePoint Foundation 2010
• Microsoft SharePoint Server 2010 (SP 2010)
Document Types
• Supports all document types, list items and InfoPath
forms

Native Microsoft SharePoint® Security
• Issue in Enterprise deployments
• Manual permissions management
• Prone to human error / Labor intensive
• More documents = more work
• Result - > Users get access to documents

they shouldn’t

TITUS SharePoint Security
• Permissions are automated
• Consistent security
• SharePoint Administrators focus on

higher value projects
• Result - > Users only access content

they should

TITUS SharePoint Security Solutions
Essential Security Layer for SharePoint
• Automate item-level permissions
• Apply classification markings for increased user awareness and

accountability
• Automatically convert to PDF for added security

Provide SharePoint Security Trimming
Ben’s view
Alice’s view

SharePoint Document Labeling
Labels for user

awareness

SharePoint Document Timestamp and Tracking
Current
User
Support for
•PDF
•Word
•Excel
•PowerPoint
Timestamp

Over 250 Customers & 1,5 Million Users
Military Government Commercial
• Australian Dept of Defense • Australian Tax Office • TURKCELL

• Belgian MOD • Bank of Canada • UniCredit Bank of Romania
• Canadian Dept of Defense • Essex Police • AT&T
• CENTCOM • Government of Scotland • BAE Systems
• Danish Defense • 15 + UK Police Forces • Barclays Bank
• Lithuanian MOD • Lancashire Police • Boeing
• MNF-Iraq • NASA • Dow Corning
• NATO • UK Nuclear • DRS Technologies
• SOUTHCOM Decommissionning Office
• Fujitsu Services
• STRATCOM • UK Serius Organized Crime
• Goldman Sachs
Agency
• US AirForce
• US Department of Commerce
• Honeywell
• US Navy
• US Dept of Veterans Affairs
• International Monetary Funds
(IMF)
• US Dept of Energy
• Lockheed Martin
• Mazda
• Northrop Grumman
• Pratt & Whitney

9
Australian DoD Case Study
Titus Labs Message Classification ensures Australian Department of Defence meets
government-mandated classification standard for email for 100,000 users
• Aus standard • Classify email with • Standards compliance

• GOTS replacement Titus Labs • 100,000 users in 10
• Interoperability • Visual markings and days
• Data leakage metadata • Interoperability with
prevention • Policies based on other govt agencies
classification labels
9
In Conclusion

Inadvertent and Malicious Data Loss
 TITUS is not a Silver Bullet Answer

 We are a foundational aspect of a complete solution
 A very visible and tangible step forward

Objective/Message
 Titus represents a solution set that increases security
awareness and accountability
 We represent an easily deployed, cost effective “Quick Win”
for today’s post Wiki-Leaks Security Infrastructure
 We are not a DLP solution but we have many DLP like
benefits – and when combined with DLP, we mitigate the risk
with your number one security risk for data loss:
The Authorized User

Interoperability With Existing Investments
Encryption
DLP DRM
Discovery Archival
Search Storage
WWW.TITUS-LABS.COM
WWW.TITUS.COM
| © TITUS LABS. ALL RIGHTS RESERVED | 99
| © TITUS.

Titus Presentation - 17.03

Uploaded by

Document Information

Original Description:

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Titus Presentation - 17.03

Uploaded by

Copyright:

Available Formats

Zora Arnautovic Regional Sales Manager

Central and Eastern Europe, CEE

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

 Compliance Regulation Fines

 Security -document classification and labeling

Classify your Many critical reasons Classification is User based

Classification & policy enforcement at the desktop

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

The User Community

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

All user messages are customizable

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

Sensitive content detected

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

User applies TITUS Unclassified info remains shareable

RMS RMS Rights

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

Microsoft RMS automatically

No RMS user training

User applies TITUS Unclassified info remains shareable

RMS RMS Rights

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

 Exchange Transport Rule (x-header)

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED | 32

• Sunteti ingrijorati asupra informatiei pe

• Vreti sa va asigurati ca mesajele

• Politica Dvs. interna prevede ca toate

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

Policy Activity Summary:

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED | 37

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED | 39

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED | 40

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED | 41

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED | 42

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED | 43

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED | 44

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

All messages are

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED | 51

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |

TDC Task Pane

WWW.TITUS.COM | © TITUS. ALL RIGHTS RESERVED |