This article consists of examples of configuration and the instructions on how to efficiently setup HENNGE Email DLP step by step. We provide typical configurations that is usually used by our customers and help you to look for optimum solution of Email DLP for your company.
This guide is consists of three steps of configurations:
1) Basic Level Security Configuration
2) Standard Level Security Configuration
3) High Level Security Configuration
1) Basic Level Security Configuration
This configuration is basic and essential for your company in order to prevent data loss and leak.
This section consists of:
- Inbound Rule: Send
- Outbound Rule: Temporarily Suspension + Encrypts Attachments
For more detailed information about how to configure, please refer to this link:
Basic Level Email DLP Configuration
When you apply to this security for outbound email, the sender is able to stop sending outbound email since co-worker and supervisor can find the mistakes of email in advance before the email will be sent to internet.
Furthermore, the security conscious "If I realise co-worker's mistakes in sending email, I can prevent data loss and leak" will grow in your organisation. And the corporate culture which prevent sending email incorrectly with teamwork will proceed.
Depending on your needs, consider introduction of next level security.
2) Standard Level Security Configuration
After the basic level configuration, the next step is more detailed configuration in order to enhance data loss and leak prevention with automatic and systematic procedure.
This section consists of:
- Keywords Search
- Prevent large number of email sending
- Prevent sending to private address
For more detailed information about how to configure, please refer to this link:
Standard Level Email DLP Configuration
HENNGE One can check automatically the specific keywords (ex. Credit Card Number etc) if there are in email including attached files and stop sending. You can set specific keywords you want by using regular expression.
In addition, some security incidents like leaking unrelated address to all recipients break out in recent years. The reason why this happen is to copy the addresses from the list of customers manually and paste it into To and CC in the email incorrectly.
Furthermore, a malicious users may send(forward) email to their private address in order to leak confidential information intentionally. When you configure to prevent sending to private address(ex. yahoo.com, hotmail.com etc), you can reduce the risk for data loss and leak.After completing this configuration, you can enhance the email security for your company.
Depending on your needs, consider introduction of next level security.
3) High Level Security Configuration
After the basic and standard level configuration, this is the last step in order to enhance data loss and leak prevention with workflow and human check procedure.
*Note - Some people (ex. approver, division manager etc) have to take their workload to check the emails that employees sent.)
This section consists of:
- Sending Approval
- Prevent specific employees from sending Email to Internet
- Additional BCC Recipient
For more detailed information about how to configure, please refer to this link:
High Level Email DLP Configuration
It is needs for employees who cause the incident of data loss and leak to take action to prevent a recurrence. There are some risks to occur again. Sending Approval make their security conscious grow and make them not repeat same mistakes at the same time.
In addition, it enables to prohibit specific employees (ex. part-timer, temporary staff etc) to send email to internet for internal controls. As a result, it help to reduce the risk for data loss and leak in the whole company.
Furthermore, automatic and forcible BCC forwarding function is usually used for sharing progress of business with manager and team member, preventing the senders from BCC forwarding manually and preventing them from sending incorrectly.