Lumension’s Security Management Software Provides Centralized Endpoint Security and Data Protection for Financial Organizations
Financial Industry Drivers and Challenges
Financial institutions face not only greater regulation in the face of the current economic climate, but also present greater targets because of the vast amounts of sensitive financial and customer data that reside on their networks and how frequently this data must be made accessible:
- Financially motivated and sophisticated external threats target security gaps to gain unauthorized access to sensitive information
- The insider threat has risen rapidly due to the known value of this information and the increased use of removable devices / media (such as USB flash drives and CDs/DVDs).
If not prevented, these threats result in data loss or theft, which is potentially disastrous as institutions face high clean-up costs and even worse, the loss of customer trust. The end result is ultimately having these customers taking their business elsewhere. Even so, data breaches continue to occur:
- 65 percent of financial services institutions worldwide experienced repeated external breaches within the past 12 months¹
- 30 percent of these global institutions suffered repeated internal breaches during the same timeframe¹
The challenge facing these institutions is how to comply with the increasing number of regulations and standards, enforce endpoint security and retain customer loyalty.
Lumension’s Security Management Solutions Protect IT Assets and Financial Data
Lumension’s security management software protects against internal risks and external threats targeting financial institutions by providing comprehensive vulnerability management, endpoint security, compliance and IT risk management and data protection solutions enabling you to:
|Measure and comply with regulations and frameworks such as ISO 27002, Basel II, PCI DSS, Sarbanes Oxley, Gramm-Leach-Bliley and others which require safeguarding the integrity and availability of financial data. Improve audit workflows and assess and prioritize IT risk.
||Lumension® Compliance and IT Risk Management helps organizations achieve lower costs of compliance by automating IT audit workflows, harmonizing controls with policy requirements, and providing greater visibility across IT assets for optimal security and compliance management.
Lumension® Data Protection removes the risk of financial data from being improperly disclosed and enables you to prove compliance with financial industry regulations by providing a detailed audit trail of all device and application execution attempts, tracking data copied to and from removable devices and controlling what data is allowed to be copied to a device at the file level using FIPS 140-2 Level 2 validated encryption.
Lumension® Vulnerability Management patches and remediates vulnerabilities before they can be exploited to access sensitive data and identifies organizational security holes in the protection of customer financial information through comprehensive auditing capabilities.
|Prevent malware and zero-day threats originating at an endpoint.
||Lumension® Endpoint Protection protects against network security breaches where your customer or financial data could be exposed to fraud and
enables the transmission, integrity, confidentiality and retention of financial data without disruption, corruption or loss.
|Improve IT system performance.
||Lumension® Vulnerability Management, Lumension® Endpoint Protection, and Lumension® Data Protection all provide key capabilities that improve IT system performance: through standardizing endpoint configurations, patching vulnerabilities and by whitelisting applications and removable devices to ensure that only those authorized can execute on your network.
|Reduce endpoint security TCO.
||Lumension® Vulnerability Management minimizes security or compliance crisis response and remediate vulnerabilities quickly with fewer required resources.
|Improve end user productivity.
||Lumension® Endpoint Protection blocks unwanted, non-business desktop applications and enforces policies to ensure endpoints run as expected.
|Enforce software license compliance within the organization.
||Lumension® Endpoint Protection ensures only authorized software applications are running on corporate endpoints.
Financial institutions face a multitude of compliance requirements including regulatory, statutory, legal, privacy, security and/or operational. Institutions are also subject to differing obligations across the globe.
This means that any particular piece of information may be subject to more than one set of requirements. Lumension allows financial institutions to identify and control information with respect to these important considerations, and does so in the most cost-effective manner.
Lumension can help enforce financial regulatory obligations in the US, such as:
- Sarbanes-Oxley (SOX)
- Gramm-Leach-Bliley Act (GLBA)
- Fair Credit and Accurate Transactions Act (FACTA) ID Red Flag rules
- PCI Data Security Standard (PCI DSS). Lumension is a corporate member of the PCI Security Standards Council
- Bank Secrecy Act / Anti-Money Laundering (BSA / AML)
- SEC Regulation S-P (17 CFR Part 248)
- Data breach notification laws in 47 US States & Territories (such as CA HB 1386)
In addition, Lumension can with similar obligations in other jurisdictions, such as:
- Basel II Operational Risks, such as external fraud
- EU Directive 95/46/EC – Protection of Personal Data
- EU Regulation 45/2001 – Protection of Personal Data by Community Institutions
- EU Decision 1247/2002/EC – European Data Protection Supervisor
- EU Directive 2002/58/EC – Privacy and Electronic Communications
- United Kingdom: Data Protection Act (DPA)
- Switzerland: Federal Act on Data Protection (FADP)
- Canada: Personal Information Protection and Electronic Documents Act (PIPEDA)
In the Verizon Data Breach Investigation Report², it was noted that nine out of 10 data breaches involved one of the following:
- A system unknown to the organization (or business group affected)
- A system storing data that the organization did not know existed on that system
- A system that had unknown network connection or accessibility
- A system that had unknown accounts or privileges
- Deloitte “Global Financial Services Industry 2007 Global Security Survey”
- Verizon, 2008 Data Breach Investigations Report