clearswift introduction to selling clearswift solutions
TRANSCRIPT
ClearswiftIntroduction to Selling Clearswift Solutions
2
Agenda
• Introduction
• Partner program
• What client issues can we address?
• What have we got to offer?
3 © Clearswift 2015
Clearswift Partner Overview
Introduction
4
About Clearswift
• 160+ employees: HQ in the UK with offices in Australia, Germany, Japan, Spain and USA
• 20 years of secure content expertise
• Developed first Deep Content Inspection Engine 1996
• Experts in deep content inspection and policy based information management
• Innovating in Data Loss Prevention and Information Governance
• Install Base: 70+ Countries | 7M+ Active Licenses
– Defence/Government/Finance 71%, Other 29%
5
Selected Clients
6
Our Vision
Clearswift enables secure collaboration by delivering 100% visibility of critical information, 100% of the time.
7 © Clearswift 2015
Clearswift Partner Overview
Partner Program
8
Catalyst Program Levels FY15
Commitment Competency Collaboration
Rew
ard
Resou
rces
Recog
nit
ion
Investments
Retu
rn
RO
I
Contribution
9
Partner Program – Highlights
• Up to 35% extra margin on Deal Registered Opportunities – margin protection
• Special Bid additional benefit to ensure predicable, retained margin available – margin protection
• Special bid Deal Registration means end user discount only to Deal Reg Partner – margin protection
• Multi Year Margin is now the same as First Year - simplify
• Multi Year Deal Registration is now allowable - simplify
• Incumbent Protection for Renewals Partners - no discount extended to competing Partner – margin protection
• Upgrades (new users to existing customer) attracts renewal margin not FY margin – margin protection
10
Partner Program – Margins
Discounts Bronze Silver Gold
First year 10% 15% 15%
Multi year 10% 15% 15%
Eligible for joint marketing funds
Proposal based
Participate in promotionsIncentive Programs
Clearswift generated sales leads
Deal registration 20% 30%
Deal registration as above – Special Bid* - end user price discounted
10% 15%
11
Partner Programhttp://www.clearswift.com/partners/catalyst-partner-program
12 © Clearswift 2015
Clearswift Partner Overview
What client issues can we address?
13
We’re Spoilt For Choice...
14
Ministry of Justice Fined – Prison Data Loss
• Hard drive containing details of 3,000 prisoners at Erlestoke prison in Wiltshire lost in 2013– Disk not encrypted
– Included material on organised crime, prisoners' health and drug misuse, and information about inmates' victims and visitors
• Similar incident in 2011– Details of 16,000 prisoners lost on a disk that
was not protected
– Ministry of Justice issued new back-up hard drives that could be encrypted
– Employees not told encryption option had to be switched on manually
Problem
Link to story
15
Result
Ministry of Justice Fined – Prison Data Loss
• Highly sensitive information about prisoners and vulnerable members of the public, including victims, insecurely handled for over a year
• Ministry of Justice fined £180,000
• Information Commissioner's Office (ICO) cited "serious failings" in handling of confidential data
• "We hope this penalty sends a clear message that organisations must not only have the right equipment available to keep people's information secure, but must understand how to use it."
Link to story
16
Australian Federal Police (AFP) – Redaction Fail
• AFP published highly sensitive information connected to criminal investigations– Subjects and focus of criminal investigations
– Offences being investigated
– Telecommunications interception activities
– Names of AFP officers not publicly available
• Information “hidden behind electronic redactions” in pdf documents, but could be accessed
• Documents provided to Senate available online on parliamentary sites and other sources for several years
Problem
Link to story
17
Result
Australian Federal Police (AFP) – Redaction Fail
• Subjects made aware of surveillance operations
• Jeopardised criminal investigations
• Details of AFP officers made publicly availableLink to story
18
Nuclear Regulator Hacked
• US Nuclear Regulator Commission (NRC) hacked three times in as many years
• Employee’s personal email account used to send malware to 16 other personnel– PDF attachment contained malicious active content
• Employees targeted with spearphishing emails linked to malicious software– Embedded URL linked to Microsoft OneDrive
cloud-based storage, which hosted malware
• Emails sent to 215 NRC employees in logon credential harvesting attempt– Link took victims to Google spreadsheet
Problem
Link to story
19
Result
Nuclear Regulator Hacked
• NRC maintains records on U.S. nuclear power industry, including– Databases detailing the location and condition of nuclear
reactors
– Information on inventories of weapons-grade materials
• Two incidents tracked to a foreign country
• One incident could not be traced due to incomplete ISP records
• Confidential information compromised
• Clean up costs– Deleting and recreating compromised
user accountsLink to story
20
Norwegian Spearphishing
• Spearphishing campaign aimed at carefully chosen individuals within Norwegian oil, gas and defense companies
• Targeted e-mails sent while companies engaged in negotiations for large contracts
• Attachments used to install spyware
Problem
Link to story
21
Result
Norwegian Spearphishing
• Data stolen includes– User names
– Passwords
– Industrial drawings
– Contracts
Link to story
22
Enemy Within: Let’s Make Some Money
• Contractor for Korea Credit Bureau stole data on more than 20 million people and sold to marketing firms
• Included names, social security and phone numbers
• Saved to USB stick
Problem
• KB Kookmin Bank, Lotte Card and NH Nonghyup Card fined 6 million WON each
• Firms banned from issuing new credit cards for three months
• Loss of customer confidence and brand reputation
Result
23
Enemy Within: **** This, I Quit
• Four AMD employees left to work at Nvidia
• Over 150,000 documents and emails related to AMD desktop and laptop design transferred to USB drive
Problem
• Competitor potentially unwittingly received commercial secrets
• Loss of competitive advantage
• AMD files suit against former employees
Result
24
Enemy Within: That Might Be Useful
• Analyst at Two Sigma Investments LLC stole documents, formulas and applications used to generate financial models
• Emailed copies of documents out of organization
Problem
• Loss of intellectual property
• Loss of competitive advantage
• Damage to reputation
• Analyst indicted of theft
Result
25
DLP Policy Barrier to Organization
• Defense contractor handling sensitive information
• Loss of information serious implications
• Overly restrictive policy
Problem
• 80% of messages quarantined false positives
• Large management overhead
Result
26
“Hidden” Document Metadata
• Organizations need to collaborate with third parties
• Sensitive information can be exposed in meta-data, quick save, etc.
Problem
• Damage to reputation
• Legal fines
Result
27
Encryption
• 4,000 Security and Exchange Commission (SEC) workers affected by data breach
• Contractor sent unencrypted email containing employees’ Social Security numbers and payroll information
Problem
• Damage to reputation
• Affected employees offered 60 days of free credit monitoring
• Loss of employee trust
Result
28 © Clearswift 2015
Clearswift Partner Overview
What have we got to offer?
29
From Products to Integrated Platform
SECURE Web Gateway
SECUREEmail Gateway
2012Legacy Products
2013/2014New Products
CIP Management Server
Information Governance Server
SECUREExchange Gateway
SECUREICAP Gateway
30
Adaptive Data Loss Prevention (A-DLP)
31
Adaptive Redaction
• Adaptive Data Loss Prevention (A-DLP) features that don’t drive up number of false positives and become a barrier to business communications
• Gateway removes sensitive content, hidden macros, scripts and document properties
• What you see depends on who you are and how it is being communicated
32
Adaptive Redaction
• Data redaction– Remove sensitive information
• Document sanitization– Remove meta-data, version and document history
• Structural sanitization– Removes active content
• Encryption– Secure data in transit
33
Clearswift Solutions
• Clearswift SECURE Email Gateway– Integrated anti-virus/malware and anti-spam
– Automated on-box encryption
– Adaptive redaction
– Managed service or on premise solution
– Complements Office 365
• Clearswift SECURE Exchange Gateway– Exchange 2007, 2010 and 2013
– Internal DLP policy
– Optional anti-virus/malware
– Adaptive Redaction
– Complements Office 365
– Complements boundary email solution
34
Clearswift Solutions
• ARgon for Email– Adaptive redaction
– Complements boundary email solution
– Complements Office 365
35
Clearswift Solutions
• Clearswift SECURE Web Gateway– HTML, Web 2.0 and HTTPS traffic
– Integrated cache, URL filtering, anti-virus/malware and spyware
– Adaptive Redaction
– Remote Client
• Clearswift SECURE ICAP Gateway– Integrates with Bluecoat/F5/Squid servers
– DLP controls
– Adaptive Redaction
36
Clearswift Solutions
• Critical Information Protection Management Server– Enforce device policy
– Monitor/block confidential data
– Data in use
– Data at rest
– Adaptive Redaction
• Information Governance Server– Register sensitive documents
– Integrates with other Clearswift solutions
– Reduces management overhead of enforcing DLP policy
37
Clearswift Solutions
• Clearswift SECURE File Gateway– Inspects files on the move
– Prevent sensitive data leaks and malware infection
• Content Inspection Engine (SDK)– Enables developers to add content inspection
– Rich Application Programmable Interface (API)
• Clearswift MIMEsweeper for SMTP– Clearswift EXCHANGEmanager
– Clearswift IMAGEmanager
38
Internal
Perimeter
Internet
Where Clearswift Fits
SECURE Web Gateway
SECURE ICAP Gateway
SECUREExchange Gateway
SECUREFile Gateway
Software Development Kit
Remote Client iPhone PMM
Tracking and
Analysis
Information Governance Server
Critical Information Protection Agent
Critical Information Protection
Management Server
SECUREEmail Gateway
39
Value to Client
• Protect brand/reputation
• Protect intellectual property and maintain competitive edge
• Protect against financial fines and clean up costs
• Avoid increased employee turnover
40 © Clearswift 2015
Clearswift Partner Overview
Summary
41
Summary
• Innovating in Data Loss Prevention and Information Governance
• Client can invest in solution(s) that meet immediate business needs
• Then leverage investment by deploying subsequent solutions to provide consistent protection
• Complements existing solutions – not rip and replace
© Clearswift 2015 42
Clearswift Partner OverviewAny Questions?