Quick Contact
888-80-INNET

DLP

Check Point DLP

Overview

Check Point revolutionizes DLP by combining technology and processes to move businesses from passive detection to active Data Loss Prevention. Innovative MultiSpect™ data classification combines user, content and process information to make accurate decisions, while new UserCheck™ technology empowers users to remediate incidents in real time. Check Point’s self-educating network-based DLP solution frees IT/security personnel from incident handling and educates users on proper data handling policies – protecting sensitive corporate information from both intentional and unintentional loss.

Key Benefits

  • Prevents data loss of critical business information
    New UserCheck technology empowers users to remediate incidents in real time
  • Combines technology and processes to make DLP work
    Innovative MultiSpect data classification engine combines users, content and process that delivers unrivaled accuracy
  • Easy deployment for immediate data loss prevention
    Protect sensitive data from day one with pre-configured policies and the broadest support for file formats and data types

Check Point UserCheck™
Check Point UserCheck empowers users to remediate incidents in real time. This innovative technology alerts users of suspected breaches, allowing for instant remediation, and allows quick authorization of legitimate communications.

UserCheck empowers users to self-administer incident handling, with options to send, discard or review the issue, improving security by raising awareness of data use policies. Real-time notification based either on a pop-up from a thin agent or via a dedicated email sent to end user (no need to install agent). Organizations benefit in several ways:

  • Full prevention – enables a practical move from detection to prevention
  • Self-educating system – doesn’t require IT/security personnel in incident handling while educating the users on proper data sharing policies

Check Point MultiSpect™
Check Point’s innovative MultiSpect data classification engine combines users, content and process into accurate decisions. Check Point DLP delivers exceptionally high accuracy in identifying sensitive data including personally identifiable information (PII), compliance-related data (HIPAA, SOX, PCI data, etc.), and confidential business data. This is achieved through the MultiSpect technology, a strong 3-tier inspection engine:

  • Multi-parameter data classification and correlation – Multi-protocol inspection and enforcement – inspects content flows and enforces policies in the most widely used TCP protocols including SMTP, FTP, HTTP and webmail, pattern matching, and file classification for identifying content types regardless of the extension applied to the file or compression.
  • Recognize and protect sensitive forms – file/ form matching (based on predefined templates)
  • Identify unconventional business communication behavior – Out-of-the-box best practice policies

In addition, an open scripting language is available for creating custom data types. This unique flexibility provides virtually unlimited support for protecting sensitive data.

Network-wide Protection Coverage
Check Point’s DLP solution is based on a new in-line network-based Software Blade which runs on any existing Check Point gateway. The Check Point DLP Software Blade is an advanced data loss prevention solution for data transmitted over networks with wide coverage of traffic transport types including deep application awareness protecting data in-motion including (SMTP, HTTP, FTP). DLP policies are created to define what to prevent and how to prevent, per policy, per network segment, per gateway and per user-group.

Central Policy Management
The DLP blade is managed centrally with Check Point Security Management™ through a user-friendly interface. Centralized management offers unmatched leverage and control of security policies, and enables organizations to use a single repository for user and group definitions, network objects, access rights, and security policies across their entire security infrastructure. Unified access policies are enforced automatically throughout the distributed environment, empowering them to securely provision access from anywhere.

Unified policy deployment across multiple gateways controls enforcement actions per policy; i.e. Detect (log only), or Quarantine (self-incident handling). Policy management includes the following features and options:

  • Selection of data type(s) and user group(s) –also using Active Directory
  • Enable exceptions -allowed users
  • Traffic direction – enforce on outbound or inter-departmental traffic
  • Pre-defined policies and content data types
  • Incremental exposure of specific policies per different user groups
  • Integrated Logging and Event correlation
  • Customization of internal quarantine
  • Granular protection control – easy-to-use protection profiles allow administrators to define signature and protection activation rules that match the security needs of your network assets
  • Predefined default and recommended profiles – provide immediate and easy use out-of-the-box with profiles tuned to optimize security or performance

Event Management
Separating the needle from the haystack, SmartEvent for DLP allows you to monitor and report only what is important. Event management includes the following features and options:

  • Real-time and history graphing and reporting of DLP events
  • Easy incident correlation
  • Graphical incident timeline
  • Easily configured custom views
  • Event / incident management workflow

Rapid and Flexible Deployment

Organizations of any size can be protected from day one with pre-configured templates. A wide range of built-in policies and rules are included for common requirements, including regulatory compliance, intellectual property, and acceptable use.

The Check Point DLP Software Blade can be installed on any Check Point Security Gateway ( based on Check Point appliances or open server platforms). Deploy easily and rapidly on existing Check Point Security Gateways saving time and reducing costs by leveraging existing security infrastructure. In addition, a full range of powerful and highly scalable DLP-1 appliances are available to align with any network security requirements.

  • Contact us

    • Office Hours
      Monday through Friday
      8:00am - 6:00pm
    • Our Office Locations
      Southwest Regional Office:
      5729 Lebanon Road, Suite 144
      Frisco, TX 75034

      Southeastern Regional Office:
      10200 NW 25th Street, Suite #207
      Doral, Florida 33172

      Atlantic Regional Office:
      1705 Holbrook Street
      Greensboro, NC, 27404
    • Phone and Fax
      888-80-INNET (phone)
      240-332-5954 (fax)

Innovation Network Technologies sign up form


Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur excepteur sint occaecat cupidatat non

Innovation Network Technologieslogin form