Data Loss/Breach/Discovery Assessment
Available from CynergisTek
CynergisTek utilizes Code Green Networks TrueDLP platform and their network DLP appliance (complete with content inspection agent if desired) which enables configurable scanning of network attached assets for sensitive data content. The CynergisTek team spends a fair amount of pre-assessment time with the client’s liaison to identify the best target assets for evaluation and define the content discovery policies and rules that will guide the assessment. Target assets for scanning and meta-data fingerprinting often include a mix of databases, file shares, servers, and desktops. Once introduced to the environment, the DLP platform is in place to scan for up to 2 weeks. The appliance is configured to conduct passive inspection only. During this time designated customer personnel will have full access to the management console to observe, in real time, the inspection traffic.
As output from this type of assessment a results log will contain detail of each discovered file matching the established policy/rule criteria and a dashboard summary displays the discovery results. This information is invaluable in not only establishing definitive answers to the critical question “where does PHI live?”, but also tangible evidence of what many suspect/know (what data is leaving the environment that shouldn’t be leaving and through what channels), but previously lacked the smoking gun as proof positive.