Gradian Systems Ltd

Broadcom/Symantec Data Loss Prevention

Extends data loss prevention across the enterprise, detects insider risks, and protects critical information from exfiltration

Features

• Extensive Visibility and Control for Data-In-Use, At-Rest, and In-Motion
• Full Incident Details and Context of Data-at-Risk Speeds Up Investigation
• Automated and Manual Actions Remediate Critical Incidents Quickly
• Unrivalled Content Detection Follows Your Data Everywhere
• Centralized-Policies and Granular-Controls Ensure Safe Data-Usage Without Slowing Down Employees
• UEBA Pinpoints and Prioritizes Problems into Actionable Insights

Benefits

• Protects brand reputation, intellectual property, regulated data, and other sensitive-information
• VisibilityInto where sensitive-data lives and moves at the-endpoint, in-storage, over-networks
• Provides comprehensive channel coverage and advanced content inspection
• Simplifies incident triage, streamlines remediation, and detects risky-behaviour and insider-threat
• Reduces complexity- a single unified-platform for on-premises and hybrid-cloud environments

£1 a licence

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at stuart.case@gradian.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

777972481703757

Contact

Stuart Case
07770 377936
stuart.case@gradian.co.uk

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Symantec WPS, Symantec SES, Symantec VIP
• Cloud deployment model: Public cloud
• Service constraints: N/A
• System requirements: Symantec DLP management platform ( Enforce)

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Please see Gradian support guide
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Please see Gradian Support guide
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Comprehensive documentation is provided.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Data Loss Prevention incidents are stored in the Symantec DLP management platform (which is a pre-requisite for this service). The management platform is normally installed on a customer site. Incident data can be exported in CSV or XML format.
• End-of-contract process: At the end of the contract the service will cease to work.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: Yes
• Compatible operating systems:
  • Android
  • IOS
  • Linux or Unix
  • MacOS
  • Windows
  • Windows Phone
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: None or don’t know
• API: No
• Customisation available: Yes
• Description of customisation: Buyers can create and manage their own data loss prevention policies in line with their requirements.

Scaling

• Independence of resources: All DLP Cloud services are loosely-coupled and designed to be flexible and redundant.

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Symantec/Broadcom

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: Other locations
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: In-house
• Protecting data at rest: Other
• Other data at rest protection approach: The service applies multiple levels of encryption to protect the confidentiality and integrity of customer data (policies, profiles, incidents, etc.). The top level keys are managed by AWS KMS, and individual keys are protected by customer-specific IAM roles. All encryption is AES with 128- and 256-bit keys
• Data sanitisation process: No
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: DLP incident data can be exported in CSV format. The export mechanism supports the bulk export of this data.
• Data export formats: CSV
• Data import formats: Other
• Other data import formats: No requirement to upload data

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Available on request
• Approach to resilience: Available on request
• Outage reporting: The portal provides public updates and there are email and text alerts for any severe outages. Where Emergency Maintenance is necessary and is likely to affect the Service, Symantec will endeavour to inform the affected Customers in advance by posting an alert on the management console or by delivering an alert via email no less than one (1) hour prior to the start of the Emergency Maintenance.

Identity and authentication

• User authentication needed: No
• Access restrictions in management interfaces and support channels: Access management for administrators is controlled through the cloud based console. End users do not interact directly with the service. Symantec access to the cloud infrastructure is controlled both by two factor authentication, and IP address whitelist, such that only relevant Symantec personnel can access the systems.
• Access restriction testing frequency: At least once a year
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Unknown
• ISO/IEC 27001 accreditation date: May 2016
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: All staff are required to read and comply with our security policies. Staff are trained in line with our security practices. Our Chief Security Officer reports directly to Symantec's General Counsel. Our policies and processes include, but are not limited to, security, incident response, business continuity, secure software development and supply chain risk management. External versions of a number of our policies are available here: https://www.symantec.com/about/customer-trust-portal

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Any changes in production infrastructure have to be tested and certified in the Continuous Integration/ Continuous Delivery (CI/CD) pipeline. Changes are nominated, tested, certified, and promoted to production. Sprint cadence is currently every 3 weeks. Lastly, infrastructure changes are infrequent, ticketed, and done by updating templates rather than making manual changes
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Symantec has a formal process for handling and managing vulnerabilities. For any externally reported issues, Symantec follows the process outlined in ISO 29147, Information technology — Security techniques — Vulnerability disclosure ([ISO/IEC 29147:2014(E)]). Symantec's Software Security Group works with the impacted team(s) to: • Recreate the environment and issue within Symantec’s labs for an expedited resolution. • Facilitate a prompt and accurate response. • Avoid delays in new Symantec releases.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Available on request
• Incident management type: Supplier-defined controls
• Incident management approach: Symantec’s internal Security Incident Response Plan documents repeatable, industry standard procedures for handling actual cyber threats when they arise. It also provides the necessary engagement and information-sharing processes to allow prompt coordination among all relevant stakeholders, and describes the reporting, communication, containment, investigation, and recovery mechanisms that exist to support a comprehensive end-to-end process flow from threat detection through remediation. The development and implementation of this forward-looking plan supports Symantec’s ultimate mission to its customers, partners, shareholders, and employees as a trusted leader in information security risk management.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  Equal opportunity

  Equal opportunity

  Gradian are very proud to be an equal opportunity employer.

Pricing

• Price: £1 a licence
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at stuart.case@gradian.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.