Monitoring employees in the financial sector, DLP for banks

The financial services industry is a primary target for attacks. The reasons are obvious: this sector handles and stores exactly what criminals want most - money, trade secrets, and personal information.

The biggest threat to the financial industry comes from its employees (insiders). Insiders steal information directly or simply become targets for phishing attacks.

To identify internal threats, organizations providing financial services need to have an IT security solution in place to detect insider threats and prevent data leaks.

The system OctoWatch is a comprehensive solution that includes tools for monitoring user activity and a DLP system.

An important competitive advantage of the system is its low resource requirements and democratic licensing policy.

 

Here are just a few examples of successful use of OctoWatch:

  • The system can automatically find important data and confidential information and determine when it is at risk.

  • OctoWatch detects insiders by intercepting emails, instant messages, and social media communications.

  • OctoWatch records the screen, microphone, webcam, keystrokes, file operations, printed documents, and clipboard content.

  • By configuring appropriate rules, you will be notified when a user attempts to upload a confidential file to the cloud, social media, file-sharing services, or as an email attachment.

  • Thanks to the rules, the launch of unknown applications will also be blocked to minimize the risk of virus infections.

  • By setting up monitoring of printing or screen activity, as well as automatic computer shutdown, you can prevent the theft of confidential information through printing or photography.

 

Implementation Case: Microfinance Company

The software modules of OctoWatch were used in a microfinance organization to monitor the quality of communications between employees and clients via instant messaging, email, and phone. For this purpose, in particular, the functionality for recording sound from the microphone was used.

The monitoring was conducted on a scheduled basis, and random checks indicated a high level of specialist performance.

The information obtained also helped resolve a conflict situation: one of the partners of the microfinance organization claimed that the consultant had provided him with incorrect information, which subsequently led to significant losses. Analyzing the correspondence and voice communication with this partner (recording of the consultant's audio consultations via Skype) demonstrated that the consultant provided exclusively accurate information, and overall, the quality of work was high.

Implementation Case: Bank

A bank in Perm discontinued its expensive and ineffective DLP system in favor of OctoWatch.

The bank's board of directors instructed the IT department head to reduce software costs. The bank was using an outdated and very expensive DLP system (cost per license ~15000 rubles). IT auditors conducted a market analysis, compared features, and concluded that OctoWatch only lagged in the absence of a content analysis system for files and overall complied with the Central Bank's regulatory requirements. Since this functionality was not used by the security specialists, the system was successfully implemented, enabling the bank to reduce its DLP expenses by 2 million rubles annually.

Try it free for 14 days

 

 

 

WhatsApp Logo