Over the last three decades, Jubilant Life Sciences has emerged as an integrated Pharmaceutical and Life Sciences Solution Provider offering products & services to its customers across the globe.
The company decided to deploy Data Loss Prevention
Pre-deployment:
Before going for DLP, the company had deployed data classification software in the company. That enabled the company to protect only the classified and sensitive information and reduces the false positive cases as reported by the software.
The company supports about 3000 locations spread in about 12 locations. In addition the company also provides IT services to many of its subsidiary companies and sister concerns.
Implementation:
Jubilant Life Sciences decided implement the Websense DLP solution.
The DLP implementation was governed by the information security policy of the company. For governance we have taken one person from all the major departments and business who will analyze the incidence reported and will take adequate action.
Tests & Validation:
Jubilant Life Sciences has developed a dash board which provides the security standing of different operational areas throughout IT environment. The company is also in the process of automating this dashboard using SIEM solution which we are in process to deploy.
To ensure protect without disruption the DLP solution was thoroughly tested and tuned to cause zero business interruption. To ensure proper Data Loss Prevention governance all departments have designated there resource to review DLP incident logs and take suitable actions.
Post deployment:
The data center host the ERP and Email systems of the group companies. The information security infrastructure consists of load balance, firewall, MTA, Web proxies, DLP, Encryption systems, Anti-virus, log management system etc.
The company uses the following security products:
Firewall : Fortigate
Web Proxy: Cisco Iron Port
MTA: Cisco Iron Port
DLP: Websense
AV: Trend Micro
Load Balancer: Radware.
Threats covered:
The deloplyment of DLP solution has redeced the risk of intentional/ unintentional loss of confidential business information.