While the other DLP agent made use of a type of fingerprinting technology that might be more accurate than the Sophos DLP, so far it appears that the Sophos technology is going to be sufficient to protect sensitive customer data. “I think it’s going to be accurate enough for what we need,” Raymond says, adding that the firm also has other gateway means to monitor for unauthorized transmissions.
According to Gawlick, Sophos DLP on the desktop can be used to block, allow or notify a user of violations of policy.
“You can use it to simply warn the user,” Gawlick says, by telling them if the file is sent, that transmission will be logged into the management console. Administrators can be kept apprised of DLP actions via the same management console used to watch for malware events.
Although Sophos DLP doesn’t support FTP now, subsequent editions will, and Sophos also plans a gateway-based product by the end of the year that would work with the same set of DLP rules.
Sophos Endpoint Security and Data Protection 9, available now, starts at $34.25 per user for 500 users.