skip to Main Content

Symantec strengthens
enterprise DLP

Case Study


The risk of data loss increases dramatically as we use devices and networks outside of IT’s control. Meanwhile, gathering the data necessary to assess data loss becomes increasingly difficult.


With the Napatech SmartNIC and Symantec DLP Network Monitor, you can detect confidential data that is being sent outside of the corporate IT network with zero packet loss.


With the Napatech SmartNIC and Symantec DLP Network Monitor, you get full visibility into all business communications so you can identify high-risk users that mishandle sensitive information and put your enterprise at risk of data loss.

Symantec in brief
Symantec is a leader in providing enterprise data loss prevention (DLP) solutions, according to Gartner’s Magic Quadrant for Data Loss Prevention. DLP has emerged as a huge security concern with the number of data breaches growing, which costs time, money and brand erosion. To identify data loss blind spots, Symantec Data Loss Prevention (DLP) Network Monitor continuously inspects business communications for confidential data before it leaves the IT network.

Challenge: understanding the extent of data loss risk
Today, enterprises recognize the need for security as the amount of data generated and gathered increases exponentially. Their need to protect their intellectual property (IP) to remain competitive and their customers’ information is a huge (if not the top) priority amongst IT executives. No one is safe especially given the number of data breaches that have occurred alone in 2016 across verticals – email providers, social networking, manufacturing, healthcare, education, government, software, retail.

The risk of data loss for any enterprise increases dramatically as we use devices and networks outside of IT’s control, specifically mobile devices and the cloud. Not only do the number of potential areas for data increase, but the amount of data to be monitored also grows dramatically. Having to gather all the data necessary to assess data loss becomes increasingly difficult.

Solution: Network Monitor with Napatech acceleration
Symantec’s Network Monitor allows an enterprise to assess exactly where data loss lies. The solution passively monitors data traversing the network, thus not impacting daily operations. Ultimately, this allows customers to define exactly how to prevent such data loss in the future once the security holes are identified. To ensure that Network Monitor shows accurately the extent of data loss, the Napatech SmartNIC enables full data packet capture at all times. With Napatech, Network Monitor fully identifies all data that has been sent outside of the IT network to date.

The Napatech SmartNIC ensures that all packets traversing in and out of the enterprise network are captured. Subsequently, Symantec Network Monitor can inspect all relevant data captured and the enterprise gains a comprehensive picture of its data loss risk. Given the amount and type of data being transmitted continues to grow, assessing the risk thoroughly becomes critical.

The benefits of this solution apply across industries:

Case 1:
Ensuring patient confidentiality is of the utmost importance in US healthcare with the emergence of electronic health records (EHR). While EHR help medical practitioners in delivering comprehensive and streamline services to patients (allowing healthcare facilities to quickly access a person’s health history), personal health information (PHI) within these records is mandated by law to remain private via the Health Insurance Portability and Accountability Act (HIPAA). Unauthorized access to PHI will not only leak identification information (date of birth, social security number), but also diagnoses that legally can only be shared between doctor and patient. For example, an insurance company may request information from the healthcare provider to verify a patient’s coverage.

To expedite, the healthcare provider may send a patient’s unencrypted files. With Network Monitor in place, this communication would automatically be flagged as non-compliant in real-time, allowing the provider to take immediate action

Case 2:
The risk of data loss in the retail sector is easily translated into potential lost revenue, as companies need to protect their intellectual property (IP) to remain competitive. With today’s biggest retailers serving customers worldwide, they must share IP with numerous local distributors. The exchange must be secure to minimize the chances of data leakage that competitors could use to their advantage (e.g. theft).

It is critical for retailers to provide up-to-date pricing. In some cases, the retailer will provide a central document repository for distributors to access. A distributor may need updated pricing for a client meeting and cannot access the repository while in the field, and then will request the retailer to send the information directly.

However, the retailer does not allow pricing information to be sent directly to a distributor (via email or ftp, for example). Napatech will enable Network Monitor to capture those instances of non-compliance, thus eliminating that IP to be vulnerable to theft.

Case 3:
Even universities must concern themselves with data loss. These institutions also generate IP through research sponsored by both government agencies and the private sector. Yet, universities are known for dealing continuously with tight budgets and may not have the time or resources to implement a comprehensive DLP solution. With the Napatech SmartNIC, Network Monitor can assess the actual DLP risk in a relatively short amount of time. The efficient packet capture allows the organization to fully comprehend the extent of the data loss risk. This understanding will allow the university to make the business case for implementing the architecture for DLP and develop a realistic plan to address issues in both the short and long-term.

Back To Top