Improve detection with policies and machine learning working together

Detection is simply better when you combine the power of machine learning to find the “unknowns” and rule-based policies to find the “known” threats. Respond to both type of threats immediately, regardless of an employee’s location or network status.

Activity and file-focused data loss protection

Insider threat

Identify abnormal user, application, and operating system behavior with machine learning. Catch data exfiltration attempts such as web uploads, printing, data sent and received, USB, DNS tunneling, and many other vectors. Prevent data from leaving your organization with real-time actions and content inspection policies.

Unauthorized access

Detect compromised user credentials by analyzing all user actions and patterns leading up to the moment in question - not just those that triggered a sensor. Expose phishing attacks to stop them from spreading within the organization. Detect spoofed Wi-Fi networks by tracking BSSIDs.

Data loss

Inspect all content in-motion. Understand the full context around any event with visibility beyond policy violations. Mitigate risk by locking out a user or isolating the endpoint from the network for high-severity events.

Better protection

Policy packs

  • Control threat detection and automate response from day 1.
  • Define rules for specific user activities and the automatic actions that are taken if these rules are breached.
  • Out of the box, customizable and create your own.
  • DLP policy packs combined with content inspection on files.
  • Additional policy packs: browser, connection, login, mail, printing, risk of leaving, Rsync, SCP, SFTP, USB, Wi-Fi, and application.
  • Policy and automated actions works offline.

Machine learning

Corporate policy violations

  • Using cloud storage, USB usage, and connecting to unsecured networks.

Malicious or abnormal activity

  • Outbound connection, machine generated DNS, binary file execution, and change in home/office pattern.

External attack attempts

  • Port scanners, spoofed Wi-Fi networks, and failed login attempts.

Data exfiltration

  • Inbound/outbound bytes sent and received, DNS exfiltration, web uploads, and printing amount.

Real-time actions

  • Display message to prompt users with a customized on-screen notification.
  • Take screenshot to capture users desktop, visible through activity feed and action logs.
  • Multi-factor authentication to confirm an employee’s identity, if they’re behaving abnormally.
  • Lock a computer if malicious intent is identified.
  • Isolate an infected computer or server from the rest of the network to prevent malicious software from spreading.

Want to stop data leaving your organization?

Join the most secure businesses. Protect more with fewer tools. Test how Jazz Networks protects your organization today with the 30-day free cloud trial. Jazz Networks’ analyst team will give you a threat hunt report in 30 days free of charge.

Join action icon