Large Enterprise Professional Services Company


  • Is concerned about protecting the following types of information:
    • Healthcare information
    • Employee PII
    • Customer PII
  • Require data protection during the following circumstances:
    • Database security
    • Unstructured data security
    • Contractual requirements (either with a customer or for suppliers)
    • Security of data during hardware repair or disposal

Use Case

  • Applies Vormetric Data Security to adhere to global compliance regimes in the following ways:
    • Secure personal information
    • Provide security, access control and reporting so enterprises can demonstrate effective controls over sensitive information mandated by Sarbanes-Oxley, GLBA, and Basel III
    • Enable large, consolidated datacenters to segregate and control data to meet the legal obligations of data across borders compliance measures without modifying applications or storage infrastructure
  • Uses Vormetric Data Security to achieve the following:
    • Lock down their data with encryption, strong key management, and security intelligence
    • Create strict access policies that ensure only authorized users can access sensitive information
    • Leverage alerts that trigger red flags when users are performing actions outside of the behavioral norm
    • Establish an appropriate separation of duties between IT operations and IT security
    • Protect cloud deployments securely
  • Uses the following SIEM solutions to identify possible internal threats or APTs:
    • AlertLogic


  • Prevents the following insiders from accessing protected data with Thales eSecurity:
    • System administrators
    • Domain administrators
    • Network administrators
  • Purchased Vormetric Data Security for the following reasons:
    • Network-centric and perimeter security do not protect sensitive data
    • A data-centric strategy locks down the data, and removes risk from privileged users
    • Thales eSecurity sets controls around the data and examines controls from the inside out
    • Data is the main target for APTs and server data is the biggest target
    • Data-centric security mitigates risk and reduces the attack surface for APTs
  • Rates the likelihood of recommending Thales eSecurity as 10 out of 10.