HiSoftware Security Sheriff^™ SP

GET STARTED

While thousands of organizations are deploying SharePoint 2010 to manage enterprise content, streamline business processes, and deliver “enterprise 2.0” collaboration capabilities, compliance and security concerns − and their associated risks − remain top of mind.

As the amount of content and user interaction increases, particularly given the enhanced collaborative capabilities of SharePoint 2010, the chance for a security breach or a compliance violation increases as well. A solution that automatically classifies, applies permissions, tracks, encrypts and prevents the inappropriate storage, access and distribution of sensitive content stored in SharePoint is clearly necessary to overcome this confidence gap.

Making SharePoint Safe for Sensitive Data

Security Sheriff SP builds upon the policy scanning and classification features of Policy Sheriff SP to deliver content-aware security within SharePoint. Security Sheriff SP restricts access to and encrypts content based upon the presence of Protected Health Information (PHI), Personally Identifiable Information (PII) or other sensitive corporate information using the functionality outlined below:

Scan

Organizations scan information at rest within their SharePoint sites against the HiSoftware rules engine to assess the level of sensitive information present and identify compliance issues. In addition to information at rest, Security Sheriff SP also scans data in motion against these corporate policies as documents move in and out of your SharePoint environment.

Report

Through the Policy Dashboard, Security Sheriff SP provides executive visibility into SharePoint compliance status. Via standard reports, compliance and privacy officers get real-time insight into the compliance status of the SharePoint environment, identify teams or departments where issues are recurring, and measure progress against compliance objectives over time.

Classify

As Security Sheriff SP scans your SharePoint content, the content is classified via the addition of a metadata filed. Content scans are triggered: by the HiSoftware rules engine while it scans data at rest within a specific SharePoint site or library; automatically as new documents and items are added to SharePoint; or by authorized users when they create and/or edit an individual document or content item.

Restrict

Based upon the business rules associated with its classification, access to a document or content item within SharePoint can be restricted to a specific individual or group, even if a wider audience has access to the site or library where the item physically resides in SharePoint.

Encrypt

When Security Sheriff SP identifies sensitive content, it can encrypt the information immediately. This means only properly credentialed users will be able to access the content — whether inside or outside of SharePoint — even if they have SharePoint administrator privileges.

Prevent

Security Sheriff SP can prevent sensitive information from leaving SharePoint. For example, if a document is going to be emailed to a group and a listed recipient does not have proper access to that category of document, the email cannot be sent until that individual is removed from the distribution list.

Track

Security Sheriff SP tracks the entire lifecycle of SharePoint content and documents. This means that a policy officer can see if and when a document has been accessed, emailed, printed or edited, and by whom. A document’s entire “chain of custody” is recorded and easily available in the event of a breach or a regulatory audit.

Workflow

As specific areas of content risk are identified in SharePoint, Security Sheriff SP triggers workflow to remediate compliance issues and/or task the proper individual(s) in the organization to review and potentially classify, re-classify and encrypt the content. Workflow can also be used to prevent the publication of non-compliant content (e.g. in a discussion forum or blog) based upon the policies managed within the HiSoftware rules engine.

HiSoftware allows organizations to automate the monitoring of SharePoint content both at rest and in motion. The flexible rules engine within Security Sheriff SP ensures information moves in and out of your systems in accordance with your privacy policy, Written Information Security Program (WISP), and brand standards while preventing a damaging breach of private or other confidential information that could impact your bottom-line and your corporate reputation.

Sheriff Office Connectors and Sheriff Outlook Connectors for Microsoft Office and Outlook

By deploying the Sheriff Office Connectors and Sheriff Outlook Connectors for Microsoft’s Office and Outlook applications, organizations can add further controls to prevent sensitive content from being viewed by unauthorized users. Security Sheriff SP, working in concert with the Connectors, allows individual content contributors to scan and classify content on its way into and out of SharePoint from within the familiar Microsoft ribbon interface. Once classified, credentialed privacy or other policy officers may choose to upgrade, downgrade or override a user classification, as needed, to ensure that a specific document is tagged with the proper level of sensitivity. Both Connectors are optional add-ons and are sold separately.