DeviceLock® Helps Gazpromneft-Khantos Meet Critical Information Security Challenges
JSC Gazprom Neft is one of the largest and fastest growing oil and gas producing companies in Russia. The main business activities of Gazprom Neft include oil and natural gas production, oil and gas field facility services, oil refining, and the marketing of petroleum products. The proven reserves of the company exceed 4 billion barrels, which ranks the company amongst the world’s twenty largest oil companies. Gazpromneft-Khantos LLC, formerly Sibneft-Khantos, was founded in 2005 and is one of the main Gazprom Neft extracting enterprises in the Khanty-Mansiysk Autonomous District. Since 2006 Gazpromneft-Khantos has been operating more than 200 wells and extracting about 5 million tons of oil annually. In addition, Gazpromneft-Khantos is developing the Zimnee oil field located in the Uvatskyi district of the Tyumen Region.
The IT Security Division of Gazpromneft-Khantos has been conducting regular and off-schedule audits of the organization’s information security system to verify its compliance with applicable standards and to discover additional regulatory, organizational and technical actions for improving the overall IT security posture of the organization. Recently, it decided to implement a unified multi-tier information protection system for the entire IT infrastructure of Gazpromneft-Khantos. One of the core elements of this system identified by the IT Security Division was software to reliably control and trace end-user access to peripheral devices and local ports on corporate endpoint computers. After conducting thorough evaluations of several available software solutions, Gazpromneft-Khantos chose DeviceLock software from DeviceLock, Inc. (formerly SmartLine).
"Our decision was based on a number of factors," explained Edward Milashevsky, Head of IT Security Division at Gazpromneft-Khantos. "First, during testing, no noticeable problems or issues related to DeviceLock operations were discovered in the scope of its declared functionality. Secondly, the product demonstrated outstanding usability and manageability, while delivering unbeatable price/performance value. Thirdly, we received many positive testimonials from our colleagues in other organizations that had experience using DeviceLock."
"Since deploying DeviceLock, it has proven to be an effective technical solution to support our IT organization’s compliance with information security standards. Undoubtedly, the deployment has solved a considerable portion of our internal IT security issues. Due to DeviceLock’s wide functionality, it has effectively reduced the risk of internal leaks of confidential corporate data," added Edward Milashevsky. "Moreover, we did not have any difficulties installing and configuring DeviceLock. Not only does the product support LDAP integration, but it can also be completely deployed, configured and managed through Group Object policies – and this was a big plus for us. The IT Security Division and IT administrators of Gazpromneft-Khantos are entirely satisfied with the product’s Graphical User Interface and its wide set of capabilities."
DeviceLock-based software solutions proactively protect organisations of all sizes across all sectors against data leakage and prevent the infiltration of a corporate network by malware through local ports of employees’ computers, thereby significantly reducing business risks resulting from insider negligence, errors or malicious actions. DeviceLock software is designed for Microsoft Windows operating systems and features comprehensive central management that is natively integrated with Microsoft Active Directory®. It enables organizations to precisely control, log, shadow-copy and audit end-user access to all types of local ports and peripheral devices, including any printers, as well as Windows Mobile® and Palm® OS based personal mobile devices. DeviceLock supports true file type detection and filtering by intercepting any file system’s read/write operations with peripheral devices, performing real-time analysis of the entire binary content of transmitted data and enforcing applicable file-type based security policies. DeviceLock also integrates with leading encryption products from PGP, Lexar, and TrueCrypt, in order to protect data on removable storage devices. In addition, DeviceLock blocks operations of USB and PS/2 hardware keyloggers.