Data Loss Prevention Case Studies

Halyk Bank Relies On DeviceLock® To Control Local Ports Of Endpoint Computers

DeviceLock, Inc., a worldwide leader in endpoint device control software solutions, today announced that its DeviceLock® software has been deployed by Halyk Bank of Kazakhstan, the largest universal bank in Kazakhstan, at all bank offices and branches to protect their employees’ computers from data leaks and uncontrolled use of locally connected devices.

With more than 80-years in business, Joint Stock Company “Halyk Bank of Kazakhstan” is one of Kazakhstan’s leading financial services groups. Based on owned assets and equity capital, it is the third largest bank in Kazakhstan, and its retail bank has the largest customer base and distribution network among Kazakhstan banks. The Halyk Bank Financial Group offers a broad range of services including banking, pensions, insurance, leasing, brokerage and asset management to its retail, small and medium enterprise and corporate customers. As of the end of 2007, Halyk Bank’s branch network consisted of 670 outlets, comprising 22 regional branches, 125 district branches, 473 limited service branches, four VIP centers and 46 personal service centers.

Halyk Bank regularly conducts compliance audits of its IT security system to the requirements of the ISO/IEC 17799 international standard. Based on the latest audit results, it is assuming additional safety precautions to protect the bank’s confidential data by deploying DeviceLock® endpoint security software developed by DeviceLock, Inc.. DeviceLock® provides centralized control over employee access to the local ports of their workstations.

"DeviceLock has been successfully deployed across all Halyk Bank’s offices and branches," commented Askar Kulmanov, Head of Information Security. "We are completely satisfied with the product’s functionality and performance."

Since the deployment, an IT security policy that specifies the use of the DeviceLock®-based solution is in force at the bank.

DeviceLock® is a precise and flexible tool for both enforcing security policy and performing audits of activity at end-user computer ports and peripheral devices including Windows Mobile® and Palm® -based personal mobile devices, as well as any type of local, network and virtual printers. From a central console, IT security administrators can control access to ports and devices, as well as log and shadow-copy any uploaded or downloaded data. The product supports user group policies, as well as time-, date- and data flow direction-based permissions. IT security administrators can also define a DeviceLock® “white list” of USB devices, in this way ensuring user access to specific devices regardless of any other restrictions that would otherwise be imposed based on device class or model. In addition, DeviceLock® blocks operations of USB and PS/2 hardware keyloggers.

DeviceLock® features a comprehensive central management console natively integrated with Microsoft Active Directory® including Group Policies support, thus making the process of device access control easy and simple for corporate security administrators. DeviceLock®’s administrative functions can be shared among multiple security administrators with different roles defined from the DeviceLock® management console.

DeviceLock®’s Data Shadowing feature facilitates security audits because it captures complete copies of any data files that end users have transferred to mobile or removable storage devices. All event and data shadowing logs gathered at DeviceLock®-protected computers are automatically collected to a central SQL-based database for further audit and analysis.

Download a free trial copy and try DeviceLock® now!