Data Loss Prevention Case Studies

Silver Legacy Resort Casino plans multi-vendor approach to DLP

Silver Legacy Resort Casino of Reno, Nevada, has slot machines and gaming tables covering an 85,000 square foot casino floor. It’s been selected as the 6th “Best Casino You’ve Never Heard Of” in the United States.

Recently Silver Legacy has renewed and further extended its license coverage for DeviceLock to continually provide the first layer of its comprehensive Data Leak Prevention (DLP) strategy that incorporates both network and endpoint vulnerability handling.

"Silver Legacy has been using DeviceLock for port and device security for a few years already. We need to be as vigilant as any bank or credit card company about safeguarding data privacy and security," comments Charles McCall, Network Manager. "We’re held to a similar level of regulatory compliance, and we can also expect regular visits from Nevada gaming commission auditors, so this solution has long been a necessity. We chose DeviceLock over other solutions due to its flexible controls and simplicity of implementation with group policy objects. We can handle this right along with other Group Policy–related tasks. Thanks to DeviceLock’s superior integration into Active Directory, those of us who interact with DeviceLock almost forget that it is a third-party layer."

DeviceLock allows security staff to set fine-grained access, auditing, and shadowing rules for USB-connected media and other potential endpoint leakage channels from CD-ROM drives and WiFi ports to proprietary PDA synchronization and even network printer output. To achieve yet a higher level of data leakage protection and compliance assurance, Silver Legacy plans to apply a separate third-party content filtering solution to monitor any endpoint data streams that DeviceLock allows, as well as to monitor all network protocols for breach-worthy content.

"Silver Legacy needed a complete solution that can be “set and forget” for their current needs, while also being scalable and flexible to accommodate new devices and evolving regulations and mandates," explains Ira Victor, Silver Legacy’s primary data security consultant from Data Clone Labs, Inc. "A filtering solution that would deliver content-only DLP for email, instant messaging, web, as well as some endpoint channels seemed reasonable. But, we remain unconvinced that the singular content-only approach would give the flexibility and fine-grain control over all data flows at the endpoint that DeviceLock has successfully provided for years. So, we used a standards-based 'layers of security' strategy."

"Silver Legacy is not alone in combining DeviceLock’s endpoint controls with content-filtering DLP solutions in their drive toward 100% coverage," says David Matthiesen, DeviceLock’s Director of Sales for North America. "The market for DLP solutions is still in its early ‘hype cycle’ phase, so securing endpoint port/device controls with a proven context-oriented technology like DeviceLock is both logical and affordable, even for IT operations under severe budget constraints. When budget for a content-filter approach becomes available, DeviceLock effectively and significantly reduces the number of data transport channels, opportunities for data loss, potential content-based ‘false positives’ and the resulting manual remediations that can otherwise bog down security staffs. Organizations can layer DeviceLock with virtually any DLP appliance or software solution, including our pending content-aware modules or those from bundle partners for truly secure ‘defense in depth’," added Matthiesen.

DeviceLock software solutions proactively protect organizations of all sizes across all industry sectors against data leakage and help prevent the infiltration of corporate network by malware through local PC ports. DeviceLock significantly reduces business risks that result from insider negligence, errors, accidental loss or intentional malicious actions. DeviceLock software is designed for Microsoft Windows operating systems and includes traditional central consoles for management along with a unique DeviceLock Microsoft Management Console (MMC) that is natively integrated with Microsoft Active Directory® Group Policy. In addition, DeviceLock integrates with multiple top-tier encryption solutions while also detecting, alerting, auditing, and blocking operations of USB and PS/2 hardware keyloggers.

Download a free trial copy and try DeviceLock® now!