Sophos Ideas / Sophos Central

Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

Suggest an Idea for Sophos Central...

← Sophos Central

Allow reporting and alerting on Ingress/Egress Direction in DLP Alerts

Currently the DLP capability of the client does not provide any information on whether a event is considered ingress or egress.

I would like to see reporting and alerting by user on files that have been transmitted out of the org, as this is where a breach may occur.

3 votes
Sign in Sign in with Log in with your Sophos ID
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Sean Lewis shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

1 comment

Sign in Sign in with Log in with your Sophos ID
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Daniel Murrieta commented  ·   ·  Flag as inappropriate

    To provide more granularity, I think it'd be better to customize alerts according to @domain.com vs just ingress or egress. Mergers and dealings with third parties may require sharing of sensitive data, which we would want to specify in the DLP policy.
    It could have an blacklist or a whitelist style, or it could categorize into "low concern" (ex. ingress) and "high concern" (ex. egress). Again, the more we can customize it, the less false positives we may end up seeing.

Sophos Central: Endpoint Protection

Categories

Feedback and Knowledge Base

(thinking…)
icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.