McAfee DLP End User Notifications

McAfee DLP provides end users a notification when a file or message containing a Social Security Number (SSN) is sent in an email or copied to an external USB drive.

McAfee DLP identifies SSNs using a combination of keywords AND matching of the SSN pattern.  This combination is important due to the volume of false-positives that would result solely from a match of a number pattern. False positives are likely to occur occasionally due to the nature of identification of this data.

Email Protection

When a combination of any of the keywords (SS #, Social Security, SSN, SS#, SSID, Name) AND the Social Security Number string are entered in an email message body or an email file attachment, the following notification appears:

Please select your justification:

“My manager approved this transmission.” In the event that it has a unique use-case.

“This content is not sensitive (False-Positive)” In the event that DLP has identified in error.

“This transmission is an established business process.” If this is typical of your work.

“Other” if there is any other need for explaining the transmission of sensitive data.

Selecting any of these choices and clicking “OK” will allow the message or file containing sensitive data to be sent via email. Clicking “Cancel” will stop the email from being sent.

 

USB External Drive Protection

When a combination of any of the keywords (SS #, Social Security, SSN, SS#, SSID, Name) AND the Social Security Number string are present in a file being copied to a USB External Drive, the following notification occurs: the following notification appears:

Please select your justification:

“My manager approved this transmission.” In the event that it has a unique use-case.

“This content is not sensitive (False-Positive)” In the event that DLP has identified in error.

Selecting any of these choices and clicking “OK” will allow the file containing sensitive data to be copied to a USB external drive. Clicking “Cancel” will stop the SSN data from being copied.

Data Security Policy

Be mindful of how you handle sensitive data, including SSNs in accordance to ISU’s Data Security and Management Policy (830)

https://www.indstate.edu/policy-library/data-security-and-management

and OIT’s Data Security Standards.

https://indstate.teamdynamix.com/TDClient/1851/Portal/KB/ArticleDet?ID=58915

Was this helpful?
0 reviews

Details

Article ID: 92991
Created
Thu 11/21/19 10:36 AM
Modified
Tue 7/27/21 11:37 AM