Posted: 3 Min ReadProduct Insights

Data Protection Made Simple

Now available: Symantec DLP 16.1

Protecting data is no easy task. It’s a multi-faceted and complex undertaking, which is why our customers are constantly seeking new ways to simplify data protection without sacrificing security. And when our customers offered high praise for pre-release features and improvements evaluated within their own real-world environments, I matched their enthusiasm with my own. You see, whether it’s about improvements to their operational workflows, enhancing their detection or better integrating DLP technology within their wider environment, our customers know what makes security better. That’s why I’m pleased to announce that today, the latest version of Symantec DLP is now available. 

Here's what Symantec DLP 16.1 delivers

Building on the innovations already baked into 16.0 and keeping the DLP administrator our main focus, Symantec DLP 16.1 offers new, game-changing features spanning data detection enhancements, improved workflow, simpler operations for DLP administrators to manage their solution and stronger integrations. Let me highlight some areas that users raved about during customer trials.

Source Code Classification

We have introduced a number of new data detection classifiers that customers can use to detect content including source code, financial reports (U.S. 10-Q and 10-K reports, as well as W2 tax statements) and image-based documents (driver’s licenses, passports and bank checks). The inclusion of source code has been of particular interest to customers to satisfy compliance requirements and mitigate the risk of losing sight of source code that may make its way into Large Language Models.

Personal Email Detection

Symantec DLP already provided several controls designed to help customers assess and manage insider risk. For example, in DLP 16 we created a tighter integration between user risk analytics and DLP policy so that customers can set data access and protection policy controls based on user risk scores. 

One popular way for users to exfiltrate data is to simply email the information to a personal email account. Drawing on Symantec Email Security expertise, we now provide an intuitive, pragmatic control that reduces the risk of information being sent from a corporate to a personal domain. A simple check box activates the policy to identify emails a user is sending to their personal email account (saving you from the manual hassle of managing lists of your employees’ personal email addresses).

New Response Rule Conditions

To simplify the ongoing process of adjusting DLP policies and response rules, DLP 16.1 empowers administrators with the ability to set the response based on certain criteria—and the feedback has been nothing but positive. DLP 16.1 offers automated responses that can be set based on several attributes (user group membership, sender and recipient patterns, and more). This supports policy consolidation since now a broad policy can be defined while maintaining attribute-based responses. 

Reusable Keyword Lists

DLP 16.1 also delivers another simplification by enabling keyword lists to become a reusable policy component. DLP administrators can take existing keyword lists and convert them to be a reusable keyword “building block” that can be centrally stored/managed and referenced in multiple places. If the keyword list is updated, all policies that reference it reflect these changes. Not only does this simplify the task of creating new policies, but it ensures consistency across existing and future policies.

Purview IP Classification Extended to Data at Rest

Our existing Microsoft Purview Information Protection (PIP) integration to label data is further enhanced with DLP 16.1. With this latest release, you can now use Symantec DLP to classify documents on file and network shares using the High Speed Discovery scan (introduced in DLP 16.0). This integration allows you to scan large, static file repositories to meet compliance needs. And now, the High Speed Discovery scan can use new or modified policies to classify files appropriately and ensure they will be properly protected. 

We kept the DLP administrator experience for this enhancement since classification scans do not generate incident reports (so we won’t overwhelm incident response teams).

Get the details in this new webinar

These are just some of the highlights. DLP 16.1 packs quite a punch, and includes many other features like:

  • Policy language updates
  • New reports and enhanced workflows
  • A new REST API detection server software form factor
  • Policy lifecycle management with “Policy As Code” (in preview)

For more information, read the release notes and register here for an upcoming webinar where we will walk through the release highlights.

Symantec Enterprise Blogs
You might also enjoy
5 Min Read

Three Hidden GitHub Risks and What You Can Do About Them

Security best practices for GitHub you should know

Symantec Enterprise Blogs
You might also enjoy
3 Min Read

The DLP Features You Requested…Delivered

Learn about DLP 16.0 Release Update 2

About the Author

Bruce Ong

Director of Product Management, Information Security

Bruce has been on the product management team for Symantec Data Loss Prevention since 2014. Currently he is focused on the roadmap to expand the leadership of our world-class DLP detection technologies, and extend it into new channels and applications.

Want to comment on this post?

We encourage you to share your thoughts on your favorite social platform.