Digital Guardian
Digital Guardian is an American data loss prevention software company designed to see and stop malicious actions by users and malware on endpoints. Digital Guardian provides software both at the end-user level and in corporate networks, servers, databases, and the cloud. The company is designed to see and stop malicious actions by users and malware on endpoints. It puts data events into context and applies a granular set of rules to protect it against threats.
The company holds 20 patents for its technology. Its customers include about 300 Global 2000 companies, as well as seven of the 10 largest brands in the world. It is considered to be a leader in the global data loss prevention market.
History
The company was founded in 2003 under the name Verdasys. From the start, its flagship product was Digital Guardian, a data-centric security platform monitoring and encrypting all proprietary or sensitive information passing through a desktop, laptop, or enterprise server.In 2008, Verdasys launched SiteTrust, an encryption software service for banks, brokerages, and other big companies that served customers over the Internet and were legally liable for losses from online fraud. Its client-side software package turned on whenever the user visited a website protected by the SiteTrust service and spawned a new instance of the user's Web browser, shutting out malware and creating a secure space around all communications with the protected site.
An agreement between Verdasys and Fidelis Security Systems in 2010 enabled customers to acquire and implement an integrated solution consisting of Fidelis XPS network appliances and Digital Guardian enterprise information protection in a single offering from Verdasys.
In early 2012, Verdasys expanded its data leak prevention portfolio to the cloud to help enterprises protect their data stored on its networks and reduce costs. When one of its customers, a large insurance company, requested Verdasys to take over the job of monitoring and protecting the data, Verdasys introduced two new offerings: Managed Service for Information Protection and Information Protection as a Service, offering data protection as a managed service. The Digital Guardian platform completed EAL2+ evaluation under the Communications Security Establishment's Common Criteria Evaluation and Certification Scheme in December 2012.
Verdasys introduced a data connector in 2013 that contained malware threats detected by FireEye's platform. Before Verdasys' connector, the malware had to be handled manually. In December, Gartner's Magic Quadrant placed Digital Guardian among the five leaders of the global data loss prevention market.
Ken Levine, previously a McAfee executive, joined the company as CEO in 2014 and focused on simplifying its product. In March, Verdasys raised $12 million in a venture funding, bringing the company's total raised capital to $69 million. The funding round was led by existing investors GE Pension Trust and Fairhaven Capital, with a new, individual investment from Brookline Venture Partners.
2014 was also a year of several major partnerships and acquisitions. In March, Identity Finder LLC partnered with Verdasys, bringing its Sensitive Data Manager, capable of automatically finding, classifying and securing sensitive information. In August, Verdasys changed its name to Digital Guardian and increased its staff to 150. At the time, its security software had been installed on about two million servers, laptops or other devices.
In October, the company acquired Armor5, a provider of cloud control solutions focusing specifically on preventing employees who bring their own mobile device to work from copying and removing company files or data.
In May 2015, the company acquired Savant Protection, enabling IT organizations to deploy a unique agent for whitelisting the applications that can be used on any particular endpoint. When Blue Coat Systems launched the Alliance Ecosystem of Endpoint Detection and Response in July 2015, Digital Guardian was among the alliance-founding members. The ecosystem allows sharing of actionable intelligence gathered from endpoint security solutions. Also in July, IT consulting firm Atos and Digital Guardian partnered up to deliver Atos’ cloud-based data loss prevention service.
In October, the company bought Code Green Networks, based in Silicon Valley, which contributed its True DLP gear. The acquisition of Code Green Networks provided Digital Guardian with network, discovery, and cloud data loss prevention.
The company added 100 customers in 2015, bringing the total count to nearly 500, including General Electric and DuPont. At the end of the year, Digital Guardian announced $66 million in new funding, the firm's largest round since it was founded. Returning investors in the round were GE Pension Trust, Fairhaven Capital Partners, Loring Wolcott & Coolidge, Special Situation Funds and Brookline Venture Partners. New investors were LLR Partners, Mass Mutual Ventures and the venture unit of Siemens Financial Services. The company raised $135 million since its founding.
In January 2016, Gartner's Magic Quadrant for Enterprise Data Loss Prevention placed Digital Guardian among the four leaders of the global data loss prevention market for the fourth consecutive time. BostInno included Digital Guardian among 16 Boston tech firms to watch in 2016. The company was placed 148th on the list of top 500 cybersecurity firms in the world, released by Cybersecurity Ventures in 2015.
Products and services
A data loss prevention software platform, Digital Guardian integrates content, context and location awareness along with encryption and data level controls to reduce the risk of information loss or misuse, and purposeful data theft. Its host-based security technology empowers organizations to monitor, control, audit and prevent data from wrongful disclosure or malicious theft, while automatically enforcing data security policies and procedures. This scalable platform provides multiple, independent layers of protection to enable secure data sharing across physical, virtual, mobile and cloud environments.The architecture of the platform has three parts:
- Digital Guardian for Data Visibility and Control enables users to understand where an organization's sensitive data is and how it's being used with kernel-level data visibility, while also delivering device control and encryption.
- Digital Guardian for Data Loss Prevention adds deeper data visibility and fine-grained control and protection to stop insider threats, and includes advanced classification by context, content and user with email and file control and encryption.
- Digital Guardian for Advanced Threat Protection provides real-time threat protection by following the attack sequence from initial contact through many attack stages, while offering flexible controls to defend in a manner commensurate to the customer's risk tolerance. It also extends the existing security ecosystem with integrations with network solutions, like FireEye, and SIEM technologies, such as Splunk.
For example, the health service organization Cigna uses Digital Guardian software to monitor all ports and encrypt data transfers. When employees try to transfer files to a USB flash drive, they are prompted to type in the reasons for the transfer. The data they actually transferred is compared to those reasons.
Digital Guardian also provides support for the ShareFile file sharing and storage systems, extending data loss prevention capabilities to organizations that support virtual desktops.