Product Overview of Code42
Code42 is a cybersecurity software company specializing in insider risk management and data loss prevention (DLP). Founded in 2001, the company has evolved to provide robust SaaS solutions designed to protect sensitive information and intellectual property for over 50,000 organizations worldwide.
Key Product: Code42 Incydr
The flagship product, Code42 Incydr, is a cloud-based data risk detection and response solution. Here are its key features and functionalities:
Data Risk Detection and Response
Incydr continuously monitors and analyzes file activities and user behaviors to identify potential insider threats, accidental risks, and cyber attacks. It provides real-time detection and automated responses to suspicious actions, ensuring prompt mitigation of data leaks and theft.
User Activity Monitoring
Incydr offers detailed visibility into user actions related to data movement across various channels, including local drives, cloud storage, email, and web applications. It assesses risks by analyzing over 250 contextual indicators to identify potential insider threats.
Risk Exposure Dashboard
The Risk Exposure Dashboard provides tailored views to identify file exposure, training gaps, corporate policy non-compliance, and measure program performance. It utilizes over 120 Incydr Risk Indicators (IRIs) to automatically prioritize data risks based on risk profiles and contextual factors such as file properties, user activity, and file hash values.
File Exfiltration Detection
Incydr detects file exfiltration attempts through endpoint solutions, cloud services, email, and external drives. This allows security teams to quickly spot and react to unauthorized access and file movements.
Automated Alert Prioritization
The platform uses a contextual prioritization system to automatically rank and prioritize alerts based on the severity and potential impact of detected activities and abnormal security threats. This ensures that the most critical risks are addressed promptly.
Integration with Security Tools
Incydr integrates seamlessly with existing security infrastructure, including SIEM, SOAR, IAM, and PAM systems. This integration enhances the overall security posture by leveraging existing workflows and tools.
Policy Enforcement and Incident Response
Incydr employs risk-based policies with flexible response options. It includes automated incident response workflows, enabling security teams to efficiently manage file exposure and exfiltration threats without interfering with team collaborations.
Use Cases
- Detecting and Responding to Insider Threats: Real-time monitoring and automated responses to suspicious actions.
- Monitoring Data Movement During Employee Offboarding: Tracking and recording data movement when high-risk employees are exiting the company.
- Remote Workforce: Providing visibility to reduce data risk when employees work from home.
- High-Risk Employees and Contractors: Identifying and reacting to data security threats posed by high-risk employees, contractors, and other temporary staff.
Supported Platforms
Incydr is a SaaS solution that supports various operating systems (Windows, Mac, Linux), cloud services (Microsoft OneDrive, Google Drive, Box), and email services (Microsoft Office 365 and Gmail).
Balance Between Security and Productivity
Code42 Incydr is designed to protect sensitive data without locking down access, ensuring that security teams can respond quickly to threats while maintaining a collaborative and productive workforce.
In summary, Code42 Incydr is a comprehensive data loss prevention solution that offers advanced risk detection, user activity monitoring, and automated incident response, all integrated within a flexible and scalable SaaS platform. This makes it an essential tool for organizations seeking to protect their critical data and intellectual property from insider risks and other security threats.