Building Security into Enterprise Information Management

Today’s PDF is tomorrow’s point of vulnerability. Personal data and intellectual rests in your data, potentially exposed to theft or improper use. Recent events certainly show the danger of these sorts of threats.

OpenText saw this problem and responded by acquiring Guidance Software, among other strategic moves. They understand that security must be part of Enterprise Information Management (EIM). The two fields are no longer separate. At least, they shouldn’t be. That’s one of the main takeaways from Enfuse 2018.

Anthony Di Bello, Senior Director of Market Development at OpenText

According to Anthony Di Bello, Senior Director of Market Development at OpenText, “We used to protect data by building walls. That no longer works. The walls are gone. We are working with our clients to help them take a data-centric approach to security.”

Di Bello highlighted how security is now part of the content life cycle, which OpenText solutions have traditionally managed. “When you create, manage and dispose of data, you have to be confident you can secure it,” he said. “You will also do well to make sure you have discovery and threat remediation seamlessly integrated into the content life cycle.”

OpenText is now operationalizing this strategy. In the eight months since Guidance became part of OpenText, multiple engineering teams have been working to integrate the EnCase product with several OpenText solutions. The goal is to combine the EnCase endpoint security and forensics capabilities with the intelligence and discovery functions available in the OpenText portfolio.

Building a Threat-Hunting Tool

First up is a project that brings together EnCase and OpenText’s Magellan AI platform. “This is about leveraging Magellan’s intelligence against the endpoint security data you get from EnCase,” said Di Bello. “With insight into endpoint data, we can search for anomalies that might signal the presence of a threat.”

Simultaneously, OpenText data scientists are working closely with customers to identify use cases and threat scenarios where endpoint data and threat intelligence can come together to improve an organization’s security posture. “We’re training the model,” Di Bello explained. With this approach, OpenText is trying to reduce customer reliance on their own, hard-to-find in-house data science resources.

Combining EnCase and OpenText Axcelerate for eDiscovery

Labor-intensive processes often form a drag on productivity in eDiscovery and investigations. OpenText addresses this problem with its new combination of EnCase and Axcelerate, its platform for eDiscovery and investigations. The fit is intuitive, given the respective qualities of each solution. EnCase enables efficient search, collection and preservation of data used in eDiscovery. Axcelerate provides the case assessment and processing of that data. Without a combined solution, investigators and eDiscovery managers had to toggle manually between data collection and eDiscovery management tools. The joint solution also benefits from embedded machine learning and analytics capabilities.