The Continuing Evolution of Content Security

At last week’s EnFuse conference in Las Vegas, OpenText CEO and CTO Mark J. Barrenechea, OpenText CEO & CTO said, “Conventional approaches are no longer sufficient to secure the modern enterprise in Industry 4.0.” He added, “For information to remain a strategic advantage, it must be protected.” This may sound pretty basic, but the challenge of securing large and diverse repositories of unstructured data is anything but.

A CISO might wake up tomorrow and learn that her company has just had two million PDFs stolen by a malicious actor.

The best practice in cybersecurity is to put the most effort and resources into protecting one’s “crown jewels,” whatever they are. For some companies that might be a core system like ERP. For others, it could be an essential database. As more and more massive data breaches are revealing, however, attackers are simply trying to take any data that isn’t nailed to the floor. A CISO might wake up tomorrow and learn that her company has just had two million PDFs stolen by a malicious actor.

Anthony Di Bello, Vice President, Strategic Development at OpenText.

The crown jewels weren’t affected, but it’s a huge breach. Why would attackers want this sort of content? There isn’t any one answer, but what content security professionals will tell you is that seemingly innocuous documents often contain rich details about how a business runs, who’s who and how they’re competing. Corporate content may also hold many details about the enterprise’s system architecture, network topology, passwords or even embarrassing information that can damage a brand.

Content needs better protection. In practical terms, this means more and better tooling that’s assisted by AI and overseen by highly trained people. OpenText is rolling out several new technologies and services to address this need. Last week, the company announced last week announced the launch of OpenText™ Content Security for EnCase™ by Reveille. Developed with Reveille Software, which makes active insight solutions for ECM and EIM content, the new product provides early detection and awareness of content corruption. It continuously monitors for suspicious behaviors and provides early indication of a potential breach or other serious security issue.

“Content security can be a blind spot for SecOps,” said Anthony, Vice President, Strategic Development at OpenText. “For instance, a compromised user or an insider with bad intentions can access content repositories to edit files, corrupt information or upload malware.”

Opentext Content Security for EnCase reduces the risk from these types of threats. It integrates Reveille’s real-time user data and security alerts for OpenText Documentum, Content Suite and InfoArchive customers directly into OpenText EnCase Endpoint Security.  Users can detect threats quickly and take action to quickly reduce the risk of breaches by shutting down access, isolating the device and disabling the user. The Reveille project joins similar efforts with partners like LastLine, which uses AI to help detect anomalies in content management that might signal a breach.

“Content security can be a blind spot for SecOps,” said Anthony, Vice President, Strategic Development at OpenText. “For instance, a compromised user or an insider with bad intentions can access content repositories to edit files, corrupt information or upload malware.”

The company also debuted its new OpenText Threat Hunting Service. This managed service offering provides OpenText security experts who can assist in the quick identification, monitoring and remediation of threats. It leverages EnCase Endpoint Security to discover suspicious activity and OpenText Magellan’s analytics and visualization capabilities to prioritize anomalies at scale which may indicate an attack, insider theft or intentional destruction of data.