Data loss prevention (DLP) has emerged as a foundational technique for companies trying to stop employees from inadvertently (or advertently) sharing delicate information outdoors the confines of the corporate community. At its core, DLP is about fixing the “individuals downside” — people are sometimes on the middle of security lapses, whether or not it’s by sharing a confidential doc with outsiders or pasting database entry tokens right into a public GitHub repository.
Latest historical past is plagued by high-profile data breaches, resulting in all method of reputational, regulatory, and monetary penalties that may be troublesome to recuperate from. And it’s towards that backdrop that Virginia-based startup Phalanx is getting down to assist, with a light-weight DLP and document-mapping platform that mechanically displays and secures delicate paperwork throughout the likes of Workplace 365, Google Workspaces, and native machines.
Presenting onstage as we speak as a part of the Startup Battlefield at information.killnetswitch Disrupt, CEO Ian Garrett showcased Phalanx’s know-how and laid out the corporate’s mission at a time when firms would possibly want a extra “human-friendly” answer to cease their information seeping into the general public area. information.killnetswitch caught up with Garrett forward of time for a product demo and to get the lowdown on the size of the issue as he sees it.
The story to date
Based in 2021, Arlington-based Techstars alum Phalanx was initially targeted on securing AI programs utilizing information, mannequin validation and vulnerability scanning, utilizing work from Garrett’s PhD. Nonetheless, he says that it was a bit of forward of the curve, and firms (and buyers) have been involved with extra urgent threats.
“After we went out for market validation, what we discovered throughout the board was that everybody thought that [what we were doing] was vital, and that they’d undoubtedly pay for it — however solely when sufficient individuals have been being hit utilizing that assault vector,” Garrett stated. “So that they have been just about like ‘thanks, however no thanks.’”
Phalanx CEO Ian Garrett flanked by CTO Austin Garrett (L) and CMO Carl Kenney (R) Picture credit: Phalanx
However their work as much as that time was not in useless, as that they had substantively been involved with defending datasets, main them down a path to assist firms defend their unstructured information saved in paperwork. And so following a late-2021 pivot, the corporate’s MUZE (Monitoring Unstructured information with Zero belief Encryption) platform was born, enabling firms to simply encrypt and decrypt recordsdata’ monitor file-related conduct, with Phalanx taking good care of the underlying course of mechanically.
“Phalanx particularly focuses on information security, and inside that unstructured information — largely paperwork and recordsdata,” Garrett stated. “Unstructured information is very arduous to guard and handle in comparison with structured information, resembling that saved in databases.”
Unstructured information is so troublesome to guard as a result of it isn’t simple for organizations to even know that delicate information exists inside emails or paperwork, not to mention who has entry to these paperwork. And this information is definitely unfold throughout places (bodily and digital) with little footprint to point out for it.
Underneath the hood
Phalanx permits security groups to stipulate how information and paperwork are saved — for instance, mechanically encrypting each file on a two-hour foundation, or which file sorts or directories needs to be protected.
Allow auto-encryption. Picture credit: Phalanx
Firms may also set expiration dates on shared recordsdata in order that customers don’t by chance hold dozens of confidential paperwork saved on their laptop computer, and so they can management the “who and the way” of file downloads.
At a person stage, customers might be given management over their encryption and decryption endeavors, with a right-click enabling them to entry Phalanx and select to manually encrypt a file and ship it to any third social gathering.
Encrypting and decrypting recordsdata with Phalanx. Picture Credit: Phalanx
They will select to permit a file to be accessed simply the one time, permit anybody with the hyperlink to entry the file, require e-mail verification, and extra.
Phalanx: Sharing safe hyperlink. Picture Credit: Phalanx
There are two broad classes of customers who will have interaction with Phalanx: the security groups in control of deploying Phalanx and the top consumer (i.e., worker) who will work together with its options each day.
On the security workforce’s facet, they’ve entry to Phalanx’s endpoint software program, which might be deployed by downloading it from Phalanx’s web site, with help for paperwork saved domestically or within the cloud, the latter of which requires a browser extension.
Along with the endpoint software program, Phalanx additionally serves up a centralized dashboard by the browser the place security groups can view and handle every little thing, together with customers and cloud connections, and entry information evaluation. Certainly, the corporate debuted an all-new model of the dashboard at TC Disrupt as we speak, the place it showcased new data-mapping and information stock smarts that reveal what number of recordsdata there are, what number of are encrypted, and throughout what number of gadgets.
Phalanx dashboard. Picture credit: Phalanx
State of play
Phalanx has entered an area that features well-resourced incumbents resembling Netskope, which hit a $7.5 billion valuation two years in the past, and Proofpoint, which non-public fairness large Thoma Bravo took non-public in a $12.3 billion deal across the similar time. Based on Garrett, although, many of the conventional DLP instruments on the market are geared towards enterprise-size organizations and are substantively rules-based, which implies that firms need to predict how every consumer within the group will work together with information of their possession utilizing historic patterns.
On prime of that, rule and policy-based configuration requires vital technical experience that even among the largest organizations battle with. Phalanx, alternatively, is designed for same-day deployment.
“Current DLP is troublesome for security groups to deploy and handle, in addition to being troublesome for finish customers (e.g., staff) to take care of,” Garrett stated. “This impacts productiveness and causes human-related security points. Doc visibility is a black field, so security groups attempt to retrofit legacy DLP to repair the problem.”
In fact, current DLP options undertake varied approaches to maintaining firm information safe. This may increasingly contain making use of guidelines and insurance policies to community site visitors, for instance, or attempting to stop information motion past an outlined perimeter. This might be one thing like “don’t let consumer X from division Y obtain file Z,” or perhaps attempting to cease customers from shifting information from a neighborhood surroundings to a USB stick.
As an alternative, Phalanx focuses on tethering consumer identities to recordsdata, which means that the security “follows the file itself,” giving clients analytics based mostly on file entry.
For now, SMBs are the core goal marketplace for Phalanx, although long term it has its eyes on the enterprise phase too. That stated, Garrett reckons that greater firms may actually discover use for Phalanx proper now, maybe the place an organization is already utilizing a number of DLP platforms and so they want a really particular answer for a subdivision the place their current DLP simply isn’t offering what they want.
“Our single greatest differentiator is that we’re a proactive answer, whereas conventional DLP is reactive,” Garrett stated. “It’s corny, however we put the ‘prevention’ in ‘information loss prevention.’ Conventional DLP goals to catch information because it’s leaving its perimeter, whereas we defend it in place so it doesn’t matter what occurs to it, it will likely be safe.”
