Organizations increasingly recognize the need to reduce or eliminate the risks associated with security breaches by securing endpoint data at rest on hard drives, moving across ports, portable storage devices and other mobile pathways, or at end-of-life on unneeded PCs.

The GuardianEdge solution provides a complete enterprise framework to protect data on endpoints from theft or loss—inside or outside the perimeter.

The GuardianEdge Data Protection Platform provides an integrated approach to implementing a full scope of endpoint data protection measures, including encryption of hard disks, strong authentication of users, protection for data on removable media, and policy-based access controls for I/O ports and their associated devices.

It allows organizations to define and implement the full suite of policies required to protect their data with a single product solution. These policies are delivered to the GuardianEdge security modules on the endpoints through the GuardianEdge Data Protection Framework.

This centrally managed framework enables the core security and management services required to implement controls such as policy management, user authentication, key management, provisioning, backup, recovery, monitoring, and reporting.

This infrastructure further leverages industry-leading integration with Microsoft's Active Directory to provide the out-of-the-box scalability, robustness, and availability demanded by enterprise IT environments.

Additionally, by coupling the implementation of data protection policies with existing domain management tools, privileges and practices, enterprises can easily map data policies to their organizational structure, business processes as well as the roles of machines and users.

This unified approach lowers the cost of ownership by eliminating redundancy and ensures that misalignment of policies and their administration do not create hidden exposures. It comprises an integrated set of solutions that includes:

• Using Encryption to Avoid the Costs of Data Breach Notification
• Leveraging Managed Data Protection to Safeguard Intellectual Property
• Satisfying Global Privacy Initiatives with Endpoint Data Protection
• Ensuring Data Is Secured When Retiring PCs

The GuardianEdge Data Protection Platform

The GuardianEdge Data Protection Platform consists of GuardianEdge applications for hard disk encryption, removable storage encryption, and device control, as well as a framework that provides a common infrastructure and common administration of services. These applications can be purchased as independent products or together as the Data Protection Platform.

GuardianEdge Data Protection Framework
Provides core enabling security and management services, including user registration and management, policy administration, client audit and reporting, data recovery and encryption key recovery.

GuardianEdge Hard Disk Encryption
Delivers strong pre-boot user authentication and full-disk encryption.

GuardianEdge Device Control
Access and usage control for PC peripheral ports and removable media outlets.

GuardianEdge Removable Storage Encryption
Encryption of flash memory cards, portable hard drives, and other storage devices.

This unique platform tightly integrates multiple data protection controls. Its centrally managed framework provides security and management services required to implement these controls, while leveraging the efficiency of shared services.

The result is a unified approach that makes it easy to reduce the risks of leaving data unprotected on laptop PCs, mobile storage devices and other endpoints, while reducing the likelihood that misalignment of policies cause a security exposure.