Forcepoint Data Loss Prevention

Version: Forcepoint DLP v8.4.x and later.

Forcepoint Data Loss Prevention (DLP) Endpoint is a comprehensive, secure, and easy-to-use endpoint data loss prevention solution. It monitors real-time traffic and applies customized security policies over application and storage interfaces, as well as for data discovery.

Forcepoint DLP integrator can forward events to Netsurion Open XDR. Forcepoint DLP sends events such as traffic events, system events, and audit events. These events allow Netsurion to generate reports for traffic activities including URL, action and destination location. The graphical representation shows a breakdown of traffic activities by URL, action and destination location.

  • Operations – Traffic activities.

The following are the key Data Source Integration available in Netsurion Open XDR.

Reports

Type Name Description
Operations Forcepoint DLP – Activities This report provides information related to user accessed web traffic activities. It contains the field information like, source IP, source port, destination IP, destination port, URL, total bytes count bidirectional client and server, etc.

Documentation

The configuration details are consistent with Netsurion Open XDR 9.2 and later,  and Forcepoint DLP.

Download Integration guide and How-to Guide for configuration instructions and more information.