The KIT Finance investment bank uses DeviceLock Endpoint DLP Suite

The KIT Finance Investment bank (joint stock company) is the universal commercial bank specializing in investment transactions, corporate crediting and project financing. Now the head office of bank is in St. Petersburg, the Moscow branch and also 7 offices of bank works in the largest Russian cities with considerable concentration of large business. The KIT Finance renders services in spheres of corporate crediting and private-banking. Except the classical directions of corporate business the bank develops services of project financing, the bridge financing and also other slozhnostrukturirovanny products.

IT infrastructure of bank provides itself a branched information system with a set of crucial objects and subsystems and includes more than 1000 jobs. The model of an information security system of bank is based on permanent management of all processes connected with circulation of information streams both in the company and during the work with partners, at the same time the bank in the activity relies on the Standard on cybersecurity developed by the Central Bank of Russia.

The head of department Alexey Aleksandrovich Ivanov tells about the main objectives facing upravleny information security of KIT Finance Bank: "Regularly analyzing a current status of IT infrastructure, we selected the main areas of work requiring priority attention — protection of company assets, a compliance with regulatory requirements of the Russian Federation in the field of protection of a bank secrecy and personal data, reduction of risk of virus activity in a local network".

For the solution of assigned tasks since July, 2006 the KIT Finance bank uses the Russian product DeviceLock. As Alexey Ivanov notes: "The DeviceLock system was in the market of one of the first control systems and blocking of unauthorized connection to the PC of input/output devices of information and when testing systems capabilities the bank received positive results".

At the same time the Management of information security of bank noted that use only of a control system of input/output devices of information does not solve a problem of the insecure and uncontrollable channels of information leak in a full range of such channels. Considering risks of information leak via channels of network communications, in July, 2011 the bank considered the new product NetworkLock entering the DeviceLock Endpoint DLP Suite complex.

"By consideration of control systems of network communications we selected NetworkLock, having taken such factors as a unified environment of management of the DeviceLock and Network components, uniform storage of magazines of audit into account; the uniform module (service) on the client PC for both components of a complex that reduces the general loading of a system of the user. Besides, the solution was tested on compatibility with the specialized software applied in bank and installed on the PC of users" — Alexey Ivanov tells.

In the course of implementation of the DeviceLock Endpoint DLP Suite complex in KIT Finance Bank regulations on providing continuous or temporary access to information input/output devices with the PC of users of bank were developed and also the personal responsibility of employees owners of accounts using whom information output for perimeter of bank is performed is imposed. Besides, the Management of cybersecurity of bank carried out informing on the reasons and the purposes of this system of protection of company assets of the banking sector.

"The linking of DeviceLock + allows to control NetworkLock effectively and to quickly reveal the violations of cybersecurity made by employees both unintentionally and intentionally. As a result of implementation of DeviceLock Endpoint DLP Suite risks of information leak on technical channels from perimeter of a local network of bank considerably decreased" — Alexey Ivanov summarizes

Project Continuation

On December 5, 2013 the "KIT Finance Investment Bank" announced continuation of operation of the DeviceLock Endpoint DLP Suite complex.

Regulations on providing continuous or temporary access are applied to information input/output devices with the PC of users of bank, the personal responsibility of employees owners of accounts using whom information output for perimeter of bank is performed is imposed. Besides, all employees are informed on the reasons and the purposes of this system of protection of company assets.

Mikhail Bystrov, the director of the department of information security of "KIT Finance investment bank", noted: "The linking of DeviceLock + allows to control NetworkLock in the DeviceLock DLP complex effectively and to quickly reveal the violations of cybersecurity made by employees both unintentionally and intentionally. As a result of use of DeviceLock Endpoint DLP Suite we note considerable reduction of risk of information leak on technical channels from perimeter of a local network of bank, and intend to continue operation of this system and further".