CyberPeak Spectrum

White Paper: DLP - Data Loss/Leak Prevention Technologies

Spectrum is a DAG (Data Access Governance) class system for domestic decision auditing and protecting unstructured data stored on,, file servers Windows,, etc Linux SharePoint mail servers. The system is included in. Unified Register of Russian Computer and Database Programs

2022

"Spectrum 2.9"

In the updated DCAP release/DAG-system "SPECTRUM 2.9," developed by the company, Syberpick a number of updated features appeared: tools for active management of unstructured data companies, updated dashboards and metrics for advanced analysis of user actions, a list of reports information disk with quotas, expanded information on the structure of controllers, data domain classification functionality now allows creating user data categories, using downloadable dictionaries and logical associations, helping to solve key problems IT INFORMATION SECURITY and departments. This was announced by the Cyberpik company on September 29, 2022.

The focus of the updated DCAP/DAG "Spectrum 2.9" is on data and access automation processes. The Spectrum included a Data Transfer/Deletion Module that allows you to move, delete data according to specified rules, including the processing of unused files, duplicates, and files that meet the criteria set by users, for example, transferring personal data from illegitimate storage locations. The module simplifies the process of optimizing unstructured data storage and improves the overall level of information security, providing continuous automated control over all resources of the organization.

Another important area was the possibility of actually changing the access rights of employees from the Spectrum system interface. So the module for modeling changes in access rights now allows you to make recommended changes to the domain controller level and be sure that there are no risks to the company's business processes. Both in terms of data transfer and rights change, the key is the ability to seriously save time for responsible employees by taking the necessary actions from one window.

Added analysis of actions of each employee of the organization and visualization of the collected information through the Employee Card. The updated employee profile displays information about account properties, group membership data, the diagram of the used repositories, participation in abnormal activity and incidents, information about unsuccessful authentication attempts, action statistics and their list. The card becomes an indispensable analytical tool of the IT and Information Security Departments in the prevention and investigation of incidents.

The changes also affected users of the Spectrum system. The role model provides the ability to create user roles with detailed configuration of functionality, data and operations available to employees when working with the system. The user activity log in this release captures all events and records the detailed details of the operations. For example, the system will show with which filters the report was built, searched, what changes occurred in the settings, etc. These tools are an integral part of the implementation of the product in large companies, with a geographically distributed infrastructure or simply a wide staff of IT information security specialists, as well as in small organizations, for flexible separation of areas of responsibility.

Шаблон:Quote 'author = told Anton Shkarin, CTO of Syberpik.

DCAP/DAG Spectrum Capabilities

DCAP/DAG Spectrum is a system for protecting unstructured data storage and domain controllers in the direction of rights analysis, file classification and access audit.

Spectrum opportunities as of July 2022:

• Classification of data;
• Identification of available access rights and identification of risks;
• Use a data access audit to investigate incidents;
• Setting up incidents and detecting abnormal activity;
• Response to identified violations;
• Optimizing the use of file storage;
• Cyclical maintenance of file storage security.

Spectrum audits, classifies and analyzes access rights for a large number of different unstructured data stores: file stores based on OS the family:, Linux,, Ubuntu, and Debian CentOS their Red Hat Fedora derivatives, as well as; Astra Linux Red OS OS-based file servers servers, Microsoft Windows Server mail servers Microsoft Exchange domain controller servers, including Microsoft Active Directory Novell Azure AD eDirectory; portals, including Microsoft SharePoint SharePoint 365; file storage,,, etc. Dell EMC NetApp Synology

The system recognizes more than 70 file formats, recognizes images based on OCR technologies and image templates based on trained neural networks.

Specter has more than 230 pre-installed categories for identifying personal data, documents that fall under standards such as GDPR, PCI DSS, etc., and for the requirements of Russian regulators, as well as for detecting information from configuration files, password databases, tokens and much more.

"Spectrum" 2.8

On June 1, 2022, CyberPeak released the next version of the Spectrum system - 2.8.

A number of important changes in version 2.8 affected the integration of the system with MS Exchange, there were opportunities:

• audit the rights of all mailboxes (personal, public, and public folders);
• build specialized reports on mailboxes;
• Audit actions on all mailboxes (not just public folders).

The functionality of working with MS Active Directory has also been improved:

• Fixation of group policy creation, deletion, and change events is now supported (with detailed changes)
• it became possible to synchronize with the domain taking into account the specified OU filter (if an analysis of the entire domain is not required);
• working with multiple DCs within the same domain has become more convenient and logical in UI.

2020: Addition to Angara product portfolio

On September 30, 2020, Angara Group announced the expansion of the product portfolio with a Data Access Governance (DAG) solution. The company's portfolio has a system for protecting and managing access rights to unstructured data warehouses "SPEKTR," developed by the Russian manufacturer CyberPeak. The companies have already entered into an agreement.

Unstructured corporate data, the volume of which is increasing by at least a third every year, is a serious breach in information security, since without appropriate means it is extremely difficult to track the storage of confidential information, as well as its departure from the organization.

{{quote 'The situation escalated with the transition to a remote mode of operation: now it will not be possible to hide in the information security perimeter of the company. In such realities, DLP class systems, which are presented in the product portfolio of the Angara group of companies, do not always cope effectively enough with the control of unstructured content due to functional limitations. In this case, the implementation of the DAG solution will provide a holistic approach to protecting critical data from leaks, - comments Dmitry Pudov, Deputy General Director for Technology and Development of the Angara Group of Companies. }}

SPEKTR is a Russian development, part of the. register of domestic software The product provides full control over the access of employees of the organization to documents stored on storages unstructured data, such as file managed, servers OS Windows Linux mail servers, MS Exchange servers, Sharepoint as well as storage and. Dell EMC The solution NetApp, which is based on intelligent analysis tools, performs the following tasks as of September 2020:

• protection against leaks of information stored on file servers,
• auditing access to file storage data
• classification and search for sensitive data,
• auditing all data access rights,
• automatic identification of risks associated with the issuance of rights and abnormal activity (multifaceted reporting and behavioral analytics).

All system components work out of the box and do not require third-party software. In September 2020, the company, in accordance with the product development strategy and taking into account the needs of customers and the market, released an updated version of the software with additional functionality. The key features of this version of the system are:

• active response to various incidents and lockable anomalies,
• Active Directory audit,
• recognition of scans and photos of credit cards, passports, driver's licenses of the Russian Federation.

SPECTRUM can be used not only by information security employees, performing the tasks described above, but also it is a good tool for the IT department. With it, you can distribute resource loads, control the forecast of storage occupancy, and optimize storage by reporting duplicates and unused objects.

We recommend paying attention to SPEKTR to companies from the financial, state, industrial, telecommunications sectors, retail, enterprises with more than 500 employees, as well as organizations that have an acute issue of compliance with the requirements of internal information security services and external regulators, - concludes Dmitry Pudov.