Security, Surveillance – LeapXpert and our Ecosystem

More than 70% of employees reporting that they are using messaging applications like WhatsApp, WeChat, Signal, LINE and Telegram to communicate with customers. As a result, an enterprise must have the ability to get clear visibility of the messaging conversations’ content.

Messaging applications offer a quick, low-barrier way of communication with customers. Especially in those customer-facing roles where relationship building is key. However, employees often use private, personal accounts for communication. So the conversations are not only invisible to the organization but as they are on unsecured devices they can pose a threat to organizations.

LeapXpert’s solution enables organizations to bring those conversations inside corporate walls. What is visible can be monitored and surveillance tools and processes can be appropriately applied. Without visibility organizations cannot have control of not only what information comes out of the organization but what information comes into the organization.

Messaging communication tools are increasingly being used in phishing, malware and other security attacks. Unsecured, they are an easy entry point for hackers to potentially access corporate tools and devices. In a recent phishing attack in the UK, employees received a messaging purporting to be from a former senior executive. A number of employees clicked on the link. In this scenario, while no damage was done, there could have been potential incursions into corporate systems.

LeapXpert’s FMOP includes many key security features – primarily designed at preventing the flow of information out of the organization – DLP, keyword dictionaries, guidelines on documents etc. IT teams have visibility of messages flowing into and out of the organization including the files and attachments.

compliance, mobile messaging, LeapXpert

 

For example, LeapXpert has a number of built-in enterprise security controls:

Data Leakage prevention functionality

LeapXpert’s DLP module enables the organization to set rules and in the case of a violation the module will block message processing or will reject message delivery. The basic rule logic is based on a set or rules that is defined through the use of regular expressions that match the content of the message the employee is attempting to send. The IT admin has the option through dictionaries to create policies whereby messages can be either blocked or annotated, i.e. a warning is sent to the employee. Audit events can be raised based on DLP rules violations for analysis.

 

Keywords, DLP, File Classifications

LeapXpert also uses a number of tools to enable organizations to ensure that messages may contain banned or forbidden words. Additionally for organizations that follow ISO27001 best practices, there are file classification practices which allow file metadata keywords. This allows an enterprise to control what documents and content can be shared externally, by whom based on department, by hierarchy, by confidentiality and other elements. Any breach reports can be either built-in or delegated as part of a security audit stream. Alerts can be sent to the user (employee) as well as the system administrators for analysis.

LeapXpert uses only official accounts. Enterprises and customers can be assured that they are dealing with official and authorized employees if they receive a message sent through the LeapXpert FMOP platform. Given the potential for phishing and malware through messaging applications (and indeed other channels) this gives all parties comfort knowing that the person that they are interacting with is the official business entity.

Antivirus and Antimalware functionality

LeapXpert has partnered with multiple vendors offering anti-virus and anti-malware capabilities. These partnerships allow our customers to choose the best solution for their business based on the necessary protection level and come with a variety of deployment options.

LeapXpert offers the following integrations in the security and surveillance space:

  • Archiving solutions
  • Single Sign On
  • Mobile Device Management
  • DLP
  • Surveillance
  • Anti-Malware and security

 

It is likely that as messaging application use for business conversations grows there will be increase requirements for surveillance for regulatory purposes. Indeed, the SEC announced in October a probe into digital channels including messaging applications. Ensuring that an organization has not only visibility of the messages sent but the appropriate tools for surveillance will be vital as more regulatory bodies require oversight specifically into these channels.

Ensuring that an organization has robust security tools to protect corporate devices and networks from malware and security incursions is important as messaging becomes a way of doing business.

Talk to one of our team to learn more about our security offerings.

 

 

 

Ready to Leap your business?

    LeapXpert Insights?
    Follow us on Linkedin

    To find out what LeapXpert is doing right now, to learn about our news and plans, and to discover more information on how our FMOP can resolve your business communication problems, follow us on LinkedIn today.
    Catch up on our business news and achievements, explore and follow industry articles.
    FMOP
    Business messaging is a huge pain point for many organizations. At this point, putting the business messaging ‘cat’ back in the bag isn’t going to work. Customers demand the ability to communicate with companies using messengers. So what’s the solution? A Federated Messaging Orchestration Platform (FMOP).
    Read more
    Compliance
    Messaging apps are a preferred method of communication for clients to contact stockbrokers. However, being hit with a $5 million fine for not being able to keep client communications when using instant messaging is a hefty price to pay.
    Read more
    Compliance
    On Jan 22, 2020 Bloomberg announced that the use of Telegram for conducting a business deal was why the court was ruling in favor of Hyundai Motor Securities Co, costing Yuanta Securities Korea Co. ~USD $12.6 million. The Seoul Central District Court has ruled that conversations held via Telegram are not binding contracts.
    Read more
    Data ownership
    Having client poaching employees is the last thing any small business owner worries about. But just one single employee managed to cause an overnight loss of 20% in business income. Believe it or not, instant messaging can be a prime cause of client poaching.
    Read more
    Compliance
    Enterprise messaging is about more than just ensuring a consistent tone and message to your customers. It means giving your employees the right tools to respond quickly to customer requests. From compliance issues and loss of configuration control to reduced security and loss of business, there are many reasons why businesses need to implement a company wide separate enterprise messaging app.
    Read more
    Data ownership
    The privacy rights of employees are under threat from the most basic of workplace communications. Using supposedly safe, encrypted systems is putting personal information at risk, as there is no right to employee privacy on messengers once work topics appear. How can both employees and employers tackle this difficult issue?
    Read more