The Next Billion Users Will Not Be Human: Menlo Security Launches Industry’s First Browser Security Platform
Details
Traditional security tools such as data loss prevention (DLP) and Data Security Posture Management (DSPM) are falling behind the needs of the modern, hybrid workforce.
Clearly a solution is needed that can enable collaboration while protecting sensitive or protected data against loss and maintaining compliance.
Menlo AI Adaptive DLP eliminates high false positive rates, costly renewals, enforcement pauses, and circumvention issues associated with traditional DLP, offering a proactive, granular, and automated approach to data security. With cloud-based AI-based detection and masking, your data is protected as it moves through modern workflows as data is moved between both managed and unmanaged user devices.
Unlike heavyweight endpoint DLP agents, Menlo AI Adaptive DLP delivers cloud-based security as a service. Files are delivered to the elastic, global Menlo Cloud, guaranteeing low latency and fast performance even for large files. Detection and masking occur in the cloud leveraging a scalable architecture with dedicated resources per tenant. With no heavyweight endpoint agents to install and maintain, organizations can support employee BYOD, third-party devices such as contractors and even merger and acquisition target user communities.
Unlike multi-month deployments with traditional DLP, Menlo AI Adaptive DLP enables data security administrators to, in a single operation, define what to detect and what to mask. Then, the policy can be applied to data across multiple modern workflow and data stores, including in the browser (uploads/downloads), e-mail and advanced collaboration tools, web portals, cloud storage and other data stores. You get data security in days, rather than months.
Menlo AI Adaptive DLP offers advanced, automated, AI-based detection of the most common sensitive data types including personally-identifiable information (PII), personal health information (PHI) and fields related to financial data such as those subject to the payment card industry (PCI) data protection standards. Menlo AI Adaptive DLP includes extensible detection with a friendly user experience for adding new detection rules.
Rather than blocking files that include sensitive data, AI Adaptive DLP masks sensitive data in files in real-time and delivers them, enabling users to complete workflows in a compliant manner while blocking only sensitive content, eliminating the productivity hindrances posed by traditional DLP.
From the cloud, Menlo AI Adaptive DLP masks unstructured data in files in real-time. Security controls can be simplified by assigning a single data protection policy to multiple data flows known to AI Adaptive DLP, reducing the need for extensive static access governance, and narrowing compliance audit scope by scanning and masking data as it starts motion or comes to rest. Cloud-based operation is zero-footprint, which is an ideal solution to BYOD and third party devices such as those used by contractors, in contrast to heavyweight endpoint DLP agents.
In a single operation, the security administrator defines what to detect and what to mask. Then, this policy can be applied to data essentially everywhere—in the browser (uploads/downloads), e-mail and advanced collaboration tools, web portals, cloud storage and other data stores. Multiple policies can be applied to different types of data and to specific users or groups.
Cloud-based, Zero Footprint Eliminates User Frustration and Lost Hours
Traditional DLP can harm productivity: by blocking at the file level, a single block sends a user into a repetitive cycle of removing sensitive data, getting blocked again, and trying again. Countless hours are lost. Menlo AI Adaptive DLP makes users more productive by ending the workaround cycle, keeping workflows running by delivering files to users.
Cloud-based Menlo AI Adaptive DLP makes modern collaboration flows work for everyone including contractors and BYOD users.
Menlo AI Adaptive DLP Removes Barriers to Compliance
Nearly every organization faces a regulation requiring that sensitve data be protected from loss. Compliance responsibilty starts at the top, in the CIO or CISO office. Menlo AI Adaptive DLP overcomes barriers to compliance that are posed by traditional DLP. By making files usable in modern workflows, users stop working around blockages and IT stops disabling DLP enforcement. Menlo AI Adaptive DLP delivers the fastest path to compliance.
Easy to use with Convenient Configuration
The Help Desk is the primary interface between end users and the security org. Rigid legacy DLP rules flood the queue with access denied tickets.
Menlo AI Adaptive DLP reduces help desk friction by masking and delivering files to users instead of blocking them. This can minimize disruptions, reduce ticket volume and restores the security team’s reputation as an enabler rather than a roadblock.
Legacy DLP forces a binary block or allow choice, leading to constant requests for one-time exceptions. AI Adaptive DLP delivery ensures data remains secure without hard-blocking legitimate workflows. This removes the burden on the Data Security team to manage enforcement exceptions or coordinate global policy suspension for business continuity with GRC (Governance, Risk, and Compliance) office.
Leverage Precision Data Security
The modern enterprise deploys modern applications, such as live collaboration applications, across modern data stores on premises and in the cloud, and requires a hybrid workforce for cost efficiency and productivity. Menlo AI Adaptive DLP delivers precision data security for the modern enterprise. Unlike heavyweight agents required by traditional DLP, cloud-based AI Adaptive DLP delivers precision data security that works for Contractors and BYOD. Unlike rigid DLP that blocks at the file level, AI Adaptive DLP masks data in real time for modern collaboration apps and modern data stores, securing the modern enterprise.
"We greatly value our partnership and expertise in safeguarding our most sensitive data provided by Menlo Security. Their comprehensive and unique approach to data protection and masking has strengthened our confidence in the security of our operations. With their guidance, we are assured that our information remains protected to the highest standards of privacy and compliance."
— Yuriy FizerVP of Technology & Innovation
SUMA Federal Credit Union serves over 8000 members along the US East Coast, and is mandated to protect PCI-controlled data.
SUMA FCU found that the legacy file transfer solution, Secure FTP (SFTP) best suited their needs to move files both internally and from customers. Menlo AI Adaptive DLP is readily compatible with solutions like SFTP, and can in particular reduce compliance scope by maintaining PCI-controlled data only in specific folders.
DLP can prevent exfiltration but is a blunt instrument that blocks at the file level and is burdened with false positives. DSPM finds configuration and access errors, but only flags them, burdening IT operations with tasks.
By working inside files, Menlo AI Adaptive DLP opens up use cases that benefit both users and the IT team from the help desk to the CIO.
Gen AI tools can help supercharge user productivity, but introduce new data exfiltration risks. Some of those risks are obvious—users can freely share documents that may contain sensitive data as part of GenAI-powered workflows, exposing that data to consumption by LLMs.
Other risks are more subtle. In a file with a lot of data, users focus on their needs and may miss sensitive data in a part of the file not relevant to their work, and then pass the file to a coworker, who, again, misses sensitive data and uploads the file to GenAI.
Such inadvertant blindness exposes the risk of your organization's sensitive data ending up in a Large Language Model (LLM) that's behind every GenAI portal, chatbot, Gemini Gem, OpenAI CustomGPT or Claude Project. This is a vector you simply cannot risk. AI Adaptive DLP will mask sensitive data when it's emailed or shared in Teams. If the file is uploaded through a web browser, AI Adaptive DLP will mask sensitive data before the upload. Menlo AI Adaptive DLP has you covered against data loss to GenAI.
The Governance, Risk and Compliance (GRC) team faces a global hornets’ nest of conflicting stakeholders including regulators and stockholders on the outside and the CIO, CISO, IT security and the entire user community on the inside. DLP is mandated until false positives and other work interruptions require that it be disabled for many or all users.
Menlo AI Adaptive DLP enables compliance with data protection regulations like GDPR, CCPA, PIPEDA and others while simultaneously enabling uninterrupted collaboration workflows. With single-policy data protection for all data accessed via web browsers, OneDrive, Teams and Box, AI Adaptive DLP enables data protection regulatory compliance for data where it lives and is used.
Fast executive decision-making requires ever faster data analysis, often delivered by data warehouses accessed by modern analytical apps. Rapid data movement introduces the risk of inadvertent data exposure that could lead to public statements and reputation danger even if data is not lost.
By keeping a watchful eye on folders in both internal and cloud storage locations like Microsoft OneDrive, Box.com and Amazon Web Services S3, Menlo AI Adaptive DLP can ensure that data analysis can proceed while keeping sensitive data safe.
Security architects and administrators can find themselves caught between conflicting organizational requirements:
Modern organizations collaborate via email, Office 365 applications and OneDrive Storage and Teams. Of course, the need to share files with outsiders is frequently accomplished via email attachments or popular enterprise file stores like Box. Security administrators then spend months setting up and managing access and traffic controls. But organizations, of course, are not static and data access governance becomes an impossible task.
With a single unified policy, Menlo AI Adaptive DLP secures sensitive data in email bodies and attachments, file stores like OneDrive and Box, and collaboration apps like Teams. The organization is then ensured that sensitive data inbound, shared internally, or sent outbound, is masked for protection and logged for auditing.
The modern, hybrid workforce is real and expanding. IT administrators and their security peers sometimes are required to provide access to internal web and SaaS applications and their data to unmanaged devices such as those used by contractors, new users from mergers and acquisitions, and BYOD users. Unmanaged means lacking endpoint security controls and DLP.
Menlo Secure Application Access leveraging the Menlo Cloud and Menlo AI Adaptive DLP can prevent data loss from those apps by detecting and masking sensitive data in files downloaded from your business-critical apps to endpoints lacking your endpoint DLP.
Answers to the burning questions in your mind.
Action upon detection is up to you. You can use Menlo AI Adaptive DLP to find and report on sensitive data in files, or, you can create policies to mask sensitive data that AI Adaptive DLP has found in files.
The data is not lost forever. Menlo AI Adaptive DLP can be instructed to save the original file in the Menlo Zero Trust cloud for a configurable period.
Menlo AI Adaptive DLP offers a convenient mechanism to add custom policies to identify data using regular expressions or RegEx. In the age of GenAI, you don't have to struggle to create a RegEx! If you know what your data looks like, GenAI will give you your RegEx.
While AI Adaptive DLP is superior to tranditional DLP for many use cases, other forms of DLP can protect data for many use cases that are, for example, not collaborative. Menlo can provide an unbiased review of how your organization uses data stores, including files, that include sensitive data, and we can help identify how AI Adaptive DLP can help enhance productivity for data in collaborative use and use Menlo Browser DLP for the use cases for which it is most appropriate. Contact us!
Take a self-guided tour to observe some of the ways that Menlo products enable secure app access, block sophisticated attacks, and provide critical insight into browsing sessions.
See exactly how Menlo can be tailored to solve your unique security challenges. We offer a live demo customized to your teamʼs goals, showing you how to secure your stack and protect your users. A truly secure browsing experience is one click away.
