Managing data exfiltration risk

Assignee

• Proofpoint, Inc. · US

Inventors

• Oded Tietz · Herzliya, IL
• Mayank Choudhary · Shrewsbury, US
• Nir Barak · Nes Ziona, IL
• Micky Oland · Nes Ziona, IL
• Tal Shemesh · Herzliya, IL
• Yigal Meshulam · Shetulim, IL
• Lior Calif · Nes Ziona, IL

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2221/034
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A computer-based method is disclosed to facilitate managing data exfiltration risk in a computer network environment. The method includes collecting computer file management information associated with each respective one of a plurality of computer files in an organization's computer network environment from a computer operating system, collecting user activity information associated with each respective one of a plurality of user sessions by users having access to the organization's computer network environment with a plurality of session monitoring agents, correlating at least some of the collected user activity information to one or more of the computer files associated with the collected file management information; and assessing data exfiltration risk with respect to one or more of the computer files based at least in part on some of the file management information and the correlated user activity information associated with a file history chain.