About Enterprise DLP End User Alerting with Cortex XSOAR
Table of Contents
Expand all | Collapse all
-
- Register and Activate Enterprise DLP on Prisma Access (Panorama Managed)
- Edit the Enterprise DLP Snippet Settings on the DLP App
- Enable Role Based Access to Enterprise DLP on Cloud Management
- Enable Optical Character Recognition on Cloud Management
- Enable Optical Character Recognition for Enterprise DLP
-
-
- Create a Data Profile on the DLP App
- Create a Data Profile with EDM Data Sets on the DLP App
- Create a Data Profile with Data Patterns and EDM Data Sets on the DLP App
- Create a Data Profile with Nested Data Profiles on the DLP App
- Create a Data Profile on Cloud Management
- Create a Data Profile with EDM Data Sets on Cloud Management
- Create a Data Profile with Data Patterns and EDM Data Sets on Cloud Management
- Create a Data Profile with Nested Data Profiles on Cloud Management
- Create a Data Filtering Profile on Panorama
- Create a Data Filtering Profile on Panorama for Non-File Detection
- Update a Data Profile on the DLP App
- Update a Data Profile on Cloud Management
- Update a Data Filtering Profile on Panorama
- Enable Existing Data Patterns and Filtering Profiles
-
- How Does Email DLP Work?
- Activate Email DLP
- Add an Enterprise DLP Email Policy
- Review Email DLP Incidents
-
- Monitor DLP Status with the DLP Health and Telemetry App
- View Enterprise DLP Log Details on the DLP App
- Manage Enterprise DLP Incidents on the DLP App
- View Enterprise DLP Audit Logs on the DLP App
- View Enterprise DLP Log Details on Cloud Management
- Manage Enterprise DLP Incidents on Cloud Management
- View Enterprise DLP Audit Logs on Cloud Management
- View Enterprise DLP Log Details on Panorama
About Enterprise DLP End User Alerting with Cortex XSOAR
About
Enterprise Data Loss Prevention (E-DLP)
End User Alerting with Cortex XSOAR
.Enterprise Data Loss Prevention (E-DLP)
End User Alerting with Cortex XSOAR
allows your team members to
understand why a file upload was blocked by Enterprise DLP
and enables self-service
temporary exemptions for file uploads that match your Enterprise DLP
data profiles.
Enterprise DLP
End User Alerting with Cortex XSOAR
provides an audit
trail to better understand the upload and response history for every file scanned by the
DLP cloud service. Additionally, enabling End User Alerting with Cortex XSOAR
prevents malware triggered uploads because an affirmative action is required to request
an exemption. Enterprise DLP
End User Alerting with Cortex XSOAR
requires an active XSOAR license
and integration with the Enterprise DLP
application. You can view responses to file
uploads that match your data filtering profiles and data profiles on supported applications only. For
some applications, End User Alerting with Cortex XSOAR
requires IP mapping to
email addresses to furnishing exemption queries to your team members. After you
successfully integrate Enterprise DLP
with XSOAR and configure the exemption
duration, the team member who uploads a matched file is presented with an automated
message to confirm if the file includes sensitive data that triggers a block verdict
from the DLP cloud service. If the team member responds that the file does contain
sensitive data, they’re given the option request a temporary exception for the specific
file. If the team member responds that the file doesn’t
contain sensitive information, the DLP cloud service flags the file as a false
positive. However,
Enterprise DLP
continues to block the file
upload.The
Enterprise DLP
cloud service preserves the response history for all scanned files after
End User Alerting with Cortex XSOAR
is enabled. For example, your team member
uploads file_A.pdf
that matches a data profile match
criteria. The team member is prompted to confirm if the file contains sensitive
information, to which they answer Yes
and request an exemption. A
few days later, the team member uploads file_A.pdf
again.
This time they’re only prompted to request an exemption because the DLP cloud service is
already aware of the file response history.