Trellix Data Loss Prevention Integration with Chrome Enterprise Delivers Secure Browsing Protection

By Sreeharsha Raghavendra · May 06, 2024

Organizations adapting to a flexible and remote work culture embrace cloud-based applications and services due to the ease of deployment and low operational cost. In this complex ecosystem, enterprises are concerned about ensuring the protection of their sensitive data and complying with mandates to protect personally identifiable information (PII), payment card information (PCI), and personal health information (PHI), depending on the nature of their business.

To help organizations address these challenges head-on, Trellix in collaboration with Chrome Enterprise, has unveiled a ground-breaking integration - Trellix DLP for Chrome Enterprise, making Trellix Data Loss Prevention (DLP) part of the Chrome Enterprise Recommended program. This marks a significant advancement in empowering organizations to prevent data breaches and uphold regulatory compliance standards.

This integration is available in Trellix DLP Endpoint for Windows version 11.11.0. A one-time configuration using Chrome Enterprise Core’s cloud management console is required to leverage Trellix DLP's robust capabilities, such as real-time monitoring, content analysis, and enforcement of data protection policies within the Chrome browser. There is no cost for Chrome Enterprise Core.

Some of the key benefits of this integration are:

• Seamless Integration: API-based integration reduces performance bottlenecks and compatibility issues, offering continued protection during browser upgrades
• Scalability & Ease of Management: Streamlines the implementation process for both IT and DLP administrators, making it simple to deploy and manage data protection measures for all users and devices across the organization
• Enhanced User Experience: Provides efficient and high-performance data inspection and prevention capabilities, end users can perform their tasks efficiently without compromising productivity
• Real-time Monitoring and Enforcement: Unlike extension-based integration, this API inspects and protects data in real-time as it flows through the browser, reducing the risk of data leaks and ensuring confidentiality
• Compliance and Reporting: The integration facilitates compliance with regulatory requirements by enforcing data protection policies consistently across the organization. Trellix ePO's robust built-in dashboard and reporting tools also provide valuable insights into incidents and compliance status

Trellix and Chrome Enterprise are delivering an integrated and secure browsing experience for users and organizations that helps protect against potential data leaks. Once enabled, in accordance with the organization’s DLP policies, the integration will monitor and/or block sensitive data if users share it over the browser.

As shown in the image below, Trellix DLP can monitor and/or block if a user copies and pastes sensitive content into the browser, i.e. a Gmail message. The user notification is provided in the lower corner of the screen and can be any customizable message based on the organization's settings. Users are also able to request an exception.

Figure 3 shows how Trellix DLP can also monitor and/or block if a user attempts to print locally stored sensitive documents opened in the Chrome browser. The user will receive a notification in the lower corner of the screen, the message is customizable by the organization and the user can request an exception based on the organization’s settings.

Additionally, as shown below, DLP can monitor or block printing of documents opened natively on the managed Chrome browser from remote shares in your enterprise or cloud storage locations, i.e. from Google Drive. As with the previous features, the user will receive a notification in the lower corner of the screen. The message is customizable by the organization and the user can request an exception based on the organization’s settings.

Figure 5 shows monitoring and blocking of the upload of files containing sensitive information to cloud storage locations or as attachments to emails, as well as dragging and dropping files directly to the web page. Based on the organization’s settings, the user will receive a notification in the lower corner of the screen. The message is customizable, and the user can request an exception.

The integration of Trellix DLP capabilities into Chrome Enterprise represents a major milestone in secure browsing, offering organizations a powerful solution to safeguard against data loss and mitigate the risk of cyber threats. As businesses continue to navigate the complexities of the digital world, partnerships like this exemplify the collaborative efforts needed to address the evolving security challenges of the future.

To learn more about Trellix Data Loss Prevention Endpoint, please visit our Trellix DLP webpage. If you’re attending RSAC 2024, come see us at booth N-5744, where we'll offer interactive demos and an in-booth presentation on Protecting Sensitive Data in Chrome Enterprise on May 7, at 5 p.m. Get all the details here: https://www.trellix.com/partners/google-cloud/.