Customer Stories Data Loss Prevention Human Layer Security
Data Leakage and Exfiltration: 7 Problems Tessian Helps Solve
03 August 2020
On Wednesday, July 29, Tessian hosted a webinar with two customers: Euromoney Institutional Investor and ERT. The topic? Data exfiltration and reduced visibility while workforces are remote. Martyn Booth, Chief Information Security Officer (CISO) at Euromoney Institutional Investor and Ted Crawford, Chief Information Officer (CIO) at ERT both offered incredible insights about how things have changed from a security perspective over the last four months and how Tessian has helped them lock down email, even before their employees started working from home. And, because Martyn and Ted are two security leaders in different industries (Financial Services and Tech/Healthcare respectively) and are based in different regions (England and The United States), they were able to share diverse opinions and experiences. Keep reading to learn more about how Tessian has helped them solve some of their biggest pain points.  7 Problems Tessian Helps Solve 1. Tessian prevents accidental data loss on email When you hear “data exfiltration”, what do you think of?  Many of you probably thought immediately about Insider Threats and other malicious activity. But, as our customers pointed out, most incidents involving data loss are accidental. Or, as Martyn put it, are the result of “naive email usage”. It could be an employee sending an email to the wrong person (we call this a misdirected email), it could be someone hitting “reply all”, or it could be someone emailing a spreadsheet to their personal email account to work on over the weekend.  Harmless, right? Not exactly. If these “accidents” involve sensitive information related to employees, customers, clients, or the company itself, it’s considered a breach.  Organizations can prevent all of the above with Tessian Guardian.  This is especially important now that employees are working remotely. Why? Because the lines between peoples’ personal and professional lives are blurred. Beyond that, people are distracted, stressed, and tired which, as we’ve shown in our latest research report The Psychology of Human Error, increases the likelihood that a mistake will happen. 2. Tessian prevents malicious data exfiltration on email While, yes, many data loss incidents are accidental, some employees do intentionally exfiltrate data. There are a number of reasons why, but financial gain and a competitive edge are the most likely motivators.  Unfortunately, with so many people being laid off, made redundant, or furloughed, many organizations have seen a spike in this type of malicious activity. But, with Tessian Enforcer, organizations’ most sensitive data is kept safe.  Employees attempting to email sensitive information to themselves or a suspicious third-party will receive a warning message, explaining why the email has been flagged and asking if they’re sure they want to proceed. At the same time, security teams will get a notification.
Note: Instead of warning the employee and asking if they’d like to send the email anyway, security teams can easily configure Tessian to automatically quarantine emails that look like data exfiltration. Book a demo to see Tessian in action.  3. Tessian makes it easy to report security risks and communicate ROI  Communicating cybersecurity ROI has historically been a real challenge for security leaders. Not with Tessian. Martyn explained how Tessian enables him to share key results with executives and demonstrate the effectiveness of not just the solution, but his overall strategy. “One of the pillars of our infrastructure strategy was to build transparency across the organization. This comes from sharing metrics. With Tessian, we can show how many alerts were picked up and, each month, we can show the risk committee that we’re reducing the number of alerts. Now, are they actually interested in our preventative controls? I don’t think so. But the whole point of the metrics program is to show how well (or badly) our strategy is performing.  Before, they would make their decision based on cost or how much risk they thought we were going to be mitigating. It was quite subjective. We’ve moved that now into something more data-based. We can actually say “Well, actually, we pay x per year and, as a result of that, we’re going in the right direction in terms of our risk mitigations.” 4. Tessian helps organizations stay compliant  Both Healthcare and Financial Services are highly regulated industries that are bound to several compliance standards beyond GDPR.  That’s why, for Ted, protecting sensitive clinical data and ensuring “privacy and security by design” are both paramount. “There’s a lot of data that we need to protect and prevent from getting outside of the four walls of ERT,” he said. “As an offshoot of GDPR in 2018, we had to classify all of the data, determine from a privacy perspective how to treat it from a sensitivity perspective, and then decide how to treat it from a security perspective. Because it’s very easy to pull sensitive data and incur data loss on email, we needed a solution that would help us ensure data isn’t distributed where it shouldn’t go. That’s why we approached Tessian.” For more information about compliance in Financial Services, check out this article: Ultimate Guide to Data Protection and Compliance in Financial Services.
5. Tessian saves security teams time  While essential for compliance, classifying (and re-classifying) data, monitoring movement, investigating incidents, and generating reports all take a lot of time. That’s why 85% of IT leaders say rule-based DLP is admin-intensive.  With Tessian, security teams don’t have to do any of the above manually. This is a big selling point for Martyn, who said, “That’s where we really see the value with Tessian. It takes the burden off of people in my security team”. Tessian is powered by machine learning algorithms that have been trained on billions of data points. That means our solutions automatically understand what is and isn’t normal behavior for individual employees and can, therefore, detect and prevent threats before they turn into incidents or breaches. No rules required.  You can read more about our technology here.  6. Tessian gives security teams clear visibility of risks We’ve talked a lot about how Tessian detects and prevents risks. But for a solution to be really successful, it has to give security teams clear visibility of the risks in their organization. Tessian’s Human Layer Security platform does both.  With Tessian Human Layer Security Intelligence, our customers can easily and automatically get detailed insights into employee’s actions.  For example, imagine that in a single week, Tessian detects 12 different employees attempting to send sensitive information to their personal email accounts. When warned that sending the email is against company policy, nine of the employees opted to not send the email. The other three went ahead. Knowing this, security leaders can focus their efforts on the three that went ahead and offer additional, targeted training or, if necessary, they can escalate the incident to a line manager to issue a more formal warning.  This also helps predict future behavior. For example, if Tessian flags that an employee has sent upwards of 20 attachments – including Intellectual Property that would be valuable to a competitor – to a recipient he or she has no previous email history with soon after being denied a raise or promotion, security teams could infer that the employee is resigning and taking company data with them.  And, to prevent any further data exfiltration attempts, they can create custom filters specifically for that user, including customized warning messages or a filter that automatically blocks future exfiltration attempts. Before Tessian, this wasn’t possible for Martyn.  “Even if we suspected that an employee was going to go to a competitor and take data, we couldn’t check. We couldn’t see anything that was going up to the Cloud. It was all encrypted. The only way we would be able to see what people were emailing would be to actually go through individual emails to find ones that were problematic. We didn’t have time for that,” he said 
7. Tessian helps reinforce training and improve employee’s security reflexes with in-the-moment warnings In the example above, three employees opted to send an email after being warned that doing so is against company policy. But, what about the other nine? The warning message changed their behavior! It actually incentivized them to accurately mark emails as confidential or malicious if they were, in fact, confidential or malicious. This is really important. “You can’t take a “big bang” approach to data privacy awareness training. To really see employees empowered, you have to constantly reinforce training,” Ted said.  The bottom line: For training to be effective long-term, employees need to apply what they learn to real-world situations and be reminded of policies in-the-moment. Over time, this will help improve their security reflexes and help build a more positive security culture.  Henry Trevelyan Thomas, the host of the webinar and Tessian’s Head of Customer Success, summarized the benefits of this for both employees and security leaders, “This is a really productive way to help employees take accountability for how they handle data. It democratizes security and takes some of the weight off of the Chief Information Security Officer’s shoulders.” Tessian can help prevent data exfiltration in your organization, too Tessian turns an organization’s email data into its best defense against inbound and outbound email security threats. Powered by machine learning, our Human Layer Security technology understands human behavior and relationships, enabling it to automatically detect and prevent anomalous and dangerous activity. Tessian Enforcer detects and prevents data exfiltration attempts Tessian Guardian detects and prevents misdirected emails Importantly, Tessian’s technology automatically updates its understanding of human behavior and evolving relationships through continuous analysis and learning of the organization’s email network. Oh, and it works silently in the background, meaning employees can do their jobs without security getting in the way.  Interested in learning more about how Tessian can help prevent accidental data loss and data exfiltration in your organization? You can read some of our customer stories here or book a demo.
Customer Stories Data Loss Prevention Human Layer Security Spear Phishing
13 Things We Learned at Tessian Virtual Human Layer Security Summit
18 June 2020
Tessian’s Virtual Human Layer Security Summit was an incredible success thanks to our partners, speakers, and – of course – all of those who attended. Over 1,000 security, IT, compliance, business, and HR professionals watched as we explored how business models have changed, what these changes mean for all of us, and what to expect over the next several months. If you weren’t able to tune into the Summit yesterday, don’t worry! You can watch the full video below or access it on-demand. We’ve summarized some of the key points into relevant and actionable advice. Share these with your co-workers, share them on social media, or bookmark this blog for yourself. Here’s what we learned at Tessian Virtual Human Layer Security Summit.
1. We must treat our employees with empathy and compassion.  While the event was focused on cybersecurity and tech, one of the most important takeaways from the day is about being human. The Summit kicked off with an important reminder from Bobby Ford, Vice President and Global CISO at Unilever: “We’re not just working from home, we’re working from home during a crisis.” While – yes – we’re all trying to conduct “business as usual”, all of us are dealing with unique challenges. Many parents have suddenly taken on the roles of teachers, and living rooms have been transformed into makeshift co-working spaces for partners and roommates. And this doesn’t even account for the emotional stress of a global pandemic and current social and political unrest.  There’s a lot to navigate, process, and overcome, and many of us are distracted, stressed, and anxious. And that’s okay. As leaders and as humans, we have to be empathetic and compassionate. We have to take the mental wellbeing of our employees seriously and give them the tools, resources, and support they need to thrive, wherever they’re working.
2. The secure thing to do should be the easiest thing to do.  Let’s face it. Security isn’t the average employee’s top priority. They just want to do their job. Over half (54%) of employees say they’ll find a workaround if security software or policies make it difficult or prevent them from doing their job.  That’s why it’s so important that we implement policies, procedures, and tech that’s frictionless.  Bobby put this into perspective with an example from his own life.  When you’re a parent helping your son or daughter learn how to walk, what do you do? Child-proof the house and get outta the way! That’s what we need to be doing as security leaders. Make sure the most secure path is the path of least resistance, whether that’s ensuring your employees have a secure way to print and dispose of documents or implementing flexible BYOD policies.  3. Detection and prevention alone aren’t enough.  We all work hard to detect and prevent both inbound and outbound threats. And, while even that isn’t always easy, that’s not our only job. We also have to have to maintain visibility of risks, manage teams that are often thinly stretched, move quickly from investigation to remediation, and communicate threats to executive teams.  Almost impossible, right? Not anymore.  Tessian’s Group Product Manager, Harry Wetherald and Product Marketing Manager, Shanthi Shambathkumar, announced some very exciting news during the Summit: the launch of Human Layer Security Intelligence. With HLS Intelligence, security leaders can now predict, prevent, and protect against threats with zero manual investigation. That means you can continuously and proactively downtrend risks in your organization. Want to learn more? We outline all the benefits of Human Layer Security Intelligence and explore use cases on our blog: Introducing Tessian Human Layer Security Intelligence. 4. Executive teams must invest in security now.  While cybersecurity has historically been a siloed department, it’s becoming more and more integrated with overall business functions. In fact, it can actually be a business enabler and a unique selling point for customers and prospects.  But, only if your organization is secure. And, as Clive Novis, Chief IT Risk Officer at Investec pointed out, it takes a village to ensure data is protected which means cybersecurity initiatives must get support from senior executives first. During the customer panel discussion, he said “The tone is set from the top in terms of the security culture. They help ensure not only that controls are effective, but that those controls are consistent across the globe.” Needless to say, this is more important now than ever. As we continue to adapt to new remote and hybrid working structures, many of us are introducing new policies and solutions and we need buy-in across departments for these policies and solutions to work. 5. Email is the #1 threat vector.  Over the last few months, we’ve heard a lot about the dangers of Zoombombing. But, we’ve heard even more about COVID-19 themed phishing attacks, Tax Day scams, and 2020 Census scams. (Jump to #7 for more information.) With that said, email is the threat vector most security and IT leaders are concerned about.
It makes sense. Over 124 billion business emails are sent and received every day and employees spend 40% of their time on email sharing memos, spreadsheets, invoices, and other sensitive information and unstructured data. It’s a gold mine. The bottom line: We need to be leveling up our DLP efforts on email. 6. Security incidents are happening up to 38x more than IT leaders currently estimate.  During the Summit, Tessian Co-founder and CEO Tim Sadler presented some of the key findings from our most recent report The State of Data Loss Prevention 2020. Our research reveals that data loss on email is a bigger problem than most realize, that remote-working brings new challenges around DLP, and that the solutions currently deemed most effective may actually be the least. While we addressed the frequency of misdirected emails and malicious data exfiltration, one of the most startling facts involves employees sending company data to personal email accounts.  At Tessian, we call these unauthorized emails, and according to our platform data, they’re being sent 27,500 times a year in organizations with 1,000 employees. Meanwhile, IT leaders estimate just 720 are sent. That’s a big difference and highlights the need for effective data loss prevention solutions.  Follow the links to learn more about how Tessian detects and prevents accidental data loss and data exfiltration attempts.  7. Phishing is still a big problem.  While phishing has always been a problem for organizations, we’ve seen a marked spike in incidents over the last few months. And it’s not just Tessian who has taken note. Elvis Chan, Supervisory Special Agent, National Security at the FBI has, too.  For him, phishing is the biggest risk.
What does this mean for you? Continue educating your employees about the risks associated with phishing and how to spot these attacks and ensure they’re protected with tech.  8. Security policies don’t stick unless they’re continuously reinforced.  We’ve said it before, but we’ll say it again: The average employee doesn’t care about security as much as you do. They just want to do their job. That means we have to continuously reinforce security policies, especially now that workforces are distributed.  But, repetition isn’t enough.  We have to communicate in terms our employees understand. Angela Henry, Business Information Security Officer at Rand Merchant Bank, recommends educating employees on business data privacy best practice alongside consumer data privacy best practice. Share tips that are relevant to their personal lives. Offer advice on how to keep their children secure online. Prepare resources around how to stay safe on e-commerce sites. Not only does this help foster a positive security culture in the office, but it also helps employees stay safe and secure at home.  9. …And policies aren’t effective unless they’re bolstered by technology.  While educating employees about policies is a vital part of any security strategy, it isn’t enough to prevent inbound and outbound threats and subsequent data breaches.  After all, we’re only human. We break the rules, make mistakes, and can be easily tricked. In fact, 44% of breaches are caused by human error. Elvis summed it up nicely when he said, “Even if we’re at technology 5.0, we’re still at human being 1.0.”  So, what do we do? Garrett recommends bolstering training with technology to ensure that people aren’t the last line of defense, saying “My ultimate view is that user awareness training is fine but – in mathematical terms – it’s necessary but not sufficient. I think it needs to be used in conjunction with other tools.” 10. Security needs diversity to thrive.  Throughout the Human Layer Security Summit, we talked a lot about security pre- and post-pandemic. But, Merrit Baer, Principal Security Architect at Amazon Web Services pointed out something else we shouldn’t forget.
She’s right. Cybersecurity needs diversity to thrive.  This diversity isn’t limited to gender or ethnic diversity. The field is wide open for a range of educational and professional backgrounds, from psychology majors to business analysts and just about everything in between.  You can read more about the opportunities available in cybersecurity in our report Opportunity in Cybersecurity 2020. 11. Remote working isn’t temporary. According to a recent poll by 451 Research, 38% of businesses expect work-from-home strategies will continue post-pandemic. And, when you consider companies like Facebook have already announced they’re permanently embracing remote-work, we should expect more to follow. The point? We should equip our workforces to thrive at home and ensure that we’re maintaining a strong security culture company-wide while also supporting our employees mentally and emotionally. (See #1.)  12. …And that doesn’t have to be a bad thing.  There are new and perennial challenges we must overcome in order to support a full-time remote workforce, but there are a number of benefits, too. Don’t take our word for it. Stephane Kasriel, Former CEO of Upwork – a company that has maintained a hybrid remote-working structure across 500 cities for nearly a decade – offered attendees of the Summit several reasons why this is something to look forward to, not dread.  To start, remote-working enables companies to find and work with the best talent, not just local talent. Beyond that, employees have more freedom to design their lives. They can more easily balance work and life, relocate as and when they need or want to, and create environments in which they can really thrive.  13. The Secret? Adapt, adopt, evolve. Repeat.  If there’s one thing that was made clear throughout every panel discussion, fireside chat, and interview, it’s that things have changed and will continue to change. The only way to succeed is to adapt and evolve. Adopt new technologies. Embrace new ways of working. Lean on peers and professional networks for advice.  In the spirit of change, we’ve put together a list of resources that will help you navigate security and business challenges of the present and future.  Security During Uncertainty: 6 Steps Security Leaders Can Take to Reduce Risk Cyber Culture in the Time of COVID COVID-19 and the Digital Pandemic Upwork Remote Work Resources COVID-19: Real-Life Examples of Phishing Emails 13 Cybersecurity Sins When Working Remotely Advice From Security Leaders for Security Leaders: How to Navigate New Remote-Working Challenges Remote-Worker’s Guide To: Preventing Data Loss 11 Tools to Help You Stay Secure and Productive While Working Remotely Did we miss anything? Feel free to email [email protected] with your key learnings.
Customer Stories
Keeping Sensitive Client Data Safe
20 April 2020
With a strong focus on protecting client data, leading international legal business, DAC Beachcroft LLP has adopted Tessian’s machine intelligent email security platform to support the firm’s new cyber security strategy. Being deployed across its offices in Europe, Asia Pacific and Latin America, the platform will help prevent the firm’s 2,500 employees from sending misdirected emails that could potentially lead to loss of confidential client data. DAC Beachcroft LLP is leading the move towards legal firms becoming more digitally focused with security being at the forefront of that movement. It looked to Tessian to offer a platform that would not only give employees peace of mind when handling sensitive client data but allowed staff to be more flexible when using email on the move across any device or operating system (OS). The platform also delivered a solution that was quick to install with minimal disruption and was easy to use for busy lawyers and support teams alike. “Our staff deal with highly sensitive client data on a daily basis and we wanted to be able to support the teams to work with that personal information confidently without the fear of a data breach,” comments, Andrew Keith, COO, DAC Beachcroft LLP. “Just by having the Tessian platform in place has significantly reduced risks at DAC Beachcroft LLP within just four weeks. It captures what could potentially be a massive data breach, and the benefits have been almost immediately recognized by all at the firm.” David Aird, IT Director DAC Beachcroft LLP, continues; “Our lawyers are busy with client work, and the simplicity of the platform has meant they and their support staff don’t have to worry about simple human errors such as entering the wrong email address.  The Tessian platform stood out from other solutions on the market because its machine learning approach meant we could automatically protect the firm from misdirected emails, unauthorized emails and non-compliance on the network.” Tessian uses machine intelligence to understand normal email communication patterns in order to automatically identify email security threats, without the need for end user behavior change or pre-defined rules and policies. “DAC Beachcroft LLP is one of the leading legal firms to create a digital environment for its network. The firm has invested time and money in the best security solutions to protect client data and its staff from potential serious email breaches. We’re delighted to be part of that move to become a secure digital business and see a long partnership ahead,” comments Tim Sadler, CEO of Tessian. Learn more about how Tessian prevents human error on email Tessian is building the world’s first Human Layer Security platform to automatically secure all human-digital interactions within the enterprise. Today, our filters use stateful machine learning to protect people using email and to prevent threats like spear phishing, accidental data loss, data exfiltration and other non-compliant email activity. To book a demo and learn more about how we can help your organization, click here.
Customer Stories Human Layer Security
Cybersecurity Awareness Should Be People-Centric, Too
13 March 2020
The first speaker at Tessian Human Layer Security Summit on March 5 was Mark Lodgson, Head of Cyber Assurance and Oversight at Prudential.  He started his presentation by citing three fundamental flaws in cybersecurity awareness training: It’s boring It’s often irrelevant  It’s expensive 
So, should we do away with it entirely? Not quite. Cybersecurity training is a necessary evil Cybersecurity professionals who implement training programs and employees who take part in these training programs can no doubt attest that the three flaws Mark mentioned are an unfortunate reality.  But, what’s the solution? Training is, after all, a necessity. Without it, employees would rely entirely on often small and overworked IT and cybersecurity teams to prevent incidents and mitigate the consequences afterward.  That’s not just a tall order; it’s completely unfeasible, especially when human error is the most prevalent cause of data breaches. That means every individual must be held accountable.  By educating employees about data privacy laws, password best practices, and how to spot phishing scams, cybersecurity becomes the collective responsibility of the organization, not just those who have a relevant title. With that said, Mark isn’t suggesting that organizations do away with cybersecurity awareness training. Instead, he’s saying that in order for it to be effective, it needs to be aligned to the individual business.  To do that, you have to get to know the business, the people in it, and their attitudes towards security. And, according to Mark, the best indicator of future behavior is confidence. The cybersecurity culture survey
Influenced by the work of Phillip Tetlock, Mark created a survey with predictive power. But, unlike your average survey that simply gauges knowledge, this survey gauges confidence.  Importantly, the survey focused on five key competencies: Business focus Cyber risk assessment Policy and best practice Cybersecurity advocacy Personal practice The thought process is simple: a survey respondent who answers a question incorrectly with 100% confidence is just as likely to make a mistake as a survey respondent who answers a question correctly with less than 100% confidence. Both responses signal the potential for equally risky behaviors. Beyond that, though, the responses – either correct or incorrect – represent an area that requires targeted training and intervention. How can you apply this to your cybersecurity strategy? While Mark shared the results of the survey he conducted (which you can see by watching the full presentation on our YouTube channel) his findings won’t help cybersecurity professionals fine-tune their own training. The key here is that awareness training needs to be customized.  Without gauging not just the knowledge but the confidence of your employees, you’re essentially blind to the cybersecurity risks within your organization. And, of course, your efforts run the risk of being deemed “boring”, “irrelevant”, and “expensive” with no tangible upside. For more insights garnered from Tessian Human Layer Security Summit, click here.  #HumanLayerSecuritySummit20  
Customer Stories
Mitigating the Risk of Data Exfiltration in a Regulated Industry
19 February 2020
McMillan Williams Solicitors (MW) is a British consumer high street law firm. It is a top 10 conveyancing law firm, operating across the south of England with a mission to provide accessible, affordable, inclusive, innovative and personal legal services. MW Solicitors is protecting 450 employees with Tessian Guardian, Tessian Enforcer and Tessian Constructor.
Making security a priority MW Solicitors provides legal advice to clients across the UK. Chief Information Officer David Fazakerley is responsible for ensuring that the firm’s IT infrastructure is efficient and fit for purpose. With over 1,000 new clients every month, protecting client data is a top priority.  Due to the high volume of clients, MW Solicitors’ attorneys must be efficient when tending to client needs. David notes that because of the pace of work, “mistakes can easily happen on email, especially due to features like autocomplete, which can lead to an email being accidentally sent to the wrong person.” David identified misdirected and unauthorized emails as two key problems that could compromise the firm’s data security.  What’s more, from a compliance point of view, data loss and exfiltration can cause significant issues for law firms, resulting in many hours spent on incident management and potentially having to file a report to the ICO. Seeking a solution that would ensure that their sensitive data remains secured, MW Solicitors turned to Tessian.
Efficiently mitigating the risk of data loss Tessian’s ability to easily integrate into MW Solicitors’ layered security system without having an impact on the infrastructure was a key benefit for the firm’s Risk and Compliance team. Tessian produced positive results shortly after deployment.  MW Solicitors deployed Tessian Guardian to prevent accidental data loss due to misdirected emails. One of the most common mistakes that can lead to a misdirected email is an employee inputting the wrong client email into a case management system. “This can be as simple as putting in hotmail.com instead of hotmail.co.uk,” notes Charlotte Mays, Compliance and Data Protection Manager. This is a problem because case management systems are unable to recognize such mistakes. Tessian Guardian can prevent emails from being sent to an incorrect address saved in the case management system. It does this by analyzing the firm’s historical email data in order to understand sending patterns and relationships between contacts. By learning what the “normal” or correct email address is from previous communications, Tessian Guardian can automatically identify the abnormal email address and notify the user that the incorrect recipient has been included in the email.  MW Solicitors also deployed Tessian Enforcer to prevent data exfiltration by email to personal or non-business domains. Tessian Enforcer understands the difference between authorized and unauthorized accounts by looking at emails that each employee has sent and received in the past in order to identify non-business contacts. If an employee sends an email to an unauthorized account, Charlotte and her team are now able to easily detect this. This has been “a huge improvement, as before it might have been difficult to even identify the employee in the first place,” notes Charlotte. MW Solicitors’ Risk and Compliance team are now able to review the Tessian dashboard to see in real time if data has been sent to unsafe destinations. 
Building a culture of transparency David aims to build a culture of transparency when it comes to data security. If all employees have an understanding of the security solutions in place, David believes that this will improve employee awareness and accountability. As MW Solicitors continues to grow, highlighting the importance of data security will be vital.  Human error is a constant, but if employees are armed with the right tools to prevent mistakes from occurring in the first place, then damage can be minimized or avoided altogether.  Learn more about how Tessian prevents human error on email Tessian is building the world’s first Human Layer Security platform to automatically secure all human-digital interactions within the enterprise. Today, our filters use stateful machine learning to protect people using email and to prevent threats like spear phishing, accidental data loss, data exfiltration and other non-compliant email activity. To book a demo and learn more about how we can help your organization, click here.
Customer Stories
Strengthening Security in Biotechnology
11 February 2020
Gubra is a Danish biotechnology company that was founded in 2008. Gubra focuses on preclinical contract research services and drug discovery programs within the metabolic space. The organization has established itself across the globe as a highly professional and competent partner within academia, biotechnology and the pharmaceutical industry. Gubra is protecting 160 employees with Tessian Defender and Tessian Guardian.
Taking security seriously Gubra is a Danish preclinical contract research organization that specializes in model building and drug testing for a variety of metabolic diseases. Chief Technology Officer Morten Høgholm Pedersen oversees IT development, implementation and operations. With many of the globe’s largest pharmaceutical companies as customers, ensuring that Gubra’s IT systems remain secure is a top priority. Many of Gubra’s clients are very sensitive to data security due to the nature of the biotechnology industry. Therefore, it is imperative that their information remains safeguarded within the organization. “We share data via password protected fileshare solutions. So even though sensitive data would not be compromised, misdirected emails that employees could accidentally send would still seem unprofessional and undermine our reputation,” says Morten. Additionally, with the rise in spear phishing attacks, Gubra also needed a solution that would better protect the organization from inbound threats on email. Gubra turned to Tessian.
Upholding credibility through secured systems Tessian was successfully implemented into Gubra’s security stack. Administered by Gubra’s IT team and overseen by Morten, Tessian gives Gubra transparency into their email security. Gubra is now protected from accidental data loss due to misdirected emails with the implementation of Tessian Guardian. For Gubra, the most powerful feature is Tessian Guardian’s ability to automatically identify an abnormal email address and notify users in real time that the potentially wrong recipient has been included. “The pop-up warning that tells people they could be sending an email to the wrong person has had a learning effect on the organization,” notes Morten. For Gubra, Tessian Guardian has led employees to become even more cautious. Many spear phishing attempts try to lure employees into paying fake invoices; and attackers are convincingly impersonating familiar parties. For Morten, the biggest concern for the organization is maintaining data security and credibility. Tessian Defender automatically prevents advanced impersonation-based spear phishing attacks by using stateful machine learning models to analyze historical email data and understand relationship context. Tessian Defender can detect impersonation from both internal and external parties and is helping Gubra defend itself from inbound threats.
Staying vigilant in a changing environment Human error is inevitable, and people will make mistakes on email, but they can be mitigated if the right tools are in place. For Morten, “it should be a standard for all companies to have a high degree of protection using the most advanced tools available against phishing attempts and misdirected emails.” With attackers getting more sophisticated with their tactics, it will be important for organizations to stay proactive with their security strategy. Gubra can now ensure that their clients’ sensitive data remains secured.
Learn more about how Tessian prevents human error on email Tessian is building the world’s first Human Layer Security platform to automatically secure all human-digital interactions in the enterprise. Today, our filters use stateful machine learning to protect people using email and to prevent threats like spear phishing, accidental data loss, data exfiltration and other non-compliant email activity. To book a demo and learn more about how we can help your organization, click here.
Customer Stories Data Loss Prevention Human Layer Security
Insights on Human Layer Security from Tim Fitzgerald, CISO of Arm
23 January 2020
In case you missed it, on January 22 Tim Sadler, Tessian’s CEO and co-founder, hosted our first webinar of the year which explored the biggest threat to an organization’s security: its employees. To understand the risk of human error in the workplace and how Tessian’s Human Layer Security platform is able to mitigate that risk, Tim S. was joined by Tim Fitzgerald, the CISO of Arm for a live Q&A. Before joining Arm over two years ago, Tim F. served as the CSO of Symantec for over five years. He has a special interest in digital data and human security. Arm is a customer of Tessian’s, and has deployed Tessian Defender,  Tessian Guardian, and Tessian Constructor. Consequently, Tim F. is not just attuned to the security risks associated with employees making mistakes, he understands how best to combat those risks. While you can listen to the full webinar and Q&A on-demand here, below are some of the key takeaways from Tim Fitzgerald. Where does risk really exist? Tim Fitzgerald: “It is very ‘sexy’ in security to talk about big hacking groups and use that as justification to invest in security. And there’s a lot of legitimacy behind that. But the other side of the narrative – which we spend more time on now than nation-state type threats – is how do we not do it to ourselves? Because now we’re more often dealing with avoidable events caused by predictable human error.” “I think, in general, not only should we be talking to our senior executives and boards more clearly about where real risk exists – which for most companies is the human layer – but we also need to be doing more to help these people combat the problem rather than just passing blame.” To err is human, but people are (generally) well-intentioned TF: “I very much chafe at the idea that we think of our employees as the weakest link. It underserves peoples’ intent and how they choose to operate. Rather than that, we try to take a look in the mirror and say ‘What are we not providing our employees to help them avoid these type of scenarios?’” “At Arm, we take the ‘people-are-people’ view. Not that they’re the weakest link; not that they don’t come with good intent; or that they don’t want to be good at their job; or that they take shortcuts just to get that extra moment of productivity. But, actually, everyone wants to do a good job and our job is to arm them with both the knowledge and the tools to be able to keep themselves secure, rather than trying to secure around them.” The role of a CISO is people-centric TF: “I view my job in human security as somewhere between a sociology and a marketing experiment. We’re really trying to change peoples’ behaviors in a moment. Not universally, not their personal viewpoints. But will they make the right decision in this moment to do something that won’t create security risk for us? Evolving that strategy relies not just on how we influence behavior in that moment of time, but actually, can we change their ethos? Can we make responsible security decision-making part of everybody’s job?” “Security is ultimately my responsibility. But, we very much rely on what we consider our extended security team, which is all of our employees. Our view is that they can undo all the good that we’ve done behind them to try to compensate for the risk that normal human beings create.” Security solutions should empower employees TF: “By far the biggest single challenge we have is Arm’s ethos around information sharing. We have a belief – that has proven to be true – that this level of information sharing has allowed Arm to be extraordinarily successful and innovative. There’s no backing up from that, and that represents a huge amount of challenge; that level of information sharing is quite difficult to manage. “Rather than saying people are an intractable problem and therefore we can’t conquer this, if we start thinking about how we can mobilize them as a part of our overall cybersecurity defense mechanism, it causes you to rethink whether or not you’re serving your populous correctly.”
Machine learning enables Human Layer Security TF: “What I liked about Tessian is that it gave us an opportunity to use the ML in the background to try and develop context about whether or not something that someone was doing was either atypical or perhaps just part of a bad process. Either way, we can get a sense of whether or not what they’re doing is causing us risk. It doesn’t require us to be completely prescriptive about what we’re looking for, but it allows us to learn with the technology – and with the people – what normal patterns of behavior look like and, therefore, intervene when it matters and not have to react every time an alarm goes off. “You have all this amazing context of what people are doing on email, which is where people spend most of their time and where most of the risk comes for most organizations. How can we turn this into more than just making sure someone doesn’t fat finger an email address or send sensitive files where they’re not supposed to go? Can we take the context that we’re gaining through how people are using email and create more of those moments in time to connect with them?” Tessian fits into a larger security framework TF: “We have a whole bunch of other mechanisms to protect against traditional insider threats – the people who are really acting against our best interest – but that instance is infrequent and high impact. The person who makes the mistake is high frequency, medium-to high-impact. We were getting hammered on that sort of stuff, which is why we came to Tessian.”
“When used correctly and in a finite environment or a finite data set, DLP solutions are very effective at keeping that data where it’s supposed to be and understanding movement in that ecosystem. When you try to deploy that broadly though…you start to run into the inability of the DLP system to understand where that data is supposed to be. Is this person supposed to have it based on their role and their function? It’s not a smart technology like that. You end up trying to write these very complex rules that are hard to manage.” The future of Human Layer Security TF: “Can we start to mesh together what we know about the technology and the machines with real human behavior? It’ll not only help us find those bad guys in our environments who we know are there, but also to get out in front of people’s behavior rather than reacting to it after it happens. That’s the holy grail of what this could become. To get – if not predictive – at least start leading us toward where we think risk exists and allowing us an opportunity to intervene before things happen.” Want to learn more about how Tessian helps Arm catch and stop accidental data loss with Tessian Guardian and prevent spear phishing attacks with Tessian Defender? Read the case study here.
Customer Stories
Ensuring Data Security under GDPR
02 December 2019
Coastal Housing Group is a not-for-profit social housing provider specializing in community residential properties. The business predominantly operates in South Wales, United Kingdom. In addition to residential properties, Coastal Housing has a robust commercial portfolio that focuses on mixed-use town center regeneration projects. Coastal Housing is protecting 250 employees with Tessian Defender and Tessian Guardian.
Protecting a bustling business Coastal Housing has provided housing opportunities to communities across South Wales since 2008. Mark Elias is Coastal Housing’s IT Infrastructure Manager. He understands how important data security is in the housing sector.  Coastal Housing handles and processes a considerable amount of sensitive information and utilizes multiple, complementary technologies to help keep this information protected. While the organization goes to great lengths to provide staff with the reassurance that they are conscientious about security, the IT team recognized that they could do more. With a growing mobile workforce and data regularly exiting the organization’s directly controlled network, the IT team wanted to see how machine learning could fortify their security stack. Tessian’s offering was exactly what Coastal Housing was looking for.
Staying vigilant under GDPR Tessian integrated seamlessly into Coastal Housing’s layered infrastructure. Tessian was up and running in a short period of time and was very easy for the IT team to understand. Having implemented Tessian Guardian, Coastal Housing can now prevent accidental data loss from misdirected emails, mitigating the impact of human error and helping IT teams control an unwieldy problem. Coastal Housing’s IT team deployed Tessian and educated employees about how the product works quietly in the background. With a low false positive rate, Coastal Housing’s employees liked the fact that when a warning did appear, it provided context on what had happened. Guardian accurately flags mistakes without disrupting their day-to-day workflow. Coastal Housing employees now feel assured that they won’t accidentally send sensitive information to the wrong destinations. In addition to the problem of accidental data loss, Coastal Housing’s IT team are acutely aware of how sophisticated spear phishing attacks are becoming. While employees are being as vigilant as they can be, it’s unrealistic to assume they will be able to spot a threat 100% of the time. Armed with Tessian Defender, Coastal Housing has secured their system from inbound spear phishing threats, protecting the organization from data being pilfered and systems being compromised.
Maintaining security while growing Coastal Housing understands that for security to be effective it cannot be static. As threats evolve, so must the technology designed to protect against them. Being a bustling business, Coastal Housing will continue to adapt and to respond to the ever-changing landscape. The organization will continue to focus on investing in platforms that are capable of doing the same.
Learn more about how Tessian prevents human error on email Tessian is building the world’s first Human Layer Security platform to automatically secure all human-digital interactions within the enterprise. Today, our filters use stateful machine learning to protect people using email and to prevent threats like spear phishing, accidental data loss, data exfiltration and other non-compliant email activity. To book a demo and learn more about how we can help your organization, click here.
Customer Stories
Securing Systems Amid Tight Regulation
24 November 2019
Hill Dickinson is a leading commercial law firm with offices across the UK, Europe and Asia. With 850 employees worldwide, Hill Dickinson delivers advice and strategic guidance to businesses, organizations and individuals, advising on non-contentious advisory and transactional work for all forms of commercial litigation and arbitration. Hill Dickinson’s clients include multinational companies, major corporations, UK and foreign banks and financial institutions, public sector organizations, private individuals and professional bodies. Hill Dickinson is protecting 850 employees with Tessian Guardian and Tessian Enforcer. 
Improving client service with new technology As Director of IT and Operations at Hill Dickinson, Keith Feeny recognizes that the focus on security across the legal sector has increased dramatically over the past five years. Heightened client requirements and a tougher regulatory climate have made it necessary for law firms to take a more proactive approach to security. In particular, Hill Dickinson’s health practice works with some of the largest healthcare providers in the United Kingdom. Ensuring the security of sensitive data like patient records is a top priority. As Keith says, “Having big directories of sometimes quite similar names can increase the chance of an email being accidentally sent to the wrong person.” The need to mitigate these risks led Hill Dickinson to look for security products that wouldn’t restrict normal business, but which could effectively deal with the dangers of human error on email. With that goal in mind, Keith began to consider Tessian as a more intelligent solution.
Facilitating business as usual Hill Dickinson’s main priority when looking for an email security solution was finding a tool that would pose minimal interruption to business as usual. Keith was able to deploy Tessian firm-wide with minimal involvement from his IT team. Keith was particularly impressed with Tessian’s lack of false positives. Unlike other solutions which place a warning on every external outbound email, with Tessian “you’re getting 10 warnings out of 1,000 emails. The advantage of that is when people actually receive the warning, it gets their attention.” After deploying Tessian, Hill Dickinson now has indepth visibility on email security. As a result, Keith can easily surface intelligence on how many potential breaches have been avoided to the Executive and main LLP Boards, which enables strategic decisions to be taken with security in mind. Building a security culture for a mobile workforce Tessian has become a core part of Hill Dickinson’s security infrastructure. With more employees working from home and using personal devices, Hill Dickinson takes the risks of data loss and exfiltration seriously. Integrating with Tessian’s Gateway means that Hill Dickinson emails are covered on mobile devices as well as desktop computers, giving Keith additional peace of mind. Armed with Tessian’s Guardian and Enforcer filters, Keith is confident that Hill Dickinson is in a strong position to mitigate the risk of regulatory, financial and reputational damage caused by human failure on email. Learn more about how Tessian prevents human error on email Tessian is building the world’s first Human Layer Security platform to automatically secure all human-digital interactions within the enterprise. Today, our filters use stateful machine learning to protect people using email and to prevent threats like spear phishing, accidental data loss, data exfiltration and other non-compliant email activity. To book a demo and learn more about how we can help your organization, click here.  
Customer Stories
Defining Customer-First Culture with Email Security
10 November 2019
Webb Henderson are trusted legal and regulatory advisors, delivering intelligent advice and business solutions throughout the Asia-Pacific region and beyond. The firm provides specialist legal advice in the areas of telecoms and media, competition law and regulation, corporate and finance, and disputes. Webb Henderson operates through its offices in Sydney and Auckland, serving clients domestically and globally from these locations. Webb Henderson is protecting 100 employees with Tessian Guardian, Tessian Enforcer and Tessian Constructor. 
Securing data and protecting customers As the partner responsible for Webb Henderson’s technology and security strategy, Ara Margossian believes that staying ahead of constantly changing threats is a principal security challenge for the firm: “Supply chain security has become a fundamental requirement for our clients, particularly those operating in sensitive industries and highly regulated sectors. Our clients are having very specific discussions with us about our security posture and data protection strategies. It’s never been more important that the work that we undertake for our clients is kept confidential and secure.” With clients increasingly seeing security as a top priority, it was important for Webb Henderson to ensure that their own security strategy was taking advantage of market-leading solutions. One of the biggest security risks that law firms like Webb Henderson face is the possibility of sensitive client information being exfiltrated to unauthorized recipients. Law firms primarily deal with unstructured data, making it difficult to solve the problem with rules-based Data Loss Prevention (DLP) solutions. The firm needed a product that would ensure Webb Henderson’s clients’ confidential data remained secure, which is what led the firm to Tessian.
Seamless integration into a layered system One of the firm’s top considerations when deciding to move forward was the intuitive nature of Tessian’s notifications and a positive user experience for employees. For Webb Henderson, it was important that any new technology was integrated smoothly so that the firm’s lawyers could focus on their work, rather than being distracted by new workflows and unfamiliar systems. With a low false-positive rate and minimal maintenance requirements, Tessian was a good fit with Webb Henderson’s firm’s objective of balancing the need for user education and visibility with the need for security to be robust and as unobtrusive as possible. An evolving partnership Tessian now forms part of Webb Henderson’s multi-layered approach to security and provides greater insight and control in relation to the risks faced by the firm from email communications. Using machine learning to anticipate and react to risky behaviors in real time has made a real difference for Webb Henderson. Tessian’s Guardian and Enforcer filters now play a critical role in the firm’s security stack, while Tessian Constructor is being used to add a further layer of protection. With clients increasingly challenging the legal sector on data protection and cybersecurity, Tessian and Webb Henderson plan to continue to work together to mitigate risks that arise from human error to ensure the security and safety of Webb Henderson’s data and its reputation. Learn more about how Tessian prevents human error on email Tessian is building the world’s first Human Layer Security platform to automatically secure all human-digital interactions within the enterprise. Today, our filters use stateful machine learning to protect people using email and to prevent threats like spear phishing, accidental data loss, data exfiltration and other non-compliant email activity. To book a demo and learn more about how we can help your organization, click here.  
Customer Stories
Australia’s Oldest Law Firm Invests in Human Layer Security
28 September 2019
Allens is one of Australia’s leading commercial law firms with offices throughout Australia and 28 international locations through a global alliance with Linklaters. For almost 200 years, Allens has prided itself on providing excellent client service. The firm has worked with many of the world’s leading organizations both within Australia and abroad. Allens is protecting 1,100 employees with Tessian Defender, Tessian Guardian, and Tessian Enforcer. 
Looking for better data security oversight Allens is the oldest law firm in Australia, and has a proud heritage of supporting its clients through important matters. Bill Tanner is the Chief Information Officer at Allens and looks after endto-end IT delivery for the firm across Australia and South East Asian territories. Law firms like Allens receive sensitive company and client data on a daily basis. For Bill, ensuring the firm’s technical stack remains up to date and secure is a top priority. As Bill says, “Allens wants to help our people identify potential threats but also ensure our people don’t inadvertently expose our systems.” Searching for a solution that could simultaneously protect their people from security threats, while building awareness within the workforce as to how threats manifest on email, Allens turned to Tessian.
Mitigating inbound and outbound threats Tessian’s Guardian, Enforcer and Defender filters were seamlessly integrated into Allens’ security stack. After deployment, Bill and his team were able to immediately see the filters’ success in eliminating threats from both inbound and outbound emails. The high accuracy of the Tessian platform meant employees could still be protected while continuing their day to day business without interruption. Mail being sent to the firm has increased 57% over the past six months. Whilst there has been a 74% increase in the volume of mail rejections, this correlated with an 8% improvement in rejection rate. Mail-based attacks continue to rise, and attackers are getting more sophisticated with their techniques. Allens was looking to bolster its existing defences by providing additional context around the potential threats landing in employees’ inboxes. Tessian’s Defender module detects anomalous incoming emails in real time, delivering warnings to employees that both prevent the attack having any impact and educate them as to why the email looks suspicious. To Bill, Defender’s intelligent notifications “provide that context in the moment that is so important for our people.”
Creating a conscious security culture As data security threats continue to threaten the legal sector, it will be vital for firms like Allens to invest in cutting-edge technology to mitigate the risk of data loss and spear phishing attacks, and the potentially disastrous repercussions of data breaches. With Tessian’s filters protecting Allens employees in multiple territories, Allens has increased the protection of the sensitive data held by the firm as it continues to deliver the high standard of service the firm has provided for almost 200 years.
Learn more about how Tessian prevents human error on email Tessian is building the world’s first Human Layer Security platform to automatically secure all human-digital interactions within the enterprise. Today, our filters use stateful machine learning to protect people using email and to prevent threats like spear phishing, accidental data loss, data exfiltration and other non-compliant email activity. To book a demo and learn more about how we can help your organization, click here.
Customer Stories
Preventing Data Exfiltration at a FTSE 100 Tech Company
12 August 2019
Rightmove is the UK’s largest online real estate portal and property website. For over 15 years, the organization’s aim has been to empower the UK’s decisions around property. Rightmove is listed on the London Stock Exchange and is a constituent of the FTSE 100 Index. Rightmove is protecting 530 employees with Tessian Guardian and Tessian Enforcer.
Seeking a seamless security system For David Cray, Rightmove’s Head of Customer Experience and Product Development, making sure the UK’s number one property portal has a proactive cybersecurity strategy is vitally important. Rightmove was searching for a flexible solution to the problem of accidental data loss and unauthorized email activity. David needed a product would work across all systems and devices. Rightmove turned to Tessian for answers. Prompt deployment and threat detection Rightmove was able to quickly and easily deploy Tessian’s Guardian and Enforcer filters across all UK team members. Tessian’s machine learning enabled Rightmove to benefit from minimal disruption to staff and their day-to-day work, while still equipping the organization with best-in-class email security technology. The Guardian filter’s machine intelligence prevents emails being sent from Rightmove employees to the wrong person as a result of human error, while Enforcer identifies and stops sensitive emails from being deliberately sent to unauthorized email accounts. Building an agile security culture Email will continue to remain one of the biggest security concerns for many organizations. By deploying Tessian across the organization, David has taken the necessary steps to ensure that Rightmove is prepared to combat the most advanced email security challenges. Learn more about how Tessian prevents human error on email Tessian is building the world’s first Human Layer Security platform to automatically secure all human-digital interactions within the enterprise. Today, our filters use stateful machine learning to protect people using email and to prevent threats like spear phishing, accidental data loss, data exfiltration and other non-compliant email activity. To book a demo and learn more about how we can help your organization, click here.
Page