The company, the second largest telecommunications provider in South Asia with an annual turnover of $5.5 billion, discovered that its tender process was undermined by stolen data.

Lost data costs
money and reputation

An $85 million contract had been awarded to Alcatel-Lucent as the result of confidential information from a bribed official. This was no one-off incident. The French IT company had admitted multiple instances of this behavior and was fined $137 million by a United States court for its actions in Malaysia and other countries.

The bribery incident led to substantial changes at Telekom Malaysia(TM). “Before the scandal hit, they really had no data handling procedures,” points out Mitthiran Raman, founder of Safetica distributor Iconic Innovations. “Their tender room was a long table with open files, laptops everywhere, no monitoring – even vendors could come in.”

Challenge: Creating a leak-proof office

In response to government demands that TM improve data handling standards, the company responded with plans for the Telekom Malaysia Tender Evaluation Centre(TMTEC), a locked-down office with the latest desktop and data security systems for processing confidential tenders.

The future location of TMTEC was a given: It would be sited on the 50th floor of the TM building in Kuala Lumpur with a dedicated elevator, controlled access, and individually checked-in employees. But the data control system was less clear. The tender called for a data loss prevention (DLP) solution to be installed on nearly 90 employees’ computers, use of encrypted flash drives, and document storage on a secure intranet.

Nimble approach to problem solving

TM invited its registered suppliers to compete in the tender and received bids from industry leaders such as Symantec and IronKey. Safetica participated via its distributor Iconic Innovations and their partner firm Privasia Technologies.

“We went through every clause and requirement in the RFP (Request For Proposal) and showed them how Safetica really exceeded their requirements with its 360 degree DLP approach,” states Mitthiran. “We thought ‘lets give them more than just a secured thumbdrive’.”

These fast response times and operational flexibility helped Iconic Innovations implement the project despite delays due to changes in Project Timeline. “It was only after we were announced as the bid winner that they finalized the network architecture and workflows,” adds Mitthiran. “It’s good to be small and nimble.”

Solution: Safe data without expensive hardware

With Safetica, Iconic Innovations was able to beat back competitors offering expensive hardware or a DLP addon to an antivirus solution. The winning bid incorporated Safetica software with 86 flashdrives, one console in the TMTEC secretariat, and a management server and a database server residing at an external TM data center 30 km away.

The new DLP solution has employees daily checking in at the TMTEC secretariat, with each receiving a computer and an encrypted flashdrive to use as their working space. At the end of the day, the secretariat checks the hardware back in, uploads the documents to a secure server, and shreds the data on the flashdrives ahead of the next day.

Safetica substantially lowered the cost of lost data for TMTEC. “It usually costs around $400 for each secure thumbdrive, and with 86 of them – someone’s going to lose it. But with Safetica, any ordinary USB flash drive can be encrypted. This was the real deal maker. Even in training, they lost four of them,” remembers Mitthiran.

Successfully implementing the DLP system at the Telekom Malaysia Tender Evaluation Centre is a proof that Safetica is a great alternative to enterprise DLP solutions for its to quick deployment, easy maintenance and great value for money even for large organizations.

  • created leak-proof office with Safetica Data Loss Prevention solution
  • monitors and controls access to sensitive documents without costly hardware
Dita Eckhardtova

Next articles

Krakowski Bank Spółdzielczy Mitigates Insider Risk through Employee Awareness and Education

Krakowski Bank Spółdzielczy further strengthened the security of the data collected by the bank by implementing a DLP solution and empowering their employees.

Concept Medical understands their data flow and can assess their productivity thanks to Safetica

The research company Concept Medical wanted to fulfill their legal obligations, have an overview of their sensitive data flow, and get insight into their productivity.

Franco Compania Naviera meets ISO 27001 requirements

The Greek company Franco Compania Naviera is one of the most respected in traditional shipping management. By implementing Safetica, the company can now better monitor employee compliance with company policies, fulfill ISO 27001 requirements, and monitor sensitive information within the company.