Heightened Enclave Protection for Sensitive DoD Legal Data
The Challenge
A DoD legal entity had unique confidentiality and data protection needs to maintain client-attorney privilege at multiple classification levels. This drove a requirement to provide enhanced security controls to protect data and assets from opposing counsel and external entities, including parent IT organizations.
How We Helped
Designed a comprehensive zero-trust based enclave protection solution leveraging Cisco virtual firewalls, VMware virtualization, Vormetric data-at-rest encryption, Juniper SSL VPN (always-on) data in transit encryption, and LogRhythm for security event collection and analysis.
Implemented the Vormetric Data Security Platform (now Thales) to encrypt data hosted in an externally managed virtualization environment and deployed Juniper Pulse Gateway SSL VPNs to encrypt data in transit.
Utilized Riverbed SteelHead WAN Acceleration to accelerate and optimize performance transferring data over satellite links between the National Capital Region and Naval Station Guantanamo Bay.
Further enhancing the value of this design is that it can be applied to any hosting environment whether local physical, local virtual, private, or commercial cloud.