SOURCE: Tizor Systems

January 30, 2008 08:57 ET

Tizor Launches Discovery Service to Help Corporations Locate Sensitive Data and Identify Risks

Insight Into Potentially Dangerous User Behavior With Data Improves Enterprise Compliance and Security Initiatives

MAYNARD, MA--(Marketwire - January 30, 2008) - Tizor Systems, a leading provider of enterprise data auditing and protection solutions for the data center, today announces the Tizor Discovery Service. This service, which includes a risk assessment scorecard, helps enterprises locate sensitive data assets, identify risks associated with current operating practices and develop plans to mitigate those risks. These activities are key to complying with regulations such as the Payment Card Industry (PCI) Data Security Standard and the Gramm-Leach-Bliley Act (GLBA).

Most companies have sensitive information scattered across the enterprise. Customer information (credit card numbers, Social Security numbers), employee information (SSNs, addresses, salary and medical information) and operational information (financial data, IP) can reside in databases and file shares unprotected. Regulations such as PCI, GLBA, SOX and the Personal Data Privacy Act of 2007 require companies to protect data determined to be private. However, most companies are unable to address this requirement because they don't have the tools to find and classify private data. This lack of visibility into critical data assets leaves companies exposed to significant risks such as data theft, data breaches and unapproved data access.

The Tizor Discovery Service uses Mantra data activity monitoring technology to automate the process of discovering where data is located and how it is being used. Data discovery pinpoints the location of data such as credit card and Social Security numbers stored in both production databases and on file shares in spreadsheets and word documents. Data Activity Monitoring determines the usage patterns and risk profiles for all users and applications that access critical data. The service includes a risk assessment report with an overall risk rating. Tizor consultants work closely with client companies to review the findings of the risk assessment and develop remediation plans.

Each Discovery Service client receives an executive summary and detailed report covering:

--  Where PCI, GLBA and other sensitive data is located
--  Who is accessing critical data assets
--  What activities privileged users are conducting
--  Incidents of suspicious user behavior
--  When failed transactions and other high risk activity is occurring
--  What steps to take to mitigate or eliminate the risks

The Mantra data activity monitoring system is in use at Fortune 500 companies and is recognized as a leading technology by industry analysts. "Tizor Systems is a Leader in the enterprise database auditing and real-time protection market because it provides strong support for alerting, audit and compliance reporting, performance, policy administration, the discovery of private data... Tizor's is one of the few products that have the ability to audit both relational databases and unstructured data residing on file servers and in mainframe applications. This broad support enables enterprises to implement a unified data auditing and protection solution across the enterprise." (The Forrester Wave: Enterprise Database Auditing and Real-Time Protection, Q4 2007, Forrester Research, Inc., October 2007)

"Many of the organizations that we speak with are forthcoming about the fact that they do not know where all their sensitive data is, nor do they have a baseline on how that data is being used," stated Joel Rosen, president and CEO of Tizor. "Such information forms the foundation for meeting PCI and other regulations. If you don't know what you've got and what's happening with it, it's pretty near impossible to manage it."

Tizor Discovery Services are available immediately. For more information visit or call Tizor at 800-231-8224.

About Tizor

Tizor provides the world's largest companies with the only enterprise data auditing and protection solutions capable of monitoring, reporting and alerting on all critical data activity across the enterprise data center -- databases, file servers and mainframe applications. Tizor's global enterprise customers include financial institutions, insurance companies, retailers, manufacturers, healthcare providers and airlines, among others. These companies rely on Tizor's Mantra solutions to protect critical data assets, detect data breaches and provide data-related compliance, including SOX and PCI.

Headquartered in Maynard, Massachusetts, Tizor is a member of IBM's Data Governance Council and the PCI Vendor Alliance. Visit Tizor's Website at or data auditing blog at

Contact Information