ITAR Compliance using FileCloud

April 21, 2020

FileCloudfor ITAR is cloud-agnostic, meaning you can self-host it on your own IT infrastructure, or choose to utilize our software services. FileCloud for ITAR cloud service is hosted in AWS GovCloudand fully managed by U.S. citizens or permanent residents, maximizing accountability.

ITAR Compliance for File Sharing & Management with FileCloud

ITAR provides a set of government regulations dictating how to prevent the distribution of defense items and services outside the US. ITAR compliance makes it compulsory for companies to monitor and control inbound and outbound network traffic. FileCloud not only provides high security but also provides audit logs to see who accessed the cloud and for what purpose. Build a robust ITAR compliant document management and access control solution with FileCloud.

If a company fails to comply with the ITAR, it can face civil and criminal penalties. FileCloud Server is a powerful file sharing solution that provides tools for security, document management, data leak prevention, content classification, and private file sharing required to fulfill cybersecurity requirements for ITAR compliance.

FileCloud Supports ITAR Compliant File Sharing

FileCloud for ITAR is a hyper-secure, on-premises file management platform that offers file storage, access, and data governance. Custom-tailored specifically for organizations that deal with ITAR and EAR regulated data, FileCloud offers multi-layered data security, governance, and advanced record-keeping capabilities.

FIPS 140-2 Encryption

FileCloud can be run in FIPS mode, a specific license that enforces FIPS 140-2 compliant encryption for files stored at rest and in transit.

enable FIPS in FileCloud

End-to-end Encryption

FileCloud's encrypted file sharing provides security measures to safeguard the files you store and share within or outside the cloud. FileCloud provides end-to-end encrypted file sharing, auto-scanning of files when uploaded, and ransomware protection.

Watermarked Previews

Admins can enable custom watermarks for shared files in the preview pane, identifying who (user) has accessed the file. Other metadata that can be configured as part of a watermark includes IP address, date stamps, and means of access.

Secure Private Access

Admins can also remove public access or shares of files, ensuring no unauthorized personnel or software can access sensitive or confidential documents. FileCloud offers private-only, time-limited, view-only, password-protected, and Zero Trust sharing permissions.

Zero trust dialog box in FileCloud UI

Robust Login Security

FileCloud can enable Two-Factor Authentication for users. The following options are available: Email based security code TOTP (Google Authenticator or similar TOTP code generators), DUO Security, SMS OTP Security Codes, and SMS OTP Security Codes for specific user agents. The 2FA method can be selected by Policy Group (Settings / Policies) which enables FileCloud to use different methods of authentication for different groups of users.

Smart Data Leak Prevention

Data leak prevention (DLP) is facilitated in FileCloud through a rules-verification system that enables administrators to closely control the degree to which users can access, edit, download, and transfer their organization’s files and folders. While DLP rules can be useful for many different kinds of data, it can be especially critical for the secure handling of Personal Identification Information (PII) and Confidential Unclassified Information (CUI).

Image of FileCloud Online UI, DLP Rule Builder

Record-Keeping

The ITAR requires that records be maintained for five years from the expiration of the export license or other approval. In the case of an export license exemption, this would be from the date of the transaction. FileCloud for ITAR offers complete content lifecycle management with flexible retention and archival schedules to meet ITAR record-keeping requirement

Audit Controls

All FileCloud activity is recorded in unchangeable audit logs, which can be viewed and exported from the Settings / Audit section.

Smart Content Classification

The Content Classification Engine (CCE) is a rule-driven content classification system that enables the generic labeling of files with metadata. This labeling enables key operations within FileCloud such as contextual file search and Data Leak Prevention.

Remote Wipe

In addition to blocking a client account from accessing the environment, administrators can also prevent specific devices from logging in, as well as wipe FileCloud folders on the remote device. If the client is connected, the block and remote wipe will occur and the client will automatically log out.

Enable Password Guidelines

At any time a password is created or updated before the password is accepted, FileCloud Server checks the suggested password against the US NIST Password Guidelines list.

Hyper-secure EFSS Solution for Enterprises Subject to ITAR

FileCloud Server is a robust platform packed with compliance-supportive features and functionalities that specifically support cybersecurity requirements within the ITAR. Self-host FileCloud Server on-premises or deploy within a private cloud or as a network overlay to enable easy, remote file access and sharing while maintaining total control over data.

Interested in learning more about FileCloud for ITAR Compliance?

Register for a Free Trial | Watch On-demand Demo | Contact a Sales Engineer

By Team FileCloud