Rule Type

  1. Select one of the following rule types:
    • Messages containing financial information: Detect and take action on messages containing credit or debit card information. This protects sensitive data and helps to meet compliance requirements such as those defined in Payment Card Industry (PCI) and Sarbanes-Oxley (SoX) regulations. This rule uses Sophos Content Control Lists (CCLs), which you can configure further in the "Rule Type" section of the wizard, if Enable advanced policy options is selected.
    • Messages containing personally-identifiable information: Detect and take action on messages containing personal information like addresses, phone numbers, or email addresses. This protects sensitive data and helps to meet compliance requirements, such as those defined in the Health Insurance Portability and Accountability Act (HIPAA) regulations. This rule uses Sophos Content Control Lists (CCLs), which you can configure further in the "Rule Type" section of the wizard, if Enable advanced policy options is selected.
    • Messages containing attachments with confidential document markers: Detect and take action on messages containing attachments that have been marked as 'confidential'. This CCL contains several specific keywords, including "Confidential" and "Secret." Attachments that contain these keywords are detected when this list is applied. This rule uses Sophos Content Control Lists (CCLs), which you can configure further in the "Rule Type" section of the wizard, if Enable advanced policy options is selected.
    • Messages matching specific Sophos Content Control Lists (CCLs): Detect sensitive data such as credit card numbers, social security numbers (SSNs), personally identifiable information (PII), etc, using Sophos Content Control Lists (CCLs). Sophos CCLs are XML-based descriptions of structured data. They are managed and updated by SophosLabs to provide an easy and effective way to address data leakage prevention (DLP) and other data protection concerns. Use standard SophosLabs-managed CCLs or import custom CCLs created in Sophos Enterprise Console.
    • Messages matching specific words or phrases: Search for keywords in messages using keywords or regular expressions. Keyword lists are often used for data leakage prevention, detection of inappropriate behavior, etc.
    • Messages containing certain types of attachments: Detect certain types of files attached to messages. This type of list is typically used for restricted or allowed attachment lists. Both the file extension and the actual file type as reported by the Sophos Anti-Virus Engine are used to detect the attachment file type.
  2. [Optional] Select Enable advanced policy options to make all additional wizard options available. Certain steps in the wizard are grayed out, according to the selected rule type.
  3. Click Next.