Challenges and Objectives
The Israeli law firm Geller Han Markovitch handles highly sensitive information, including
financial data, legal documents, and personally identifiable information (PII). Ensuring data
protection, auditability, privacy compliance, and secure collaboration with external parties
is therefore critical.
A key operational challenge involved the firm‘s document exchange process with external
legal delivery providers (“messengers”). Legal documents were routinely transferred outside
the organization, physically delivered, signed by third parties, and then returned together
with proof-of-delivery documentation. This workflow relied heavily on manual handling,
email exchanges, local file storage, document scanning, and administrative coordination.
While the process was functional, it depended largely on trust-based operational workflows
with limited technical enforcement, creating risks around data protection, accountability, au-
ditability, and process efficiency. Administrative staff spent considerable time coordinating
deliveries, tracking document status, scanning returned materials, and managing related
communications.
At the same time, an endpoint security assessment conducted by ARMOR360 revealed a
significant number of unauthorized and unmanaged applications within the environment.
Many of these applications were completely unknown to management and represented
substantial Shadow IT exposure, increasing both operational risk and the organization‘s
attack surface.
Based on these findings, the organization defined the following objectives:
❱ Eliminate Shadow IT exposure
❱ Allow only approved business applications
❱ Secure sensitive external collaboration workflows
❱ Improve auditability, visibility, and accountability
❱ Reduce manual administrative workload
❱ Preserve usability and operational continuity
❱ Align privacy, security, compliance, and operational requirements
The overarching goal was not only to strengthen security controls, but to establish an
enforceable operational model that combines security, privacy, compliance, and
business efficiency without disrupting daily operations.
Selection Process and Decision for DriveLock and idgard
The organization required a solution capable of enforcing strong security policies while
maintaining usability and operational continuity. A key requirement was the ability to
implement preventive controls without introducing additional friction for employees,
administrative staff, or external partners.
Following the assessment and workflow analysis performed by ARMOR360, the combina-
tion of DriveLock and idgard was selected to address both the technical security challenges
and the underlying process weaknesses.
Key decision factors included:
❱ Strict control over application execution through allow-listing
❱ Full visibility into the existing application landscape
❱ Strong enforcement combined with operational usability
❱ Secure and structured external collaboration workflows
❱ Comprehensive auditability and traceability
❱ Support for privacy and compliance requirements
This combination enabled the organization to address security gaps, reduce operational risks, and modernize critical business processes through a unified approach.