Protecting Data in an Era of Advanced Threats

Retailers and consumers use technology via multiple devices and channels. This means that an immense amount of confidential data - from POS transactions, server log files, social media, mobile devices and other sources—is being generated and stored; including financial and legal records, employee information, customer credit card numbers and much more. In a climate of advanced cyber threat, all of that information is very vulnerable to attack.

According to Cisco's 2017 Annual Cybersecurity Report, 1 in 3 retailers have already suffered revenue losses as a result of a cyberattack, and retail organizations perceive targeted attacks as the greatest risk facing their business.

Endpoint devices form a gateway into any retailer's IT infrastructure. So your company's security strategy should start with securing end-user devices - whether they are tablets used in-store or workstations in an office. Look for devices that offer data protection throughout the lifecycle with built-in security features and services, including hard drive encryption, online data backup and more:

User authentication: Biometric fingerprint or IR (infrared) cameras improve security and enhance the user experience.

Encryption: Enable full-drive encryption at the factory to save IT time when deploying devices. Alternatively, manually enable Microsoft Bitlocker on devices equipped with a Trusted Platform Module (TPM) to encrypt data.

Online Data Backup (OLDB): This next-gen data management solution allows enterprises to securely store confidential information in the cloud with a simple, automatic backup process. It’s quick to set up, requires no additional administrative overhead, offers military-grade security, and is much more affordable and reliable than on-premises solutions. Access multiple point-in-time copies of data, ensuring you can recover data from any form of cyber attack or accidental data loss.

Remote Secure Erase: Remotely wipe a device in the event it is lost or stolen. Using Intel® Active Management Technology, an IT administrator can erase all data on a system even if it is asleep or shut down, or the OS image is corrupt. This feature also integrates with many common IT management consoles.

Containerization: Isolated virtual containers protect against malware gaining access to devices and data. They're typically deployed on smartphones and tablets through mobile device management (MDM) or mobile application management (MAM).

Protection against snooping: Privacy filters fit to new and legacy device screens help prevent others from seeing confidential information.

Port protection: Port security features help protect against physical theft of data via USB and other access ports by disabling or otherwise requiring authentication for their use.

Keep your drive: Typically, under the terms of manufacturer device warranties, when a defective part is replaced, the old component becomes the property of the vendor. A "keep your drive" service allows you to keep your drive(s) and dispose of business data on your terms, improving data security and ensuring compliance with data privacy and retention requirements, as well as mitigating civil liability risks associated with data breaches.

Protecting Data in an Era of Advanced Threats

Just 52% of retail organizations consider their security infrastructure up-to-date and upgraded with the best technology tools, and only 61% strongly agree that they are able to maintain full compliance with payment card industry (PCI) security standards.

Cisco 2017 Annual Cybersecurity Report


  • Many of our devices have multiple security features to protect user identities, devices and the data on them. Ask us today about our multi-factor authentication, encryption and other security features.
  • Our range of screen privacy filters fit to new and legacy device screens, helping prevent others from seeing confidential information.
  • Lenovo’s Online Data Backup (OLDB) solution enables enterprises to securely store confidential information in the cloud with a simple, automatic backup process.