
Key Stats:
- 100+ employees protected by Nightfall
- 80% of issues are automatically remediated by Nightfall
- 30 minutes to fully deploy Nightfall and see real violations immediately after installation
- Zero backlog thanks to Nightfall’s immediate altering and remediation options
- 27+ hours saved monthly on manual investigation
- 36% improvement in data hygiene with Nightfall
The Problem: Gaining Control Over Sensitive Data in a Fast-Paced Environment
Nova Credit operates in the fintech space, handling sensitive information as part of its core business. As a growing company, ensuring data security across their collaboration tools and endpoints became increasingly critical. Adam Davis noted that a primary driver was a requirement from their largest customer to implement robust data loss prevention (DLP).
Previous experiences with other DLP tools, especially for email were also unsatisfactory, often returning inaccurate results with excessive noise and user fatigue. The team needed a solution that offered accurate detection, seamless integration, and effective control without impacting productivity.
Use Case #1: Accurate PII Detection Across SaaS Apps (Gmail, Google Drive)
Nova Credit also needed reliable DLP for other critical SaaS applications like Gmail and Google Drive. Their previous email DLP solution suffered from poor accuracy. “The other DLP solution we were using for email wasn't that great,” Adam says. “It was like a blunt hammer. It wouldn't catch the things that Nightfall did catch. It was so inaccurate it became an annoyance, and users stopped paying attention to it.”
Nova Credit required a DLP solution with a high degree of accuracy, leveraging sophisticated detection (like Nightfall's AI-powered detectors) to correctly identify PII and other sensitive data types, minimizing false positives and ensuring real risks were caught.
Use Case #2: Extending DLP Coverage to Endpoints for Comprehensive Protection
While Nova Credit had already implemented controls like blocking USB drives, data exfiltration risks remained, particularly network-based transfers from company endpoints. Stringent customer requirements meant that Nova Credit needed to extend their DLP strategy to include agent-based endpoint monitoring.
“When one of our customers asked us to have an agent, we immediately went to Nightfall,” says Adam. “We know and trust this solution. Every time we need to expand our DLP needs, we just keep coming back.”
The Solution: Unified, Accurate, and Efficient DLP Managed Directly in Slack
Benefit #1: Unified Visibility and Control Across SaaS and Endpoints
Nightfall provided a single pane of glass, managed via Slack, for monitoring data movement across Slack, Gmail, Google Drive, and macOS endpoints. The switch to a centralized console provided wider visibility and introduced efficient actioning for Nova Credit’s security team. “With our systems, we only allow a very select few people to have access to sensitive information,” says Adam. “Even with that strict control, we still had unknown unknowns where we couldn’t see all information users were sending through insecure means. We didn't have a way to redact those actions. Nightfall has become key for us by empowering us to catch all these actions, intentional or unintentional."
Benefit #2: Radically Streamlined Incident Response via Slack
The ability to manage the entire alert lifecycle within Slack channels transformed the team's efficiency. "We wanted a tight integration with Slack so we could take action on incidents directly in Slack,” says Adam. “We can redact, block, or do anything right inside Slack, and we don't even need to log in. It makes it really convenient for us, because we can resolve these incidents anywhere and on any device. Even on our phones, we can see alerts for different types of events and get context on what’s a real threat. The ability to do everything from a workspace that we're already using was super important."
The team no longer has to spend time on portal logins and has drastically increased their incident response times.
Benefit #3: Proactive Endpoint Security Leads to Discovering (and Resolving) New Risks
Nightfall’s macOS agent provided crucial visibility into data movement from endpoints. Discovering the firewall issue via a Nightfall endpoint alert could have been a fire drill without a strong DLP solution to help the team triage and manage the issue. Adam pointed out that this incident provided them with valuable learning, saying, “We learned that other security controls could be broken. This is important knowledge that led to us asking if there were security faults in something else.”
Benefit #4: Optimized Security Team Efficiency
With alerts flowing into Slack and immediate remediation possible, Nova Credit eliminated alert backlogs. “Our security team efficiency is exceptionally high with Nightfall,” Adam says. “We no longer feel overwhelmed by alerts because now we can address them immediately as they come in. We resolve issues within minutes.”
The Result: Robust Data Protection with Exceptional Efficiency
Implementing Nightfall AI allowed Nova Credit to replace ineffective, disruptive controls with a sophisticated, accurate, and efficient DLP program. They gained comprehensive visibility across critical SaaS applications and macOS endpoints, fulfilling customer requirements and significantly strengthening their security posture.
Nova Credit sees Nightfall as an essential part of their security stack, a tool that “just works” and provides fast, effective support when needed. They continue to rely on Nightfall as their go-to solution for DLP needs.