Blueshift Data Defense is a SOC-managed data protection solution built on Cigent's Data Defense software, designed to prevent unauthorized access to files on endpoints, network shares, and external media. The product enforces zero trust principles at the data layer using risk-based, multi-factor authentication (MFA) to control file access. Files remain encrypted and inaccessible to unauthorized users, processes, and malware — including ransomware — regardless of whether the system is compromised. Key operational modes include: - Always-on protection: MFA is required at all times to access protected files. - Dynamic (Shields Up) mode: MFA is triggered by a detected threat condition, such as AV being disabled, suspicious RDP port activity, or a SOAR-triggered alert. File protection policies can be applied by file type (extension) or location (folder), and cover files stored locally, on network file shares, and external media. Files remain encrypted when synced to cloud storage or shared externally. The Blueshift 24x7 SOC manages the product centrally, allowing administrators to remotely lock down files across individual machines, groups, or the entire organization during a security incident. Additional capabilities include hardware-encrypted safe rooms using Cigent Secure SSDs or TCG Opal 2.0 self-encrypting drives, and FIPS-validated cryptography for protecting Controlled Unclassified Information (CUI). The product also includes BitLocker Manager, a cloud-based console for managing Windows BitLocker encryption, covering deployment, key management, recovery, Active Directory integration, and compliance reporting. When combined with Data Defense, it adds post-boot, file-level MFA protection on top of BitLocker's full-disk encryption.