The Analyst Perspective on SIEM and Security Analytics
Resonance, Validation and Insight Gartner is wrapping up their annual Security & Risk Management Summit just outside of Washington D.C. today. It’s been a week of resonance, validation and insight: Resonance between what we’re hearing from the market and what…
Read More
June 17, 2016
Friend or Foe? A Use Case on How to Detect an Insider Threat
Posted by: Ramy Ahmad
As a cybersecurity pro, you already know that a user is both an organization’s greatest asset and its greatest vulnerability. Users have access to sensitive information and systems with the ability to inflict immense damage to an organization. Insider threats…
Read More
June 10, 2016
Enhanced Windows Security Event Log Collection
The Challenge Generating Actionable Intelligence from Windows Security Event Logs Microsoft Windows—love it or hate it—is near ubiquitous for desktop, laptop and notebooks, and it still makes an occasional appearance or two across all of the servers running on our…
Read More
May 26, 2016
Indefinite Disabled User Detection
The Challenge: Getting Rid of Disabled User Accounts What’s worse than the walking dead in real life? Zombie user accounts that suddenly have activity and intend to do harm to your organization. I have spoken with several organizations in the…
Read More
May 20, 2016
Using LogRhythm as a File Integrity Monitoring Honeypot
The Challenge: Detect Threat Actors Who Already Have Network Access Suppose you wanted to find threat actors lurking on your network—probably a good idea, right? To do this, you need to devise a way to be notified of strange activity.…
Read More
May 18, 2016
Using Deep Packet Analytics to Detect Personally Identifiable Information
The Challenge: Protecting Customers’ Personally Identifiable Information (PII) Businesses today have to ensure that they not only meet their regulatory compliance requirements, but also take reasonable and appropriate measures to protect their customers’ data (including their personally identifiable information). The…
Read More
May 3, 2016