I’ve been working in cybersecurity for a relatively long time, and yet, the scale of damage attributed to the insider threat never ceases to amaze me. Here at Niara, much has been written about the threat posed by compromised users (i.e., attackers posting as authorized users) and malicious insider, both representing the insider threat. But let’s not forget about risk represented by another insider threat - the negligent insider. Findings from a recent study really drive this point home for me:
- 65 percent of office workers use a single password among applications.
- One third of office workers share passwords with co-workers.
This is why Niara’s participation at the Insider Threat 2016 Summit on March 29 and 30 seems fortuitous. Karthik Krishnan, Niara’s VP of product management, is presenting on how innovative behavioral analytics solutions [also known as user behavior analytics (UBA) or user and entity behavior analytics (UEBA)] help organizations stay ahead of all insider threats – even as they evolve or change. And while there is no silver bullet (sorry!), there is plenty that organizations can easily do to defend against the insider threat, now and in the future.
Karthik will go over some very practical items to consider:
- Frame your questions correctly – don’t just ask if machine learning can be performed on a data source.
- It’s not only about the math (i.e., machine learning) – though using machine learning is a basic requirement.
- A single machine learning technique is not the answer.
- Diversity of data matters.
- And what’s the point of detection that doesn’t provide easy access to the context needed to aid investigations?
Karthik will dive deep into the details of the above, and will also walk through a real-world example about how this was used to help an organization identify and investigate attackers operating freely and undetected on one of its most critical corporate servers.
If you’re attending the Insider Threat 2016 Summit, be sure to check out Karthik’s talk on Tuesday, March 29 at 11:20am and learn how to make behavioral analytics work in the real world. We’re excited to be in attendance at this event and see what other security practitioners are considering as they try to better defend against insider threats. Swing by if you can!