What tools do you use for insider threat detection?

Enterprise ApplicationsVendor/Product RecommendationRisk Management
3.3k views16 Comments
Sort By:
Oldest
Senior Director, Technology Solutions and Analytics in Telecommunication2 years ago
There are a variety of tools available for insider threat detection. Some common tools include data leak prevention (DLP) tools, user activity monitoring (UAM) tools, and security information and event management (SIEM) tools. DLP tools help to prevent sensitive data from being leaked by identifying and blocking unauthorized attempts to copy or transfer data. UAM tools monitor user activity to identify anomalous behavior that could indicate an insider threat. SIEM tools provide a centralized platform for monitoring and managing security events. By using a combination of these tools, organizations can more effectively detect and respond to insider threats.
1 1 Reply
CISO in Software2 years ago

I agree with Nathan Hart response on the different tools and techniques he described.

Director, Information Security Engineering and Operations in Manufacturing2 years ago
A combination of tools from Microsoft mostly. 
lock icon

Please join or sign in to view more content.

By joining the Peer Community, you'll get:

  • Peer Discussions and Polls
  • One-Minute Insights
  • Connect with like-minded individuals
Director, Strategic Security Initiatives in Software2 years ago
DLP and SIEM.
Director of Information Security in Energy and Utilities2 years ago
We currently us Microsoft Insider Risk Management tool.  Works well enough for us if you are a Microsoft shop.  Otherwise I've heard good things about Code42
Director of Tech and Cyber Strategy in Finance (non-banking)2 years ago
SIEM with UEBA as well as DLP as automated tools. We also perform manual audits using the logs from our PAM system.

Content you might like

Can you share any tips or lessons learned from your IAM implementation? What would you do differently, if anything?

Identity & Access Management (IAM)Enterprise ApplicationsVendor/Product Recommendation
CISO14 days ago
IAM is arguably one of the most complex and impactful programs in the security stack. Ensure all participating and affected parties are engaged from the program's inception. Get buy-in from management and key stakeholders ...read more
Read More Comments
1.4k views2 Comments

What is your primary deciding factor in adopting enterprise search?

Strategy & ArchitectureCloudEnd-User Services & Collaboration+26 more

TCO19%

Pricing26%

Integrations21%

Alignment with Cloud Provider7%

Security10%

Alignment with Existing IT Skills4%

Product / Feature Set7%

Vendor Relationship / Reputation

Other (comment)

View Results
5.7k views3 Upvotes1 Comment

What best practices for asset management should organizations use to minimize audit risks?

Security Strategy & RoadmapGovernance, Risk & ComplianceRisk Management+1 more
Group Director of Information Security in Banking15 days ago
In the cloud and digitalized world where more and more cloud shared responsibility models are taking away the management and maintenance aspects of hardware and software assets upto the layer of operating system (as in WebApps, ...read more
1
Read More Comments
347 views1 Upvote2 Comments

Does your business have a measurable framework that people or departments must follow when choosing new tools or technologies for your business?

Culture & ValuesVendor/Product Recommendation

Yes, and it is always followed22%

Yes, but it is rarely followed54%

Some departments do, but not across the business14%

No9%

View Results
1.8k views2 Upvotes

What tools or frameworks have you used to visualize cybersecurity risks in a digestible way for the board?

Risk ManagementSecurity Strategy & RoadmapBoard Engagement
CIO in IT Services23 days ago
I used the NIST 800-53 Risk Management Framework. My program is wrapped around the framework, so that way they get to see risks on the registry. They understand the model for scoring risk, and then there's a decision factor ...read more
1
Read More Comments
188 views4 Comments