Reducing Incident Management Noise With Your Own Employees

Posted by Eran Cohen on Feb 17, 2017 11:21:58 AM

Noise. Noise. Noise. Our world is noisy. It's all over the place. Visual noise, physical noise. And then there is the noise which bothers analysts in the security industry. I am referring to the security signal to noise ratio that is only growing and growing because of the evolving techniques, various data sources and the unknown threats that we all want to catch (or is it afraid to miss?). In fact, the elephant has left the room and is now visible to all.

Read More

Topics: Security Skills, ueba, Incident Response

Preempt Announces #SecurityGivesBack at RSA Conference 2017

Posted by Heather Howland on Feb 9, 2017 12:05:34 PM

With the RSA Conference 2017 kicking off next week, the entire Preempt team has been excitedly preparing for it. We are looking forward to participating with the who’s who of security vendors and meeting with top security professionals onsite.

Read More

Topics: Behavioral Firewall, ueba, SecurityGivesBack

The Dangers of Bending the Security Rules to Get Things Done

Posted by Heather Howland on Jan 20, 2017 1:58:56 PM

The other day I was speaking to a good friend of mine. He’s an executive consultant working for a large Fortune 1000 organization. As we are talking I realize that he has access to a lot of highly sensitive information that if exposed could be rather damaging to the company. He was lamenting to me how he needed to get access to some data on one of the servers but IT blocked him from accessing it until he completed a mandatory online “IT Security Awareness” training.

Read More

Topics: User Behavior, Risk, User Risk, Credential Compromise, ueba

How to Apply FBI Insider Threat Warning to IT Security

Posted by Heather Howland on Jan 6, 2017 4:15:27 PM

Last month, Special Agent Scott Mahloch, weapons of mass destruction coordinator for the Chicago division of the FBI spoke at the Food Safety Consortium about how food companies can protect themselves against terrorism by identifying the insider threat and some of the FBI’s initiatives in this area. While the focus of his talk was around protecting the food supply from intentional contamination with chemical, biological, or radiological (CBR) agents, I found that much of the advice on guarding against these types of Insider Threats directly applies to cybersecurity and it would be interesting to share how these tips can be applied in IT security -- not only for food companies, but companies in general.

Read More

Topics: User Behavior, Insider Threats, ueba

Avoiding the Big Data Games of UEBA

Posted by Eran Cohen on Dec 15, 2016 6:21:46 AM

When thinking about some traditional User and Entity Behavior Analytics (UEBA) solutions today, I can’t help but think about a Rube Goldberg machine, an over engineered machine that performs a seemingly simple task.

One of my favorites is  “The page Turner”.   And I’ll admit it, I like playing with these useless contraptions -- and even build them. By the highview count on that video it seems  I’m not alone in enjoying them. But this does make me wonder what this says about us.   Why do we build overly complicated systems to effectively (in a way) complete tasks so inefficiently?

Read More

Topics: ueba, big data

A SWIFT Case to Stop Bank Heists with UEBA Behavioral Firewalls

Posted by Eran Cohen on Nov 17, 2016 3:13:54 PM

Enterprises almost always have users, accounts or processes that run critical business operations to enable smooth operations and ensure productivity. Often, there is a lot of emphasis placed on security, availability and integrity. Regardless of the checks and balances, systems are not infallible. Sometimes this is done because it is perceived to be secured trusted operations, and sometimes it’s based on a planned calculated risk management.

Read More

Topics: Use Case, ueba, SWIFT

How Much Management Do You Need to Dedicate to UEBA? [Part 5 - Blog Series]

Posted by Heather Howland on Nov 11, 2016 4:54:15 PM

In this final blog of the series “A Closer Look Inside UEBA: Top 5 FAQs,” we’re going to discuss what it takes to manage UEBA and how it can make security teams much more efficient and less overwhelmed. 

Read More

Topics: CISO, Security Skills, ueba

How to Get Quick Time to Value with UEBA / Behavioral Firewalls [Part 4 - Blog Series]

Posted by Heather Howland on Nov 4, 2016 8:10:20 AM

This is part 4 of an ongoing series of posts that answer “A Closer Look Inside UEBA: Top 5 FAQs.”  In our last post in the series we talked about the benefits of UEBA solutions. This week let’s take a look at the question that is on the mind of every budget-minded and busy security professional:

Read More

Topics: CISO, Behavioral Firewall, ueba

The “Crying Wolf” Rating and Other Security Investment Qualifiers

Posted by Steve Herrod on Oct 27, 2016 3:50:21 PM

There is a lot of noise in the cybersecurity space with every company trying to differentiate itself by claiming to be the “next big thing”, but so few have risen to the top. And the security market has changed a lot in the past couple years. As a venture capitalist, I often get asked about how I see the market changing and how we cut through the noise to find and fund companies that are doing something truly unique and innovative and that really solves customer problems.

Read More

Topics: CISO, Insider Threats, Security Skills, ueba

Adaptive Security Architecture and UEBA in Gartner's Top 10 Tech Trends 2017

Posted by Heather Howland on Oct 19, 2016 1:59:33 PM

This week at the Gartner Symposium and ITxpo, David Cearley, Gartner Vice President and Fellow discussed the Top 10 Technology Trends of 2017 and their impact on IT and operations over the next 5 years. With cyber attacks showing no sign of waning anytime soon, it’s no surprise that the macro trend of an Adaptive Security Architecture is highlighted again this year. The the report focused more on importance of User and Entity Behavior Analytics (UEBA) as a component of this architecture as well.  

Read More

Topics: CISO, Behavioral Firewall, Adaptive Response, ueba