What tools do you use for insider threat detection?

Enterprise Applications Vendor/Product Recommendation

3.4k views16 Comments

Sort by:

Founder & CISO in Education3 years ago

A mix of Endpoint Detection, logging and monitoring from the IAM and PAM, SIEM, and DLP.

VP of Information Security in Finance (non-banking)3 years ago

There are number of tools that we use to detect insider threats, including but not limited to Splunk, SIEM, and DLP tools.

Director in Construction3 years ago

We focus on the tools with our Microsoft license

Director, Security Operations in Telecommunication3 years ago

We're using several different tools that provide for monitoring of these type activities, these include services available from Microsoft as a part of their Azure/O365 offering, as well as Privileged Access Management tools and 24x7 real-time log monitoring.

CIO/CISO in Healthcare and Biotech3 years ago

We use SIEM as our system of record for collecting/correlating insider threat information, along with data exfiltration protection (DLP/CASB).

Content you might like

When you're looking to overhaul your security awareness and training program (or significantly update it), is audience analysis part of your process?

Yes, always35%

Yes, sometimes but not always55%

No5%

Unsure…5%

View Results

What’s the hardest part about measuring ROI from your AEM implementation?

Lack of attribution visibility13%

Disconnected analytics tools63%

Manual reporting processes14%

No clear success benchmarks11%

View Results

Apart from applying the patches just released, what other mitigation tactics are you using to address the zero-day SharePoint vulnerabilities impacting on-premises servers?

Thoughts on Copilot Vision? Do you think it presents more or less the same security concerns as Recall, even though it doesn’t constantly run in the background?

Does your organisation have a formalised threat hunting programme? If so - what were the key drivers for you in setting one up and what made it successful?

If not - what is stopping you from setting this up?

What tools do you use for insider threat detection?

Sort by:

Content you might like

When you're looking to overhaul your security awareness and training program (or significantly update it), is audience analysis part of your process?

What’s the hardest part about measuring ROI from your AEM implementation?

Apart from applying the patches just released, what other mitigation tactics are you using to address the zero-day SharePoint vulnerabilities impacting on-premises servers?

Thoughts on Copilot Vision? Do you think it presents more or less the same security concerns as Recall, even though it doesn’t constantly run in the background?

Does your organisation have a formalised threat hunting programme? If so - what were the key drivers for you in setting one up and what made it successful?

If not - what is stopping you from setting this up?

What sets us apart?

Take Your Insights On-the-Go

What tools do you use for insider threat detection?

Sort by:

Content you might like

When you're looking to overhaul your security awareness and training program (or significantly update it), is audience analysis part of your process?

What’s the hardest part about measuring ROI from your AEM implementation?

Apart from applying the patches just released, what other mitigation tactics are you using to address the zero-day SharePoint vulnerabilities impacting on-premises servers?

Thoughts on Copilot Vision? Do you think it presents more or less the same security concerns as Recall, even though it doesn’t constantly run in the background?

Does your organisation have a formalised threat hunting programme? If so - what were the key drivers for you in setting one up and what made it successful?If not - what is stopping you from setting this up?

What sets us apart?

Take Your Insights On-the-Go

Does your organisation have a formalised threat hunting programme? If so - what were the key drivers for you in setting one up and what made it successful?

If not - what is stopping you from setting this up?