Insider Threat Prevention

Impeding external attackers during a breach, whether a system turned bad, exfiltrating data, or malfunction.

Service Overview: 

The insider threat is when legitimate users of a system turn bad and do harm. Whether they are exfiltrating data or causing malfunction, because they are legitimate users of a system it makes it very difficult to catch them. 

Insider Threat Prevention also works very well at impeding external attackers during a breach. 

Service Details: 

In order to prevent their activity, we work with you to fine-tune each user's privileges and permissions to ensure that they have just enough to do their job.  We also identify information which might attract a rogue user and apply measures to ensure it can only be accessed by authorised staff.

In order for Insider Threat Prevention to be fully effective, a defence in depth strategy is required which goes beyond just the technical measures which prevent sensitive data exiting a network boundary.

This includes but is not limited to deterrence and heuristical checks which detect deviations from a user's usual pattern of life.

Want to book a service?
See a job opening you like?
Want something bespoke?

© Computer Network Defence Limited 2019