Loading…
This event has ended. View the official site or create your own event → Check it out
This event has ended. Create your own
View analytic
Thursday, January 12 • 11:00am - 11:30am
Incorporating Network Flow Analysis Into an Insider Threat Program

Sign up or log in to save this to your schedule and see who's attending!

Tweet Share

In recent years, many organizations across government, industry, and academia have recognized the need to build an insider threat program (InTP) to protect their critical assets. Insider threat programs fuse information from across traditionally stovepiped portions of organizations (such as HR, IT, and physical security) to identify technical and behavioral activity of concern. In this presentation, we will discuss how modern insider threat programs, work, what they’re designed to prevent, detect, and respond to, and how Netflow analysis can (and should be) incorporated into an insider threat program.

Speakers
avatar for Dan Costa

Dan Costa

Technical Solutions Team Lead, CERT Division, Software Engineering Institute
Dan Costa is the Technical Solutions Team Lead for the Enterprise Threat & Vulnerability Management team in the CERT Division of the Carnegie Mellon Software Engineering Institute. Dan designs, develop, and transitions tools, algorithms, and exercises that enhance organizations’ abilities to detect, prevent, and respond to insider threats. Dan has extensive experience evaluating insider threat programs, assessing organizations&rsquo... Read More →

Incorporating Network Flow Analysis Into an Insider Threat Program pptx
Thursday January 12, 2017 11:00am - 11:30am
Great Room V-VIII 7450 Hazard Center Dr.
  General Session, Insider Threat

Attendees (22)