FloCon 2017 has ended
Back To Schedule
Thursday, January 12 • 11:00am - 11:30am
Incorporating Network Flow Analysis Into an Insider Threat Program

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

In recent years, many organizations across government, industry, and academia have recognized the need to build an insider threat program (InTP) to protect their critical assets. Insider threat programs fuse information from across traditionally stovepiped portions of organizations (such as HR, IT, and physical security) to identify technical and behavioral activity of concern. In this presentation, we will discuss how modern insider threat programs, work, what they’re designed to prevent, detect, and respond to, and how Netflow analysis can (and should be) incorporated into an insider threat program.

avatar for Dan Costa

Dan Costa

Technical Solutions Team Lead, CERT Division, Software Engineering Institute
Dan Costa is the Technical Solutions Team Lead for the Enterprise Threat & Vulnerability Management team in the CERT Division of the Carnegie Mellon Software Engineering Institute. Dan designs, develop, and transitions tools, algorithms, and exercises that enhance organizations... Read More →

Thursday January 12, 2017 11:00am - 11:30am PST
Great Room V-VIII 7450 Hazard Center Dr.