Global cybersecurity leader Forcepoint™ announced today that its latest offering, SureView® Insider Threat, a powerful, proven security tool that accelerates companies’ efforts to prevent data theft and loss from hijacked systems, rogue insiders, stolen credentials and negligent end users is now available in Philippines. SureView Insider Threat lets security professionals see early warning signs of abnormal behaviors, capture a video record of desktop activity and intervene before sensitive data gets breached or stolen.
Now that it is available, SureView allows companies in Philippines to spot risky behavior and activity across their enterprises, delivering better security and increased regulatory compliance while respecting privacy. For nearly a decade, technology in SureView Insider Threat has served U.S.-based enterprises and government agencies in detecting and responding to insider threats. It was a core technology transferred from Raytheon to Forcepoint when the company launched.
Negligence by ordinary employees is the number one cause of insider threats, and whether malicious, accidental or hijacked, threats inside the network are far more harmful than outside attackers. On average, external cyber criminals can operate undetected for 170 days, but insiders escape detection for 259 days. Because insiders have more time to operate and better insight to where valuable data is stored, they cause far more damage per incident: the 10 percent of total incidents attributed to insiders are responsible for more than half of stolen data. On average, a data breach costs an enterprise $3.8 million, yet despite the greater risk posed by insiders, the majority of security spending remains focused on external threats.
How SureView Insider Threat Works
SureView Insider Threat allows organizations to identify and stop insider threats through an objective, rigorous process of verification that captures all relevant data while respecting user privacy. SureView technology connects the dots, capturing human behaviors arising from carelessness, lack of training or malicious intent that may be warning signs of an impending breach.
SureView Insider Threat identifies risk by baselining “normal” user behavior. The technology then recognizes deviations from the norm, such as a change in data access, working hours, email activity or copying files from network to desktop. SureView can also spot deviations in activity at the endpoint which may indicate a different person using stolen credentials or a system hijacked by malware. These risk indicators serve as warning signs that may be investigated further.
Forcepoint features DVR-like video capture and playback of end user desktop activity for both Windows and Mac OS endpoints. Video can provide insight into the possible motivations of suspicious behaviors before they become problems, such as employees creating back doors or stockpiling data. For negligent users, video playback can provide a valuable training and education tool. For malicious insiders, the forensic-grade record provides attribution that is admissible in a court of law. It can even help absolve innocent users whose machines have been hijacked and are silently performing actions behind the users’ backs.
SureView Insider Threat integrates with Forcepoint’s Data Loss Prevention (DLP) solution, a Gartner Magic Quadrant leading product. This powerful combination provides user behavior context around inappropriate attempts to transfer sensitive data, enabling faster and more targeted remediation.
1,616 total views, 9 views today