IBM Security announced a new app for its IBM QRadar security algorithm that analyzes the usage patterns of insiders, including employees, contractors and partners, to determine if their credentials or systems have been compromised by cybercriminals. IBM QRadar User Behavior Analytics is available for free via the IBM Security App Exchange.
“Organizations need a better way to protect themselves against insider threats – whether they be from inadvertent actors or malicious cybercriminals with access to an organization’s inner workings and technology systems,” said Jason Corbin, vice president of strategy and offering management for IBM Security. “This new app provides analysts with the ability to quickly pivot by using existing cybersecurity data to see the early warning signs that are often buried in suspicious user activities, ultimately helping them more consistently address breaches before they occur.”
IBM QRadar User Behavior Analytics solution creates a baseline of normal user behavior for this employee and detected a significant deviation. The upgraded solution employs data from customers’ existing QRadar investment giving them a single platform to analyze and manage security events and data.
The solution also includes a prioritized Behavioral Analysis Dashboard, intended to help analyst gain better visibility and understanding of actions that lead a user to open up a malicious document or how they gained escalated privileges.
For more information, please visit www.ibm.com/security.