Securonix Security Analytics Cyber/Insider Threats

How would you assess the solution's behavior analytics in terms of detecting cyber and insider threats?

Greg Stewart
Director of Intellectual Property Protection at a pharma/biotech company with 1,001-5,000 employees
In terms of detecting cyber and insider threats, my primary focus is insider threats. It's excellent at that. The ability for the system to detect events is incumbent upon knowing your own threats and risks and predefining those, to a large extent. If you know your environment well enough to make up your own rules and define exactly what a risk or threat means in your organization, it's outstanding at detecting them. While my primary focus is insider threats, one of the reasons we like SNYPR more than other brands is the entity analysis piece. We have picked up unnamed entities - an infected machine or a machine that had been taken over through a fishing attempt and had a bot installed on it. We have been able to detect malicious software with the system without even predefining the threat or risk model.
View full review »
Leader - Investigations, Insider Threat at a tech services company with 1,001-5,000 employees
The solutions behavior analytics in detecting cyber and insider threats are good. The tool does what it's supposed to, as long as the data coming in is accurate.
View full review »
Chief Technology Officer at Saviynt
The solution's behavior analytics, in terms of detecting cyber and insider threats, are very effective. We are getting actionable results. When I say actionable results, not every finding is going to be a threat, but every finding is worth investigation. Depending on the investigation, some of them are real threats, some are just bad hygiene, and some are a good finding but not a threat for us. So there is work we still need to do. But whatever they are pointing us to is worth investigating. And that is what I expect from the product.
View full review »
Edward Ruprecht
Lead Cyber Security Engineer at a insurance company with 1,001-5,000 employees
In terms of behavior analytics, we're using cyber more than insider threats. With UEBA being a relatively new space when we looked at it close to two years ago, we were concerned about how well it worked and whether they were truly behavioral-based rules or if that was just marketing terminology for the "latest greatest system." But it exceeds what our initial expectations were for being able to detect different cyber threats. We're doing a lot around the network firewall and endpoint detection for rare process connections, rare network connections, etc.
View full review »
SVP Insider Threat at a financial services firm with 10,001+ employees
The solution's behavior analytics in terms of detecting cyber and insider threats is fairly good.
View full review »