We just raised a $30M Series A: Read our story
2021-09-29T05:10:00Z

What insider threat detection tool do you recommend to a company with a modest budget?

29

Hi peers,

What insider threat detection tool/s do you recommend to a company with a modest budget?  

What makes this tool better than others? 

Thank you.

ITCS user
Guest
34 Answers

author avatar
Top 5Consultant

Off the cuff, I would suggest Nagios.  


Unfortunately, the OSE doesn't provide any support though it does offer a limited support agreement. So, if you have a good Unix or Linux administrator who can supply the needed amount of time to configure everything then it's free minus the time they would spend (which is going to be significant initially) out of the box. It does give you basic monitoring of system-level stuff, disks, processes and users.  


Advanced configuration is time-consuming for whoever is tasked,  and unfortunately, some false positives will be experienced initially. I set up the basics for a customer once. 


If you have a little money I'd suggest the Enterprise version of the product: thousand of plugins, and the console has functionality that the OSE doesn't include which will make the life of whoever is responsible a little easier. 


If you have a small enterprise then that's a good sensibly affordable solution. 


There's a lot of other more granular products that can be configured to stand up and dance if you hire experts to provide the care and feeding.  

2021-10-18T16:08:24Z
author avatar
Top 5Real User

Can you be more specific? If you search this site for 'threat detection' you get lots of different technologies: MDR, XDR, UEBA, IDPS, etc. 

I have used a threat intelligence services, as well as UEBA, and 'threat hunting' services with MDR as well as traditional IPS/IDS and other layered services. Each one detects threats differently - by external intelligence, by network activity, by host activity. 

2021-10-05T22:26:13Z
author avatarEvgeny Belenky
Community Manager

@Stuart Berman thanks for your answer! 
If we're talking about MDR and XDR solutions, which one would be a budget one?

author avatar
Community Manager

Hello @Yasin Bin Wasim, @Alex Alexandre ​and @Darshil Sanghvi ,


Can you please share your professional advice with the community?

2021-10-04T07:38:08Z