HP Enterprise Security Behavioral Analytics (BASIC) Advertorial

Summary:

The article presents HP's Behavioral Analytics Security Intelligence Cell (BASIC), a solution aimed at identifying malicious insiders within organizations who have authorized access but may still attempt to breach security or misuse sensitive information. BASIC utilizes behavioral analytics, anomaly detection techniques, and non-technical methods like Human Intelligence operations to create user baselines and implement system-wide monitoring with HP ArcSight ESM. The solution benefits from combining technical and non-technical approaches and offers tailored graduated response plans, enhanced monitoring capabilities, program dashboard and reports, as well as experience in delivering effective results through operational expertise and proven methodologies for numerous large enterprises.

Details:

The article discusses HP's Behavioral Analytics Security Intelligence Cell (BASIC), a solution designed to identify malicious insiders within an organization. These insiders are difficult to detect because they have authorized access but may still attempt to breach security or misuse sensitive information. HP's approach involves creating user baselines using behavioral analytics and implementing system-wide monitoring with ArcSight ESM, which detects any statistically significant deviations in behavior that could indicate malicious intent. The BASIC solution is based on a combination of technical methods such as anomaly detection and non-technical approaches like Human Intelligence (HUMINT) operations. It incorporates best practices from both disciplines to identify patterns, indicators, and warnings of potential insider threats. The initial implementation requires HP ArcSight ESM, which can be expanded with additional tools such as HP IdentityView for more comprehensive identity recognition. The benefits of the BASIC solution include a graduated response plan tailored to an organization's specific needs, enhanced monitoring capabilities, program dashboard and reports providing regular updates and alerts about anomalous behavior. Additionally, having HP ESP Global Services implement this solution at numerous large enterprises has provided them with experience in delivering effective results that demonstrate ROI through combination of operational expertise and proven methodologies. The document outlines a comprehensive framework for managing cyber security within an organization, involving roles and responsibilities for each team member. It details how behavioral analytics will be integrated into the existing ArcSight technology to enhance security capabilities that support threat management, regulatory compliance, and overall organizational goals. This process is designed to be self-learning, improving over time with better fidelity as it refines integration and continuously adapts to the dynamic network noise encountered daily.