User Entity Behavior Analytics

IdGenius

The Problem

The traditional identity and Security model involves integrating, collecting, and attempting to use data with very little automated intelligence behind it. This causes situations like reduced ROI, access blind spots, access review fatigue, end-user frustration and increased false-positive notifications that take attention away from high risk incidents.

The Solution

IdGenius: Identity Analytics

Security, Identity and Privileged User Analytics starts by collecting Identity data from HR repositories, (PeopleSoft, Workday, Active Directory, etc), LDAP repositories and Contractor/1099 Worker Databases (any RDBMS) or existing IAM implementations.  IdGenius will use this to establish an identity profile for all users with access to sensitive company resources. 

The next step is to start understanding the sensitivity of data and information in your environment by taking feeds from the following types of system:

Once collected, IdGenius can then establish a baseline of who has access to what sensitive information.  The next step is to build a baseline of “normal” user activity based on time, geography, transactions, and session information.  That baseline is continuously gauged against a peer group of users to further identify the “normal” baseline for a user given their respective responsibilities through credential modeling.  IdGenius builds a dynamic baseline of user behavior through profiles of when, where, and how users employ credentials to access sensitive company resources.  Once it detects anomalous behavior, IdGenius will reference Risk-Based Policies to determine if real-time action is warranted. 

IdGenius: Security Analytics

IdGenius builds upon the Identity Context and enables further visibility across security events within the enterprise that include: 

Identity Analytics Features

Fast, Scalable Data Collection

Anomalix IdGenius enables vast data collection through a heterogeneous engine that will span the breadth and depth of required identity and security related information and data.

User Behavior Analytics

Dynamic user profile and peer group enhancements that provide real-time and historical user behavior context to empower business decisions.

Real-time Risk Based Policy Enforcement

IdGenius provides an intuitive User Interface that maximizes the user experience.  The Genius Dashboard (charts, graphs and organized data points) quickly identifies Identity and Security related Anomalies with respect to Authentication, Authorization, Geo-location, Vulnerability, Access Requests, Policy Violations and Enforcements, Peer Group Behavior and Security Investigation. 

Identity & Security Dashboard

Dynamic user profile and peer group enhancements that provide real-time and historical user behavior context to empower business decisions.

Advanced Threat Monitoring

IdGenius improves threat detection cycles by over 1000% when compared to SIEM capabilities alone.  Most SIEM tools do not enable real time capabilities with organizational, risk based policy enforcement to predict user behavior and plan for an automated response or manual response.

Dynamic Analytical Model

IdGenius provides dynamic analytical models that can be adjusted and refined by clients to enable the following: