User Entity Behavior Analytics

Current State of Identity and Security Tools

The traditional identity and Security model involves integrating, collecting, and attempting to use data with very little automated intelligence behind it. This causes situations like reduced ROI, access blind spots, access review fatigue, end-user frustration and increased false-positive notifications that take attention away from high risk incidents.

The Solution

IdGenius: Next Generation Identity and Security Analytics


Security, Identity and Privileged User Analytics starts by collecting Identity data from HR repositories, (PeopleSoft, Workday, Active Directory, etc), LDAP repositories and Contractor/1099 Worker Databases (any RDBMS) or existing IAM implementations.  IdGenius has it’s own risk-based identity repository that can be used to establish an identity profile for all users, devices and services with access to sensitive company resources.

The next step is to start understanding the sensitivity of data and information in your environment by taking feeds from the following types of system:

Once collected, IdGenius can then establish a baseline of who has access to what sensitive information.  The next step is to build a baseline of “normal” user activity based on time, geography, transactions, and session information.  That baseline is continuously gauged against a peer group of users to further identify the “normal” baseline for a user given their respective responsibilities through credential modeling.  IdGenius builds a dynamic baseline of user behavior through profiles of when, where, and how users employ credentials to access sensitive company resources.  Once it detects anomalous behavior, IdGenius will reference Risk-Based Policies to determine if real-time action is warranted.

IdGenius: Security Analytics


IdGenius builds upon the Identity Context and enables further visibility across security events within the enterprise that include:

Anomalix IdGenius Benefits


Fast, Scalable Data Collection

Anomalix IdGenius enables vast data collection through a heterogeneous engine that will span the breadth and depth of required identity and security related information and data.

User Entity Behavior Analytics

Dynamic user profile and peer group enhancements that provide real-time and historical user behavior context to empower business decisions.  Supervised and Unsupervised machine learning algorithms enable flexibility, agility and speed.

Real-time Risk Based Policy Enforcement

IdGenius provides an intuitive User Interface that maximizes the user experience.  The Genius Dashboard (charts, graphs and organized data points) quickly identifies Identity and Security related Anomalies with respect to Authentication, Authorization, Geo-location, Vulnerability, Access Requests, Policy Violations and Enforcements, Peer Group Behavior and Security Investigation.

Identity & Security Dashboard

Dynamic user profile and peer group enhancements that provide real-time and historical user behavior context to empower business decisions.

Advanced Threat Monitoring

IdGenius improves threat detection cycles by over 1000% when compared to SIEM capabilities alone.  Most SIEM tools do not enable real-time capabilities with organizational, risk-based policy enforcement to predict user behavior and plan for an automated response or manual response.

Dynamic Analytical Model

IdGenius provides dynamic analytical models that can be adjusted and refined by clients to enable the following: