“We had a key executive leave our organization and needed to know if other executives on the team would follow him out the door. SS8 gave us the answer.”

INSIDER THREAT DETECTION KEY COMPONENTS
Key Components
The SS8 Insider Threat Detection (ITD) solution provides the proactive alerting and investigation workflow needed to precisely identify suspected insiders and track their pattern of life within the network.
Sensor + PXE
Deployed on the internal network to records East/West traffic
Enrichment
User ID collected and correlated via directory store (Active Directory, DHCP)
Analytics
SS8 DRAP engine stores and scores user/device activity over time
ITD Discovery
SS8 ITD discovery interface alerts on flagged users, and enables querying of file transfer activity
Intellego
SS8 Intellego can examine full packet and perform reconstruction
USE CASES
Insider Threat Detection

BLIND SPOT

STATE SECRETS

EMPLOYEE FLIGHT RISKS
ADDITIONAL FEATURES AND BENEFITS

Enrich Activities

Apply Analytics
