New “Insider Threat Security as a Service” and “Insider Threat Program Assessments” offer customers protection from insider threats using unparalleled frontline incident response expertise and Mandiant Threat Intelligence
FireEye, Inc, the intelligence-led security company, unveiled two new insider threat security services from Mandiant.
The new services help organisations establish or scale up insider threat programs and are designed to provide ongoing protection against rapidly evolving and dynamic malicious activities within organizations.
Insider threat events impact organizational reputation, customer trust and investor confidence. In 2019 and 2020, Mandiant responded to numerous customers who experienced corporate and economic espionage, data and backup destruction, and intentional data theft and leakage.
The rise in incidents is an increasing challenge for organizations of all sizes and missions as insiders are, by definition, those organizations trust most.
Cyber threat
Mandiant Consulting Service Delivery Executive Vice President Jurgen Kutscher said legitimate access to controls rules the cyber threat landscape.
“Insider threat investigations are complex to solve and rely on combinations of technical forensic analysis, threat intelligence capabilities and traditional non-cyber investigative techniques,” said Jurgen Kutscher.
Jurgen Kutscher also said no one understands this unique threat vector better than Mandiant.
“This is the reason we formalized a service model to help commercial and government organizations design, assess and establish a continuous, full-spectrum insider threat visibility and prevention programme,” said Jurgen Kutscher
Mandiant uses a “follow the data” security model to deliver actionable, organization-specific recommendations. This approach is designed to identify weaknesses and vulnerabilities across existing safeguards, improve program capabilities and reduce the overall risk of insider threats.
Mandiant Insider Threat Security Services are controls agnostic and available as a point-in-time assessment or an ongoing, subscription-based program.
Threat assessment
The Insider Threat Program Assessment is a purpose-built, point-in-time service to assess organizations with a nascent or existing insider threat security program.
Designed to follow the data rooted in three core domains – people, processes and tools – Mandiant leads dedicated workshops to identify gaps and vulnerabilities in the client’s specific environment.
Available in three tiers to meet situational client needs, the Insider Threat Program Assessment delivers detailed, organization-specific recommendations and actionable roadmaps for tailored program outcomes.
Security as a Service
The Insider Threat Security as a Service is a holistic, subscription-based program that provides organizations with continuous, full-spectrum insider threat visibility, prevention, incident response, remediation and real-time threat intelligence.
Powered by Mandiant Threat Intelligence, this service is imperative for organizations with a remote workforce and sensitive data that could be stolen or leaked.
The Insider Threat Security as a Service provides delivery of regular executive briefings, insider threat activity case files and reporting, and threat intelligence specific to the client’s environment.
Available in three tiers, this service has comprehensive coverage and expertise to accommodate program needs of all sizes, at scale.
Learn more about Mandiant expertise and the intelligence backed offerings to mitigate insider threats on the web and review our other resources.
- FireEye Mandiant M-Trends® 2020 report, “Threats from Within,” page 40
- Eye on Security Podcast: “Breaking Down Malicious Insider Threats”
- Insider Threat Security Services Data Sheet
Mandiant, a part of FireEye, brings together the world’s leading threat intelligence and frontline expertise with continuous security validation to arm organizations with the tools needed to increase security effectiveness and reduce organizational risk.
FireEye is an intelligence-led security company. Working as a seamless, scalable extension of customer security operations, FireEye offers a single platform that blends innovative security technologies, nation-state grade threat intelligence, and world-renowned Mandiant consulting.
With this approach, FireEye eliminates the complexity and burden of cybersecurity for organizations struggling to prepare for, prevent, and respond to cyber-attacks. FireEye has over 9,900 customers across 103 countries, including more than 50% of the Forbes Global 2000.