INSIDER THREAT DEFENSE GROUP, INC.
Since 2009, the
Insider Threat Defense Group (ITDG) has provided 700+
organizations and 1000+ students with the core skills / advanced
knowledge, resources and technical solutions for developing, managing,
evaluating and optimizing their organization Insider Risk Management (IRM)
Programs (IRMP’s).
Being a pioneer in understanding Insider Threats from both a holistic,
non-technical and technical perspective, the ITDG stands at the
forefront of helping organizations safeguard their assets (Facilities,
Employees, Financial Assets, Data, Computer Systems - Networks) from one
of today's most damaging threats, the Insider Threat. The financial
damages and severe impacts from a malicious or opportunist employee can
be severe, from the MILLIONS to BILLIONS, as reflected in
NITSIG
Insider Threat Incidents Reports.
With 15+ years of IRMP expertise, the ITDG has a deep understanding of
the collaboration components and responsibilities required by key
stakeholders, and the many underlying and interconnected cross
departmental components that are critical for a comprehensive program.
ITDG training courses and consulting services are based on our unique
and very comprehensive Insider Risk Management (IRM) Program 360
Framework & Assessment Methodology (IRMP360FAM™).
The IRMP Framework encompasses 11 critical domains for IRM and an IRMP
and EXCEEDS all compliance regulations for IRM. Our methodology
addresses Insider risks and threats from an enterprise cross functional
perspective, and from a non-technical and technical perspective. The
core components of the framework provide 1) A solid foundation
for an IRMP, 2) Ensure enterprise IRM security controls are in
place, 3) Ensure that there is universal alignment and
collaboration with key stakeholders and the IRMP, as both of these are
critical elements for detecting, responding to, investigating,
preventing and mitigating Insider risks and threats.
Our IRMP Framework will enhance the security foundations of the
organization to reduce the likelihood of an Insider Threat incident,
which can prevent data theft, financial theft, IT sabotage, prevent
operational IT disruptions, downtime, loss of productivity, workplace
violence and legal exposure.
Regardless of the level of maturity that your IRMP is in, the ITDG is
very confident that our training and consulting services are structured
to provide value whether your organization is developing a program, or
looking to mature an established program.
CLIENT SATISFACTION / COMPANY RECOGNITION
Over 1000+ individuals have attended our training courses
and received certificates / credentials as an IRMP Manager, IRMP
Evaluator & Optimization Specialist and Insider Threat Investigator –
Analyst.
The comprehensive nature of our IRMP Framework and 15+ years of IRMP
expertise, is what separates us from other providers of IRMP training
and consulting services. Our students and clients have endorsed our
training and consulting services as the most affordable, next generation
and value packed training for IRM and IRMP's.
Even our most experienced students that have attend our training
courses, or taken other IRMP training courses and paid substantially
more, state that they are amazed at the depth of the training content
and the resources provided, and are very satisfied they took the
training and learned some new concepts and techniques for IRM.
Our client satisfaction levels are in the EXCEPTIONAL range. You
are encouraged to read the feedback from our clients on this
link.
The ITDG Has Provided IRMP Training & Consulting Services To An
Impressive List Of 700+ Clients:
White House, U.S. Capital Police, U.S. Government Agencies,
Department Of Defense (U.S. Army, Navy, Air Force & Space Force,
Marines), Intelligence Community Agencies (DIA, NSA, NGA), Law
Enforcement (DHS, TSA, FBI, U.S. Secret Service, DEA, Police
Departments), Critical Infrastructure Providers, Universities, Fortune
100 / 500 companies and others; Microsoft, Verzion, Walmart, Home Depot,
Nike, Tesla, Dell Technologies, Nationwide Insurance, Discovery Channel,
United Parcel Service, FedEx, Visa, Capital One Bank, BB&T Bank, Bank,
American Express, Equifax, TransUnion, JetBlue Airways, Delta Airlines
and many more. (Client Listing)
More Information:
www.insiderthreatdefensegroup.com
561-809-6800
VERIATO
Veriato is an innovator in Insider
Threat Detection and a global leader in Employee Monitoring Software.
Driven by AI, more than 42,000 companies and government entities
worldwide utilize Veriato to gain unmatched insight into the User
Activity occurring on their network. Veriato’s product line includes the
Veriato Cerebral, Veriato Investigator and Veriato RansomSafe.
More Information
www.veriato.com
TRANSUNION
Whether
federal, state or local agency, public safety or educational
organization, TransUnion’s suite of mission-critical solutions provides
the public sector with vital information and an unmatched combination of
credit and non-credit data to help ensure citizen safety, manage
compliance and boost services for constituents served. Our comprehensive
and unique sets of credit, criminal and public data, coupled with
flexible analytics, help agencies detect and prevent cyber fraud, and
make connections between people, businesses, assets and locations.
Our experience has given us a deep understanding of the challenges
facing your organization, your service requirements, and the factors
that impact your daily operations.
More Information
www.transunion.com/public-sector
www.transunion.com/solution/insider-threat
DTEX SYSTEMS
Dtex provides organizations across the
globe with the complete, user-focused visibility needed to strengthen
enterprise security posture and effectively manage insider threats.
Dtex’s Modern User Activity Monitoring combines high-fidelity user
activity data with machine learning and advanced analytics to pinpoint
anomalies in real time, elevate areas of risk, generate actionable
insights, and provide answers quickly. Collecting only the lightweight
data needed to identify risky behaviors, Dtex can be deployed and scaled
quickly with no impact on network, endpoint or human performance and
without impeding user privacy.
More Information
www.dtexsystems.com
HAYSTAX
Mitigating insider
threats takes a lot more than just correlating network data. It requires
the ability to analyze 'whole-person' behavior — rapidly, continuously
and at scale.
Our Haystax For
Insider Threat solution was designed from the ground up to:
-
Continuously
assesses the trustworthiness of individuals, not just user activity on
networks and devices like conventional machine-learning or rules-based
solutions.
-
Uses a probabilistic
model that analyzes evidence from a wide array of data sources to
prioritize risk rather than generate excessive false-positive alerts
that overwhelm analysts.
-
Provides a user
interface that mirrors current analyst terminologies and workflows.
Top federal
government agencies and large commercial enterprises, as well as state
and local public-safety organizations, rely on Haystax for more
effective protection of their critical systems, data, facilities and
people. A U.S. defense agency has called Haystax for Insider Threat the
"only known system for prioritizing personnel according to positive and
negative nodes of trust."
More Information
www.haystax.com
MATHCRAFT SECURITY TECHNOLOGIES
MathCraft Security
Technologies is the leading provider of innovative software for today’s
security professionals. As a trusted partner within the industrial
security community, we work with government and corporate organizations
of all sizes to streamline operations, maximizing both productivity and
efficiency.
MathCraft’s robust product lines are compliant with Defense Security
Service (DSS) and NISPOM requirements for cleared contracts and
enterprises. Our solutions are carefully engineered to improve security
and compliance processes, giving Facility Security Officers (FSOs) and
employees the comprehensive tools that they need to manage data, monitor
visitors, and automate workflows. For ultimate convenience, they are
also available on-premises or via a FedRAMP-approved cloud platform.
Access Commander®
is our industrial security management software for FSOs who need to
govern and organize their security efforts while staying compliant.
ViSi Commander™ is the application that allows FSOs to manage
visitors across cleared facilities and streamline the check-in/out
process.
Portal Commander™ is our automated, self-service security portal
for employees, line managers, FSOs, and CSOs who require improvements,
consistencies and accountabilities in security processes. The Business
Process Management (BPM) edition includes a workflow engine that allows
you to optimize your security processes like never before.
With MathCraft’s
powerful lines of industrial security applications, organizations can
manage their classified facilities, personnel clearances, foreign
travel, classified visits, incidents, insider threats, classified
contracts, classified documents, badges, training, and more in one
place, within applications that make compliance inherent and systemic.
Our products save time, reduce costs, and minimize risks for those who
stand on the front lines, safeguarding our nation’s most sensitive
information and infrastructure.
More Information
www.mathcraft.com
703-729-9022
SECURONIX
Securonix redefines the next
generation of security monitoring. Securonix Next-Gen SIEM uses big data
architecture to provide unlimited scalability and data retention on a
non-proprietary open platform. It leverages machine learning and
behavior analytics to detect the most advanced cyber threats.
The solution comes packaged with out-of-the-box content for insider
threats, cyber threats, cloud threats, and fraud. It also comes with
Securonix Spotter, which supports text-based search, ad-hoc reporting,
link analysis, and threat hunting capabilities across massive data sets.
Securonix provides incident orchestration and response capabilities with
built-in incident response playbooks and case management.
The Securonix solution is available in the cloud as a fully-managed SaaS
platform. Securonix is SOC2 certified and supports complete SIEM
functionality in the cloud with minimal operational overhead.
More Information
www.securonix.com
SOLARWINDS
SolarWinds® provides powerful and affordable IT management software
to customers worldwide from enterprises of all sizes to virtually every
civilian agency and branch of the US Military. We focus exclusively on
IT Pros and strive to eliminate the complexity that they have been
forced to accept. SolarWinds delivers on this commitment with unexpected
simplicity through products that are easy to find, buy, use and maintain
while providing the power to address any IT management problem.
More Information
www.solarwinds.com
www.solarwinds.com/federal-government/it-management-solutions-for-government
ORACLE
Oracle is a leader in security and
top provider of 5G, Cloud (DaaS, SaaS, PaaS, Iaas), Java, Data
technologies, HCM/ERP/CRM, AI/ML, Emerging technologies,
Hardware, and much more.
Oracle technologies specificslly help reduce the insider threat
access to highly sensitive data with technologies such as Gen 2
Cloud, Transparent Database Encryption, Key Vault, Database
Vault, Audit Vault, Database Firewall, and the Cloud Access
Security Broker (CASB).
Oracle enterprise Hardware and Cloud have been selected by
Insider Threat and Security Operations Centers at large agencies
to run 3rd party COTS software. Oracle hardware is selected for
its low cost, high performance, and resiliency in the InT/SOC
use case.
More Information
www.oracle.com
CYBERHAVEN
Cyberhaven rapidly detects and
eliminates data incidents caused by insider threats. Cyberhaven reduces
the cost of data breaches by rapidly detecting and investigating insider
threats. It provides instant visibility into data flows across
endpoints, servers, email and SaaS, significantly reducing the amount of
time to contain a breach.
More Information
https://www.cyberhaven.com/
SPLUNK
Splunk drives fast,
confident decisions to solve DoD’s toughest challenges and ensure
mission success. Its massively scalable analytics platform leverages
data from any source or format – satellites, mobile devices, servers,
weapons systems and more. It delivers real-time situational awareness
and insights that optimize assets and operational capabilities,
accelerating mission execution.
More Information
www.splunk.com
YAKABOD
Yakabod, now a part of Everfox (Formerly Forcepoint Federal), is
the best-kept secret in secure case management. Trusted by the
Intelligence Community for over 20 years, our innovative
products are purpose-built and thoroughly validated to excel in
high-assurance environments. Our expertise extends to critical
areas in public and private sectors such as insider threat,
cyber incident response, counter-intelligence, vendor security,
and customized enterprise use cases including information
security, research and development, and investigative practices.
Our industry-leading system of record products are developed
with a security-first framework based on NIST and FISMA
compliance, ISO/IEC 27001, GLBA, HIPAA, NITFF, NISPOM, and EO
13587.
More Information
www.yakabod.com