It's Coming from Inside the House: On the Hunt for Insider Threats With Tanium

The sequel to a much-loved story of a young hunter looking to find and destroy the malodorous and malicious threat within the network -- this year, our hunter is seeking insider threats!

We will review hunting techniques and walk through a Malicious Insider Kill Chain, as well as signs of accidental or negligent behaviors that compromise security. Hands on labs will leverage Threat Response and Reveal to detect malicious and negligent behavior as well as utilize Impact and Enforce to mitigate future risk from an insider threat.

Pre-Reqs: Intermediate Security experience; Familiarity with Tanium Core; Prior Tanium Threat Response experience recommended, but not required

Additional details:

Session Tag
Risk & Compliance Management, Sensitive Data Monitoring, Threat Hunting
Session Type
In-Person, Lab
Modules
Impact, Reveal, Threat Response, Integrity Monitor
Difficulty
Advanced
Industry
Agriculture, Mining & Raw Materials, Construction, Education, Energy, Utilities & Waste, Entertainment, Facilities, Lodging & Resorts, Financial Services, Government - Federal, Government - Local, Healthcare & Life Sciences, Holding Companies & Conglomerates, Hospitals & Physicians Clinics, Insurance, Law Firms & Legal Services, Manufacturing, Construction & Wholesale Trade, Media & Internet, Media & Telecommunications, Non-Profit & Charitable Organizations, Professional & Business Services, Real Estate, Retail & Hospitality, Software & Technology, Transportation Services, Other