Name: How Federal Agencies Can Detect and Block Insider Threats
Start: 2021-03-23T17:00:00Z
End: 2021-03-23T17:00:53.000Z
Location: BrightTALK
Rating: 4.5

Exabeam is a leader in intelligence and automation that powers security operations for the world’s smartest companies. As a global cybersecurity leader, Exabeam provides industry-proven, security-focused, and flexible solutions for faster, more accurate threat detection, investigation, and response (TDIR). Cutting-edge technology enhances security operations center performance, optimizing workflows and accelerating time to resolution. With consistent leadership in AI innovation and a proven track record in security information and event management (SIEM) and user behavior analytics, Exabeam empowers global security teams to combat cyberthreats, mitigate risk, and streamline operations. Learn more at www.exabeam.com.

Executives say AI is transforming security operations. Analysts say… not so fast.

Join us for a panel discussion where TEN18 by Exabeam experts break down the findings from our global cybersecurity report: From Hype to Help: How AI Is (Really) Transforming Cybersecurity in 2025. Based on responses from 1,000 cybersecurity professionals worldwide, this report reveals a sharp divide between leadership optimism and frontline reality.

During this session, our panel will dive into the most surprising and actionable insights, including:
        • Why 71% of executives say AI has improved productivity — but only 22% of analysts agree
        • Where AI is delivering real value today (hint: TDIR)
        • How agentic AI is changing the game for modern SOCs
        • Regional trends and team restructuring insights you need to know

Whether you’re a CISO, SOC lead, or practitioner in the trenches, this session will help you understand how AI is really impacting cybersecurity teams — and what to do next.

From Hype to Help: What 1,000 Cybersecurity Pros Really Think About AI in the SOC

Join us for this webinar to learn the latest news and enhancements to New-Scale Security Operations Platform to help safeguard your environment with confidence.

New-Scale Security Operations Platform - April 2025 Quarterly Launch

April 2025 marks our 12th consecutive quarterly release, bringing you new product enhancements to help safeguard your environment with confidence.
 
Learn more about the latest enhancements to LogRhythm SIEM, our self-hosted SIEM platform. Product leaders will demo the latest enhancements and provide guidance on how to apply these enhancements to your team.

LogRhythm SIEM - April 2025 Quarterly Launch

This presentation explored the evolving threat landscape of insider threats in the age of AI, highlighting how the advancements in technology amplify insider risks.

Key takeaways included:

- How insider threats are evolving in the age of AI
- How AI has amplified risks but also strengthened defences
- How to adopt proactive strategies

Navigating Insider Risks in a AI-Driven World

本セミナーでは実際に発生した不正アクセス事例をもとに、最新の脅威動向をご紹介し、SOC運用の自動化に向けたポイントを徹底解説。脅威の検知、調査、対応を強化するために必要なAIを活用した分析方法、また脅威の特定に必要なコンポーネントに関して詳しくご紹介いたします。

セキュリティ運用の自動化ー脅威の検知、調査、対応にAIを適用し、高度化させるには

内部不正と一言でいっても様々な種類の不正が存在します。本講演では実際に起きた内部不正の事例を交えながら、どのような対策ができるのかをご紹介します。また、AIと機械学習を取り入れることで、脅威の検知、調査、対応の自動化を実現する方法を解説していきます。

AIを活用した内部不正監視の自動化と事例 (Automated Insider Threat Monitoring Using AI and Case Studies)

In this webinar, we addressed the growing cybersecurity risk posed by insider threats and discussed how organisations can protect themselves using a behaviour-based, AI-powered approach.

Insider threats can come from employees, contractors, or business partners who intentionally or unintentionally misuse their access to sensitive data and systems. These threats are particularly challenging to detect because they involve valid credentials and often occur under the radar.

Using real-life examples, we discussed: 

- Types of insider threats
- Financial and reputational impact:
- Using UEBA for threat detection
- AI and automation for fast action
- Building a proactive culture

By combining advanced AI-driven security tools with a culture of awareness, organisations can proactively defend against insider threats and strengthen their overall security posture.

Defending Against Insider Threats with a Behaviour-Based Approach

During this webinar, we discussed the ever-expanding role of the UK’s trusted managed security service provider (MSSP) community in securing our cyberspace – as well as when, why, and critically how, the government should become involved.

We drew on Matt Rider’s recent experience working with government agencies’ inaugural Hackers in the House initiative and discussed which organisations should be classed as CNI.

Key takeaways:

- How and why the definition of CNI is changing and what you can do about it
- Best practice for engaging with UK Government on cyber policy
- How to choose the right MSSP for your security outcomes

The Role of Government and Service Providers in Securing UK Business and Critical National Infrastructure

Cybersecurity threats are evolving at an unprecedented pace, and 2025 promises to bring new challenges and opportunities for defenders. Join industry experts Steve Wilson, Steve Povolny, Gabrielle Hempel, and Kevin Kirkwood for an engaging conversation exploring the biggest cybersecurity predictions for the year ahead. From AI accelerating exploitation cycles and the rise of "Zero Trust for AI" to the emergence of triple extortion attacks and the growing sophistication of nation-state threats, this discussion will deliver actionable insights that security leaders need to stay ahead. Don’t miss this dynamic conversation that will help you prepare for the future of cybersecurity. Register now to secure your spot!

Looking Ahead: Cybersecurity Trends and Predictions for 2025

New-Scale Security Operations Platform - January 2025 Quarterly Launch

January 2025 marks our 11th consecutive quarterly release, bringing you new product enhancements to help safeguard your environment with confidence.

Learn more about the latest enhancements to LogRhythm SIEM, our self-hosted SIEM platform. Product leaders will demo the latest enhancements and provide guidance on how to apply these enhancements to your team.

LogRhythm SIEM - January 2025 Quarterly Launch

Insider threats are among the hardest cybersecurity challenges to solve. Unlike external attacks, insiders have legitimate credentials, making them nearly invisible to traditional detection methods. But what if you could uncover these threats before they escalate? Join Exabeam’s expert-led webinar to explore how our advanced UEBA technology and AI-driven workflows can surface hidden risks by understanding "normal" user behavior and identifying deviations. Learn why Exabeam’s proven machine-learning approach has made us the leader in behavioral analytics for over a decade—and how our platform can empower your team to detect, investigate, and respond to insider threats faster than ever before.

Trust No One: How to Spot Insider Threats Hiding in Plain Sight

Cybersecurity spend is set to surpass $170 billion annually by 2027 according to IDC. Enterprises face pressing challenges in threat detection and response as adversaries use generative AI to increase compromise credentials. Approximately 60% of organizations experienced a rise in credential phishing attacks, facilitated by generative AI tools.  

Join us on November 20th to dive into modern security architectures using the Exabeam Security Operations Platform to define TDIR strategies. 

Discover how you can modernize your security operations with: 

Outcomes Navigator: Personalize outcomes and coverage levels align to MITRE Coverage Score to draw actionable actions from C-suite investment to analysts' response. 

Exabeam Copilot: Enable instant collaboration and rapid response with generative AI, turning insights into action with natural language processing (NLP) 

 

Grab this opportunity to watch a live demo on how Exabeam machine learning (ML) improves parser data, modernizes your security strategy with AI, and helps you stay ahead of threats.

Elevate Your Cybersecurity Response: Transform Threat Detection, Investigation, and Response (TDIR) with AI

Effective leadership during a cybersecurity breach is vital for both immediate response and long-term resilience. Not only does it protect the organization but also nurtures the team. By fostering an environment of communication, collaboration, and continuous improvement, as well as investing in technologies to fully equip the team, CISOs can lead their organization through crises and emerge stronger. 

In this webinar, recently hosted by SASIG Events, Exabeam’s VP and Chief Security Strategist, Steve Moore, will discuss some of the key considerations, including a first-hand perspective from Ash Hunt, Global CISO of Apex Group, covering:

- The importance of empowerment and collaboration through encouraging team involvement and decision-making responsibilities within their scope to facilitate quick responses.

- Investing in development, including training, mentorship, and how the use of AI and ML can help maximise the team’s competency at the same time as improving efficiency. 

- Fostering resilience, including mental health support and work-life balance, especially during high-pressure situations. 

- And more…

Leadership and Career Development During a Breach

In a time of continuous threats with committed adversaries, AI is becoming a powerful ally in improving threat detection, investigation and response by capitalizing on the power of machine learning, the knowledge contained in large language models (LLMs) and AI techniques such as natural language processing (NLP). As organizations continue to struggle to hire and retain their security personnel, there’s a huge opportunity in security operations for enabling technologies like these that accelerate knowledge and increase productivity.  
 
Join Steve Wilson, Chief Product Officer at Exabeam and guest speaker Allie Mellen, Principal Analyst at Forrester Research to hear the trends, hype, risks and opportunities associated with AI in Security Operations.  
 
Key learnings: 
• What are the leading use cases for GenAI and NLP?  
• How can buyers sift through the hype?  
• How secure is Gen AI? 
• Risks associated with GenAI adoption? 
• What are some benefits of an AI-Driven Security Operations Platform? 
• Why isn’t machine learning alone enough? 
• Real-world AI successes reported by customers.

The Intersection of Gen AI and Cybersecurity: Building the Case for an AI-Copilot

The break-neck speed of technology innovation creates opportunities and challenges for security professionals. You wouldn’t drive a car if you could only see two-thirds of the road, yet we are expected to defend our ecosystems with similar levels of visibility, dispersed with an over-reliance on manual controls. During this webinar, we will dissect these challenges and provide best practice recommendations with a focus on positive business outcomes.

Register for this webinar to learn:

-Why visibility is still such a huge challenge for security teams, and what can be done about it
-How to approach automating more of our threat detection, investigation, and response operations
-How to focus on business outcomes to bridge the gap to providing security at the speed of technology innovation

NA/UKI - The Machines Are Learning, But Are We?

With the November presidential election approaching, there’s no better time to discuss how you can help ensure the integrity and cyber resilience of the electoral process. 

Join Kevin Kirkwood, Chief Information Security Officer, and Gabrielle Hempel, Customer Solutions Engineer, for this webinar around the importance of election security to learn:

• An overview of election security infrastructure
• Significant lessons learned from historical security incidents
• Current guidance from CISA on assessing your risk and operational security for election officials 
• Ways to protect election infrastructure with a SIEM

Election Security: Guidance to Assess Risk and Protect Infrastructure

46% of organizations find themselves struggling with the balance between limited resources and upholding a proactive, as opposed to reactive, approach to cybersecurity.

Along the same lines, many organizations continue to be challenged with finding the sweet spot between maintaining compliance while continuing to stay competitive and drive business value.

In this episode of The State of Security Teams webinar series, learn strategies for developing a more proactive security posture despite limited resources, and ways to integrate compliance into your broader business strategy.

Episode 4: How Security Teams Can Confront Compliance and Resource Constraints

You may think that the most damaging security threats to your agency originate outside of the organization. However, data shows that insider threats cost $13.3 million on average just in North America. Insider threats, which can include employees, contractors, or vendors, are much more top of mind given recent events. So how do you detect and block these threats? 

LogRhythm and VMware Carbon Black can help. Together they deliver a powerful integration that combines endpoint detection and response (EDR) with advanced analytics and automated response capabilities.  

In this webinar, Mark Ciciretti, sales engineer at LogRhythm, and Brendon DeMeo, senior solution engineer at VMware Carbon Black, demonstrated how LogRhythm and Carbon Black products work together to protect your agency from insider threats. 

Watch this on-demand webcast to listen in on a conversation about insider threats with relation to federal agencies and to see the powerful integration of these two platforms in action!

How Federal Agencies Can Detect and Block Insider Threats

Cyber Security

Federal Government

FedRAMP

Insider Threat

Threat Detection

SIEM

Endpoint Security

Information Security

Security Analysis

Automation

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

How Federal Agencies Can Detect and Block Insider Threats

Presented by

About this talk

More from this channel