• Replies 1 reply
  • Subscribers 7 subscribers
  • Views 1809 views
  • Users 0 members are here
Options
Related

Recommendations on testing a new CA Threat Detection implementation

bruce davis
over 5 years ago

Hello Everyone,

We have introduced Quest Change Auditor Threat Detection our environment, and would love to test out if an alerts or if the application would detect  risky behavior.  Does Quest, or anyone recommend scripts, or ways we can create scenarios to showcase to our managers that this is in fact working as expected and to test the behavior/modeling of users?   I would love to show this off in our environment to our leadership and since this is a new installation we may need examples to create events and then export those findings. 

thanks for any input of feedback.

Parents
  • 6 hours ago

    You can try simulating insider threat scenarios by creating abnormal login attempts, privilege escalations, or unauthorized file access to see if the system flags them. Additionally, reviewing VA Arrests Database might provide insights into identifying patterns in security incidents. Setting up scheduled reports and alerts based on predefined risk behaviors can also help demonstrate its effectiveness to leadership.

Reply
  • 6 hours ago

    You can try simulating insider threat scenarios by creating abnormal login attempts, privilege escalations, or unauthorized file access to see if the system flags them. Additionally, reviewing VA Arrests Database might provide insights into identifying patterns in security incidents. Setting up scheduled reports and alerts based on predefined risk behaviors can also help demonstrate its effectiveness to leadership.

Children
No Data