PROTECT: Connecting the Dots – Wells Fargo proactive approach to Security Intelligence

12248934.png
12248934.png

PROTECT: Connecting the Dots – Wells Fargo proactive approach to Security Intelligence

0.00

Connecting the Dots – Wells Fargo proactive approach to Security Intelligence
Speaker: Chris Draper, Wells Fargo

Description:

Within our HPE NonStop environment here at Wells Fargo, we are able to see events (security related or otherwise) that have happened (i.e. in the past).  In early 2016 we decided to take a different view of things.  A view that gives us the ability to link multiple events that, when combined, could give us notice prior to the event or violation actually executing.    At Wells Fargo, we are now watching for things like multiple failed logons across different IP addresses based on timeframes and counts. This allows us to see that someone is trying to locate an open port.  This is valuable security-related information because you may not have other evidence that any malicious activity is actually happening.  From a system level we can also watch for things like object code replacement outside our controlled implementations.  Without this ability object files could be replaced with malicious objects quickly then restarted to pass information outside where it does not belong. We initially spent time designing an internal solution to meet our unique needs.  As it turns out, our needs are not so unique!    This presentation will walk the attendee through situations and the need for proactive monitoring and behavioral analysis that many of them will recognize.  I will also take attendees on the same journey Wells Fargo took to find the solution that not only meets our needs now, but adapts and learns from data, getting more accurate over time. 

Add To Cart