This document summarizes a presentation on achieving high-fidelity security by combining packet and endpoint data. It discusses research findings that many organizations' security programs have overconfidence in prevention and detection capabilities. The research also found that organizations focus on the wrong data sources and lack tools and automation to integrate and analyze network and endpoint data. Combining both data sources can help overcome individual gaps but organizations currently analyze these data silos separately. The presentation argues that integrating packet and endpoint data through automated analysis can help improve security effectiveness.
Achieving Hi-Fidelity Security by Combining Packet and Endpoint Data
1. IT & DATA MANAGEMENT RESEARCH,
INDUSTRY ANALYSIS & CONSULTING
David Monahan
Enterprise Management Associates
Research Director, Security and Risk Management
Twitter: @SecurityMonahan
Achieving Hi-Fidelity Security
by Combining Packet and
Endpoint Data
4. IT & DATA MANAGEMENT RESEARCH,
INDUSTRY ANALYSIS & CONSULTING
David Monahan
Enterprise Management Associates
Research Director, Security and Risk Management
Twitter: @SecurityMonahan
Achieving Hi-Fidelity Security
by Combining Packet and
Endpoint Data