Haystax Technology, profile picture
Uploaded byHaystax Technology
PPTX, PDF1,022 views

Whole Person Risk Modeling

Haystax provides advanced cybersecurity and threat management solutions focused on insider threats and optimizing personnel risk assessment through its 'carbon' model. The platform integrates various data sources to continuously evaluate individual risk levels and streamline threat detection and response. Their analytical approach aims to reduce noise in threat signals, offering real-time actionable intelligence for better decision-making in enterprise environments.

Embed presentation

Downloaded 22 times
Haystax Advanced Threat Analytics Whole Person Risk Modeling Presented at Information Risk Management Research Board November 18, 2014 Bryan Ware | CTO |
1 Topics Haystax Overview The Insider Threat From an Analytical Perspective Enterprise Threat Management Carbon Personnel Risk Management System
2 About Us ADVANCED CYBERSECURITY AND THREAT MANAGEMENT FORMED in 2012 on a 20 year legacy (Digital Sandbox, FlexPoint, NetCentrics) EMPLOYEES: 350, 90% Cleared WE OFFER: Cybersecurity & enterprise threat management solutions that provide real-time actionable intelligence for complex, high consequence decisions We developed the protective intelligence methodology used by the Bill & Melinda Gates Foundation We are used by 15 of the 20 largest urban areas to keep their citizens & assets safe We architected, manage & defend some of the most mission critical networks in the US We deployed the CIA’s first private cloud with AWS
3 Haystax Technology Accelerator DEVELOP ADVANCED CONCEPTS AND PRODUCTS Focus on solving the “really hard” problems Advance the state of the art through agile, out-of-the-box thinking
4 Better a diamond with a flaw than… “You want a valve that doesn’t leak and you try everything possible to develop one. But the real world provides you with a leaky valve. You have to determine how much leaking you can tolerate.” --Arthur Rudolph, manager of the Marshall Space Flight Center Saturn V program office
5 Who do you think you are? YOU ARE NOT YOUR DATA You are not your account. Accounts are not identities. Events are not behaviors.
6 The Signal to Noise Problem TEACHING A DETECTION SYSTEM TO FIND THE TARGET SEEMS EASY Target False Alarm
7 As noise increases, it gets harder to see the signal ALL BRUTE FORCE SYSTEMS WILL SUCCUMB Target False Alarm Miss
8 The Signal to Noise Problem THRESHOLDS & FLAGS WILL IDENTIFY THE OBVIOUS SPIKES…BUT WILL MISS WEAK SIGNALS Lowering thresholds will increase false alarms. How do you strike a balance between false alarm Rate and missed detections?
9 The Signal has Become the Noise ANALYTICS ARE NEEDED TO PRIORITIZE SIGNALS
10 The Haystax Way PATENTED ANALYTIC APPROACH We model first Models represent human judgment Disparate information sources are fused Causality and uncertainty are measured Outputs represent the degree of belief
11 The Haystax Technology Vision ENTERPRISE THREAT MANAGEMENT Haystax will provide CROs, CIOs and CISOs with a cloud-enabled platform to identify, monitor and manage potential threats to the enterprise in an integrated analytic system
12 Enterprise Threat Management BROADER VISIBILITY, REDUCED RESPONSE TIMES & PRIORITIZED RESOURCE ALLOCATION Profile overall enterprise threat and risk Monitor continuously and broadly against that profile Prioritize and route critical information for Implement collaborative, dynamic situational awareness action
13 What is Carbon Carbon is a model of the Whole Person, establishing a Pattern of Life that is evaluated continuously as data changes or becomes available Backgr ound Check Peers & Family $ Financial Records Public Records Web and HR Record Social Media HUMINT Counterintelligence Medical Criminal Investigators Command Peers Family Psych Subject IT Security
14 Carbon is a Threat Optimization Solution AUTOMATICALLY PRIORITIZES ACTIONS, BASED ON RISK Automated continuous evaluation and re-prioritization enables sustained success Installed within legacy software environments
15 How Does the Carbon Software Work Installed on premises, and connected to enterprise data sources Calculates the level of risk of each person in the organization Provides a dashboard of all personnel Maintains information and cases on personnel Alerts when significant issues or changes are detected Is updated dynamically and continuously as information changes or more information and new data sources are identified
16 Data Processing & Routing OPTIMIZES MACHINE AND HUMAN PROCESSING OF DATA Enterprise Calls for HR Data Service News & Social Communications Enterprise Data Data Collection & Pre-Processing Physical Assets/CIKR Archive DB Web Analytic Processing Low Priority Channels Mobile 3rd Party Triage Timeline Map Alerts Visual Interaction Canvases Reports Feeds Network Alerts Know & Act Patent # 8874071
17 Closing Summary YOU ARE NOT YOUR DATA Separate signal from noise Whole person risk modeling Anticipation trumps forensics Prioritized response
18 Thank You Bryan Ware Chief Technology Officer Haystax Technology 8251 Greensboro Drive Suite 1111 McLean, VA 22102 (571) 297-3806 bware@haystax.com www.haystax.com

More Related Content

PPTX
Haystax Technology - About Us
byHaystax Technology
 
PPTX
The Future of Advanced Analytics
byHaystax Technology
 
PPTX
Haystax: Actionable Intelligence Platform
byHaystax Technology
 
PPTX
Haystax carbon for Insider Threat Management & Continuous Evaluation
byHaystax Technology
 
PPTX
Security Analytics and Big Data: What You Need to Know
byMapR Technologies
 
PDF
2016 Scalar Security Study: The Cyber Security Readiness of Canadian Organiza...
byScalar Decisions
 
PPTX
Enterprise Threat Management
byHaystax Technology
 
PDF
Data exfiltration so many threats 2016
byFitCEO, Inc. (FCI)
 
Haystax Technology - About Us
byHaystax Technology
 
The Future of Advanced Analytics
byHaystax Technology
 
Haystax: Actionable Intelligence Platform
byHaystax Technology
 
Haystax carbon for Insider Threat Management & Continuous Evaluation
byHaystax Technology
 
Security Analytics and Big Data: What You Need to Know
byMapR Technologies
 
2016 Scalar Security Study: The Cyber Security Readiness of Canadian Organiza...
byScalar Decisions
 
Enterprise Threat Management
byHaystax Technology
 
Data exfiltration so many threats 2016
byFitCEO, Inc. (FCI)
 

What's hot

PDF
Adopting Intelligence-Driven Security
byEMC
 
PPTX
Overview of Haystax Technology
byHaystax Technology
 
PDF
Scalar security study2017_slideshare_rev[1]
byTracey Ong
 
PDF
Embracing Threat Intelligence and Finding ROI in Your Decision
byCylance
 
PPT
Big Data, Security Intelligence, (And Why I Hate This Title)
byCoastal Pet Products, Inc.
 
PDF
Next generation security analytics
byChristian Have
 
PPTX
The CISO’s Guide to Data Loss Prevention
byDigital Guardian
 
PPTX
4 Cyber Security KPIs
bySteven Aiello
 
PPT
[EB100510] Evelyn del Monte: Context-Aware and Adaptive Security
byComputerworld Philippines
 
PDF
Strengthening Security with Continuous Monitoring
byBooz Allen Hamilton
 
PPTX
Haystax Innovative Solutions Consortium Presentation
byJaffrey Ali
 
PDF
IT Executive Guide to Security Intelligence
bythinkASG
 
PDF
br-security-connected-top-5-trends
byChristopher Bennett
 
PDF
MT118 Risk Intelligence - Making the Right Choices in Cybersecurity
byDell EMC World
 
PDF
Lead On: When More Data Becomes Less Work
byInterset
 
PDF
Before the Breach: Using threat intelligence to stop attackers in their tracks
by- Mark - Fullbright
 
PDF
MT29 Panel: Becoming a data-driven enterprise
byDell EMC World
 
PDF
Plan for the Worst; Fight for the Best
byHewlett Packard Enterprise Business Value Exchange
 
Adopting Intelligence-Driven Security
byEMC
 
Overview of Haystax Technology
byHaystax Technology
 
Scalar security study2017_slideshare_rev[1]
byTracey Ong
 
Embracing Threat Intelligence and Finding ROI in Your Decision
byCylance
 
Big Data, Security Intelligence, (And Why I Hate This Title)
byCoastal Pet Products, Inc.
 
Next generation security analytics
byChristian Have
 
The CISO’s Guide to Data Loss Prevention
byDigital Guardian
 
4 Cyber Security KPIs
bySteven Aiello
 
[EB100510] Evelyn del Monte: Context-Aware and Adaptive Security
byComputerworld Philippines
 
Strengthening Security with Continuous Monitoring
byBooz Allen Hamilton
 
Haystax Innovative Solutions Consortium Presentation
byJaffrey Ali
 
IT Executive Guide to Security Intelligence
bythinkASG
 
br-security-connected-top-5-trends
byChristopher Bennett
 
MT118 Risk Intelligence - Making the Right Choices in Cybersecurity
byDell EMC World
 
Lead On: When More Data Becomes Less Work
byInterset
 
Before the Breach: Using threat intelligence to stop attackers in their tracks
by- Mark - Fullbright
 
MT29 Panel: Becoming a data-driven enterprise
byDell EMC World
 
Plan for the Worst; Fight for the Best
byHewlett Packard Enterprise Business Value Exchange
 

Viewers also liked

PPTX
Haystax Carbon for Insider Threat Management
byHaystax Technology
 
PDF
Results presentation q2 2015
bySpondaPlc
 
PPTX
Critical assets protection
byHaystax Technology
 
PPTX
Importance pdhpe
bylolfeg
 
PPTX
Processing Events in Probabilistic Risk Assessment
byHaystax Technology
 
PDF
Sponda Financial Results Q1 2015 presentation 050515
bySpondaPlc
 
PDF
Results presentation q3 2016
bySpondaPlc
 
PPTX
Horror make up
bykiller987
 
PPTX
Comparatives and Superlatives
byUniversidad Virtual Liverpool
 
PDF
StimulusWk13
byAj Cruz
 
PPTX
American mfg
byfrancisco_cervantes
 
PPTX
Drupal commerce
byVasil Boychev
 
PPT
Frac Tech Services interview questions and answers
bytaylorlorr
 
PDF
FINAL PR Portfolio Slides
byJaclyn Freedman
 
PDF
Haystax Technology Machine learning white paper
byHaystax Technology
 
PPTX
презентація опера
bynikysja888
 
PPTX
Importance of pdhpe
bylolfeg
 
DOCX
Modelo ecologico y_modelo_integral_de_intervencion
byJuan Contreras
 
PPTX
Haystax bayesian networks
byHaystax Technology
 
PPT
Діагностування електродвигунів
bySvetlana Savostina
 
Haystax Carbon for Insider Threat Management
byHaystax Technology
 
Results presentation q2 2015
bySpondaPlc
 
Critical assets protection
byHaystax Technology
 
Importance pdhpe
bylolfeg
 
Processing Events in Probabilistic Risk Assessment
byHaystax Technology
 
Sponda Financial Results Q1 2015 presentation 050515
bySpondaPlc
 
Results presentation q3 2016
bySpondaPlc
 
Horror make up
bykiller987
 
Comparatives and Superlatives
byUniversidad Virtual Liverpool
 
StimulusWk13
byAj Cruz
 
American mfg
byfrancisco_cervantes
 
Drupal commerce
byVasil Boychev
 
Frac Tech Services interview questions and answers
bytaylorlorr
 
FINAL PR Portfolio Slides
byJaclyn Freedman
 
Haystax Technology Machine learning white paper
byHaystax Technology
 
презентація опера
bynikysja888
 
Importance of pdhpe
bylolfeg
 
Modelo ecologico y_modelo_integral_de_intervencion
byJuan Contreras
 
Haystax bayesian networks
byHaystax Technology
 
Діагностування електродвигунів
bySvetlana Savostina
 

Similar to Whole Person Risk Modeling

PPTX
Haystax - Analytic Products and Enterprise Network Services
byHaystax Technology
 
PPTX
How to Improve Threat Detection & Simplify Security Operations
byIBM Security
 
PDF
Pivotal Role of HR in Cybersecurity
byMatthew Rosenquist
 
PDF
You Can't Stop The Breach Without Prevention And Detection
byCrowdStrike
 
PPTX
Safeguard Commercial Success with a Strategic Monitoring Approach
bymadelinestack
 
PDF
Radical Innovation In Security (New Techniques Applied To Tomorrow’s Risk)
byFujitsu Middle East
 
PDF
Intelligence Driven Threat Detection and Response
byEMC
 
PDF
EnterpriseImmuneSystem
byAdam Toth-Fejel
 
PDF
Enterprise Immune System
byAustin Eppstein
 
PPTX
Jim Noble SEASIM Keynote
bySeattleSIM
 
PPTX
SucessfulInsiderThreat
byHammerNJ
 
PPTX
Fortify-Application_Security_Foundation_Training.pptx
byVictoriaChavesta
 
PPTX
Fortify-Application_Security_Foundation_Training.pptx
byYoisRoberthTapiadeLa
 
PPTX
Major events
byHaystax Technology
 
PDF
Decision Ready Data: Power Your Analytics with Great Data
byDLT Solutions
 
PDF
Safeguarding the Enterprise. A new approach.
byADGP, Public Grivences, Bangalore
 
PPTX
Jack Whitsitt - Yours, Anecdotally
byEnergySec
 
PDF
Webinar: Get Ready to Detect, Respond & Recover from a Cyber Attack
byAujas
 
PPTX
LogRhythm_-_Modern_Cyber_Threat_Pandemic.pptx
byCNSHacking
 
PDF
How Dashboard Analytics Bolster Security and Risk Management Across IT Supply...
byDana Gardner
 
Haystax - Analytic Products and Enterprise Network Services
byHaystax Technology
 
How to Improve Threat Detection & Simplify Security Operations
byIBM Security
 
Pivotal Role of HR in Cybersecurity
byMatthew Rosenquist
 
You Can't Stop The Breach Without Prevention And Detection
byCrowdStrike
 
Safeguard Commercial Success with a Strategic Monitoring Approach
bymadelinestack
 
Radical Innovation In Security (New Techniques Applied To Tomorrow’s Risk)
byFujitsu Middle East
 
Intelligence Driven Threat Detection and Response
byEMC
 
EnterpriseImmuneSystem
byAdam Toth-Fejel
 
Enterprise Immune System
byAustin Eppstein
 
Jim Noble SEASIM Keynote
bySeattleSIM
 
SucessfulInsiderThreat
byHammerNJ
 
Fortify-Application_Security_Foundation_Training.pptx
byVictoriaChavesta
 
Fortify-Application_Security_Foundation_Training.pptx
byYoisRoberthTapiadeLa
 
Major events
byHaystax Technology
 
Decision Ready Data: Power Your Analytics with Great Data
byDLT Solutions
 
Safeguarding the Enterprise. A new approach.
byADGP, Public Grivences, Bangalore
 
Jack Whitsitt - Yours, Anecdotally
byEnergySec
 
Webinar: Get Ready to Detect, Respond & Recover from a Cyber Attack
byAujas
 
LogRhythm_-_Modern_Cyber_Threat_Pandemic.pptx
byCNSHacking
 
How Dashboard Analytics Bolster Security and Risk Management Across IT Supply...
byDana Gardner
 

Recently uploaded

PDF
Logical Optimal Actions – Towards Knowledge-based Reinforcement Learning with...
byMichiaki Tatsubori
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
PPTX
TravelTech Paris 2025 | Beyond the pipes: Why Channel Management isn’t really...
byapidays
 
PDF
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
PDF
Towards a Vibrant AI Hardware Accelerator Ecosystem, invited talk at the 4th ...
byMichiaki Tatsubori
 
PDF
Poročilo odbora CIS (CH08873) za leto 2025 na letni skupščini IEEE Slovenija ...
byUniversity of Maribor
 
PDF
GenerationAI Paris 2025 | How Agentic AI is Reinventing Organizations
byapidays
 
PDF
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
PPTX
Do You Control the AI, or Does the AI Control You?
bymedhateltoukhy
 
PDF
TravelTech Paris 2025 | The EU Digital Identity Wallet and it’s impact on Tra...
byapidays
 
PDF
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
PDF
The Emergence of Empathic XR: AWE Asia 2026 keynote
byMark Billinghurst
 
PDF
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
PDF
The new book “Marketing in the Metaverse” spotlights Scott M. Graffius’ research
byScott M. Graffius
 
PDF
final.pdf
byomarbishtawi04
 
PDF
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
PPTX
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
PDF
From Artificial Intelligence to African Intelligence: Transforming Research &...
byMoses Kemibaro
 
PPTX
Celonis Optimizing your future with process
bydevjeremyappleyard
 
PPTX
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
Logical Optimal Actions – Towards Knowledge-based Reinforcement Learning with...
byMichiaki Tatsubori
 
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
TravelTech Paris 2025 | Beyond the pipes: Why Channel Management isn’t really...
byapidays
 
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
Towards a Vibrant AI Hardware Accelerator Ecosystem, invited talk at the 4th ...
byMichiaki Tatsubori
 
Poročilo odbora CIS (CH08873) za leto 2025 na letni skupščini IEEE Slovenija ...
byUniversity of Maribor
 
GenerationAI Paris 2025 | How Agentic AI is Reinventing Organizations
byapidays
 
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
Do You Control the AI, or Does the AI Control You?
bymedhateltoukhy
 
TravelTech Paris 2025 | The EU Digital Identity Wallet and it’s impact on Tra...
byapidays
 
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
The Emergence of Empathic XR: AWE Asia 2026 keynote
byMark Billinghurst
 
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
The new book “Marketing in the Metaverse” spotlights Scott M. Graffius’ research
byScott M. Graffius
 
final.pdf
byomarbishtawi04
 
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
From Artificial Intelligence to African Intelligence: Transforming Research &...
byMoses Kemibaro
 
Celonis Optimizing your future with process
bydevjeremyappleyard
 
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 

Whole Person Risk Modeling

  • 1.
    Haystax Advanced ThreatAnalytics Whole Person Risk Modeling Presented at Information Risk Management Research Board November 18, 2014 Bryan Ware | CTO |
  • 2.
    1 Topics HaystaxOverview The Insider Threat From an Analytical Perspective Enterprise Threat Management Carbon Personnel Risk Management System
  • 3.
    2 About Us ADVANCED CYBERSECURITY AND THREAT MANAGEMENT FORMED in 2012 on a 20 year legacy (Digital Sandbox, FlexPoint, NetCentrics) EMPLOYEES: 350, 90% Cleared WE OFFER: Cybersecurity & enterprise threat management solutions that provide real-time actionable intelligence for complex, high consequence decisions We developed the protective intelligence methodology used by the Bill & Melinda Gates Foundation We are used by 15 of the 20 largest urban areas to keep their citizens & assets safe We architected, manage & defend some of the most mission critical networks in the US We deployed the CIA’s first private cloud with AWS
  • 4.
    3 Haystax TechnologyAccelerator DEVELOP ADVANCED CONCEPTS AND PRODUCTS Focus on solving the “really hard” problems Advance the state of the art through agile, out-of-the-box thinking
  • 5.
    4 Better adiamond with a flaw than… “You want a valve that doesn’t leak and you try everything possible to develop one. But the real world provides you with a leaky valve. You have to determine how much leaking you can tolerate.” --Arthur Rudolph, manager of the Marshall Space Flight Center Saturn V program office
  • 6.
    5 Who doyou think you are? YOU ARE NOT YOUR DATA You are not your account. Accounts are not identities. Events are not behaviors.
  • 7.
    6 The Signalto Noise Problem TEACHING A DETECTION SYSTEM TO FIND THE TARGET SEEMS EASY Target False Alarm
  • 8.
    7 As noiseincreases, it gets harder to see the signal ALL BRUTE FORCE SYSTEMS WILL SUCCUMB Target False Alarm Miss
  • 9.
    8 The Signalto Noise Problem THRESHOLDS & FLAGS WILL IDENTIFY THE OBVIOUS SPIKES…BUT WILL MISS WEAK SIGNALS Lowering thresholds will increase false alarms. How do you strike a balance between false alarm Rate and missed detections?
  • 10.
    9 The Signalhas Become the Noise ANALYTICS ARE NEEDED TO PRIORITIZE SIGNALS
  • 11.
    10 The HaystaxWay PATENTED ANALYTIC APPROACH We model first Models represent human judgment Disparate information sources are fused Causality and uncertainty are measured Outputs represent the degree of belief
  • 12.
    11 The HaystaxTechnology Vision ENTERPRISE THREAT MANAGEMENT Haystax will provide CROs, CIOs and CISOs with a cloud-enabled platform to identify, monitor and manage potential threats to the enterprise in an integrated analytic system
  • 13.
    12 Enterprise ThreatManagement BROADER VISIBILITY, REDUCED RESPONSE TIMES & PRIORITIZED RESOURCE ALLOCATION Profile overall enterprise threat and risk Monitor continuously and broadly against that profile Prioritize and route critical information for Implement collaborative, dynamic situational awareness action
  • 14.
    13 What isCarbon Carbon is a model of the Whole Person, establishing a Pattern of Life that is evaluated continuously as data changes or becomes available Backgr ound Check Peers & Family $ Financial Records Public Records Web and HR Record Social Media HUMINT Counterintelligence Medical Criminal Investigators Command Peers Family Psych Subject IT Security
  • 15.
    14 Carbon isa Threat Optimization Solution AUTOMATICALLY PRIORITIZES ACTIONS, BASED ON RISK Automated continuous evaluation and re-prioritization enables sustained success Installed within legacy software environments
  • 16.
    15 How Doesthe Carbon Software Work Installed on premises, and connected to enterprise data sources Calculates the level of risk of each person in the organization Provides a dashboard of all personnel Maintains information and cases on personnel Alerts when significant issues or changes are detected Is updated dynamically and continuously as information changes or more information and new data sources are identified
  • 17.
    16 Data Processing& Routing OPTIMIZES MACHINE AND HUMAN PROCESSING OF DATA Enterprise Calls for HR Data Service News & Social Communications Enterprise Data Data Collection & Pre-Processing Physical Assets/CIKR Archive DB Web Analytic Processing Low Priority Channels Mobile 3rd Party Triage Timeline Map Alerts Visual Interaction Canvases Reports Feeds Network Alerts Know & Act Patent # 8874071
  • 18.
    17 Closing Summary YOU ARE NOT YOUR DATA Separate signal from noise Whole person risk modeling Anticipation trumps forensics Prioritized response
  • 19.
    18 Thank You Bryan Ware Chief Technology Officer Haystax Technology 8251 Greensboro Drive Suite 1111 McLean, VA 22102 (571) 297-3806 bware@haystax.com www.haystax.com

Editor's Notes

  • #3 Summary…we are going to challenge the status quo….we are in the process of building a strong company and brand.
  • #7 .
  • #10 Cloud improves provisioning of secure apps.
  • #11 SharePoint, Link…
  • #14 DTaaS should be about improving the user experience. We have worked with MSFT on creating a reference desktop based on familiar collaboration and productivity tools.
  • #15 It’s not just about analysts, it also about pushing intelligence out to the field in mission critical situations.
  • #17 It’s not just about analysts, it also about pushing intelligence out to the field in mission critical situations.
  • #19 It’s not just about analysts, it also about pushing intelligence out to the field in mission critical situations.