October 2006
Intermediate to advanced
304 pages
5h 47m
English
“Observe your enemies, for they first find out your faults.” | ||
| --Antisthenes | ||
A large consulting company with offices in Spain found that some of its sensitive information was leaking out to competitors, and they were losing business. They had an open policy for Internet use and didn’t want to punish employees by imposing restricted access upon them because of a few possible malicious insiders. Since one of their requirements was to reduce the negative impact on employees, but still catch the insiders, they decided to implement the following strategy.
They used their ESM to monitor activity by having it look for suspicious events. Those users who created these suspicious events were added ...