Over the past few years, IBM Security developed an insider threat tool built on top of the QRadar SIEM. There was a lot of pain and lessons learned to build this tool; the challenges of data engineering, subject matter expertise and the struggles of productizing a research project. Matthew will explain how the tool works, and shed light on the design and product designs made to enable an Insider Threat tool at scale.

This webinar was presented by Matthew Ouellette works as a Software Architect at IBM Security. His primary role is to lead a team of 25+ engineers developing an Insider Threat tool (UBA). Besides UBA, he is engaged with many other QRadar teams (dashboarding, visualizations, reporting) and research projects (like CIC). Before doing application development, Matthew worked as an L3 engineer supporting the QRadar SIEM.

——————————-
– To learn more about the Canadian Institute for Cybersecurity watch, https://youtu.be/gYpEeJBZBx8.

#cybersecurityawareness #qradar #siem #dataengineering #Canada

Stay connected with us!
Twitter: https://twitter.com/cic_unb
Facebook: https://fb.me/cicunbca
LinkedIn: https://www.linkedin.com/company/canadian_institute_cybersecurity
Blog: https://cyberdailyreport.com/blog
Website: https://www.unb.ca/cic/

Canadian Institute for Cybersecurity
University of New Brunswick
46 Dineen Drive, Fredericton, NB E3B 9W4 Canada

source