See how the effectiveness of a threat hunting team can be improved with analytics.
Evan is a recent graduate from the University of Maryland where he got his degree in Cybersecurity working at as a Threat Hunter at at a mid-sized company that has recently started to get a lot of attention due to some press releases that have indicated the company's overall growth in customer base. This new attention, while beneficial from a financial perspective, has resulted in an increased number of cyber attacks against the company's network.
Evan understands the cyber domain, but the amount of data flowing in is significant and he doesn't have the technical skills to write advanced queries against the data to find the primary culprits. While Evan knows the questions he wants to ask, not being able to compose the right queries severely limits his ability to drill in to the data they're collecting.
The Cyber Threat Hunting team has been getting increased pressure from leadership to identify and mitigate these attacks in fear of losing primary intellectual company property. The entire threat hunting team is in a similar boat as Evan. While a few of them have backgrounds writing SQL queries, not all of them have that particular skillset.
The Director of Cybersecurity brought in ClearQuery to aid the Threat Hunting team in drilling into their data. Although Evan doesn't have a significant technical background, he was able to start drilling into network attack data immediately and identify the core culprits: