Behavioral Analytics: Essential for Battling Data BreachesJuniper's Nick Bilogorskiy Discusses Automating Threat Hunting, Incident Response
What's behind the push for behavioral analytics?
See Also: AI's Impact on SOC Maturity
First, a definition: "I define behavioral analytics as a product that helps incident responders correlate data from multiple sources and save time in the response workflow," says Nick Bilogorskiy of Juniper Networks.
Such capabilities are increasingly essential for rapid breach response.
"For responding to incidents, you need to detect them, and then you need to figure out how to mitigate them. For both of those things, you will need accurate threat intelligence," he says. "Behavioral analytics powers both of those things."
In a video interview at the recent Infosecurity Europe conference in London, Bilogorskiy discusses:
- Threat intelligence and incident response;
- Threat hunting;
- Online attack trends, including cryptocurrency-driven threats and exploits of internet-connected devices.
Bilogorskiy is a cybersecurity strategist at Juniper Networks. As a founding member at Cyphort, which was acquired by Juniper Networks in 2016, he created and led the Cyphort Labs Threat Research team. Previously, Bilogorskiy was chief malware expert at Facebook and also held security research leadership positions at Fortinet and Sonicwall.