Risky Business
Code42 Incydr has created a market space as a SAAS tool for investigating and mitigating this problem that all businesses face.
What is Insider Risk or Insider Risk Management (IRM)?
Incydr Admins can vastly reduce unimportant events by applying this to commonly used URLs.
What are Trusted Domains?
This Code42 offering stores a copy of every selected file in our Cloud, which can be retrievable at a future date.
What is Preservation?
This Code42 component watches, collects, and reports exfiltration events on devices to our Cloud.
What is the Code42 Agent/App/Endpoint?
This team that draws its name from a Star Wars herbivore is responsible for all things AED.
Whether or not they're all "scruffy looking" is not up for debate at this time.
Who are the 'Nerf Herders'?
Code42 Incydr ranks an event's perceived risk with these.
What are Insider Risk Indicators (IRIs)?
This feature can be used to notify Incydr Admins when a risky event is considered Untrusted.
What are Alerts?
This Incydr License Plan offers end user file backup and restore.
What are Incydr Basic and Advanced?
These Code42 products integrate with customer SAAS products to watch, collect, and report exfiltration and download events to the Incydr console.
What are Cloud Detectors?
The team that is responsible for the Audit Log, SecureTokenServer, and API, also shares its name with this transportation service drawn from Norse Myth.
Who is Bifröst?
What is 'Rare Use of Destination'?
This concept covers reducing Code42 security event noise by whitelisting certain vectors, tools, URLs, etc.
What is Defined Trust?
Archive size, complexity, and environmental agent health can be impacted by implementing these.
What are Global Exclusions?
This server component listens for, receives, and routes security events to all of the downstream components that interact with said events.
What is DIS (Domain Ingest Service)?
Contrary to popular belief, this team does not provide hand-crafted fishing tools, but instead builds and maintains the Code42 Admin Console.
Who are the Net Weavers?
This Code42 role meets with both prospects and customers to guide best practices and develop their risk programs, using Code42 as a solution.
Who are Insider Risk Advisors?
This endpoint file event activity category is not evaluated for trust, and is therefore always set to Trusted = False (Not Evaluated).
What is "a download from a browser"? (Non-Salesforce)
A recent exploration and study of V3 architecture has resulted in this component identified as causing issues.
What is Archive Maintenance?
This server component applies "enrichments" or "decorations" to security event, based on their included metadata, to make the events more visible, impactful, and more useful to our Code42 admins.
What is DAT? (Domain Augmentation Tool)
This team, covering Workato, Alerts, and Instructor components, sounds like where you would end up as part of a Metro train nexus.
Who are Central Stations?
This Code42 offering aims to reduce company's risk to their IP / source code / files by providing educational materials about best practices, policies, and keeping your work safe.
What is Code42 Instructor?
Incydr reduces event noise by comparing endpoint activity with Cloud Connectors via this concept.
What is Inferred Trust?
Incydr archives are stored in this cloud-based data-hosting service.
What are Amazon Web Services (AWS) Storage3 (S3) buckets?
This Incydr component takes the enriched/enhanced security events, and feeds them into the downstream event consumers; Watchlists, Alerts, etc.. Additionally, it also prunes out "bogus" events from being seen in the downstream apps.
What is INXS? (Inclusion/eXclusion service)
This team, named after Euclid's Theorem (number theory), holds responsibility for Cloud Detectors and Trust calculations.
Who are the Infinite Primes?