FEATURED USE CASE
Automate user permissions and access controls in response to insider risk indicators
Most employees take files with them when they leave for a new job – and without access controls, sensitive data could be put at risk of being exfiltrated. When an employee puts in their notice or when there is suspicious file movement or user behavior indicative of insider risk, security teams must be able to quickly take action to protect corporate data from being exposed or exfiltrated.
When a high-fidelity alert is triggered, Code42’s integration with Okta will automatically add user(s) to a ‘suspicious-activity’ group in Okta with lower access permissions. Furthermore, a ticket is created in an organization’s IT ticketing system (i.e. Jira) documenting the alert details, prompting the security team to investigate the incident.
Organizations can reduce insider risk exposure and speed response by automating access controls and streamlining an investigation of a departing employee or high-risk user who is potentially exfiltrating data.