Prof Bill Buchanan B.Buchanan@napier.ac.uk
Professor
Morgan Stanley: Security Analytics for Insider Threat Monitoring
People Involved
Rich Macfarlane R.Macfarlane@napier.ac.uk
Associate Professor
Dr Naghmeh Moradpoor Sheykhkanloo N.Moradpoor@napier.ac.uk
Lecturer
Project Description
Morgan Stanley is seeking a data science resource / support to augment its Technology Information Risk Team within the Technology and Data division. The key challenge involves an investigation of the potential value of using different analytical approaches to analyse and derive useful insight from different security log source types. This insight would inform the further development of the company’s existing Insider Threat Monitoring Program.
In the security analytics industry today many security vendors adopt a 'one size fits all' approach to security analytics, offering black box solutions which tell the company little about how the analysis is actually being done. The purpose of this initial project is to investigate the value of using different analytical approaches based on log source types and then extend the analysis to look at analytical approaches for combining multiple log sources from different log source types.
The long-term ambition is to develop a detection and response capability that provides greater insight into internal malicious activity to enable the company to be more pro-active in the area of detection (e.g. user access linked to systems, data and entitlement activity) and shape an intelligent automated response. The key internal driver for such a capability is enhanced risk management.
| Type of Project | Project |
|---|---|
| Status | Project Complete |
| Funder(s) | Data Lab |
| Value | £19,974.00 |
| Project Dates | Apr 1, 2017 - Nov 30, 2017 |
| Partner Organisations | Morgan Stanley & Co International PLC |
You might also like
Project Quaisten Jun 1, 2014 - Aug 1, 2015
To develop a question generator API to pull information from the web, based on defined questions types, confirming correct answers and implementing a process of question difficulty based on metrics about the individual question type and possible answ...
Read More about Project Quaisten.
KTP Farrpoint Oct 13, 2014 - Oct 12, 2016
To develop the prototype for a next-generation security platform with advanced detection capabilities.
e-FRAIL - Early detection of FRAilty and Illness Oct 1, 2015 - Dec 31, 2016
Scottish Frailty Framework with Mobile Device Capture and Big Data Integration. The proposed innovation will develop and extend the current work into Frailty, with the long term focus on encompassing not only clinical factors, but economic, environme...
Read More about e-FRAIL - Early detection of FRAilty and Illness.
Fragment Finder Mar 27, 2015 - Jan 18, 2016
Fragment Finder (FF) enables a new, high-speed approach to digital forensics. It is unique in that it will build a more efficient technical architecture for the creation, storage and use of hash signatures in digital forensics. The key focus of FF is...
Read More about Fragment Finder.
Kulio Education Characters - online platform Mar 15, 2015 - Oct 31, 2015
Kulio Ltd and Edinburgh Napier University are planning to collaborate to create a new innovative application consisting of Kulio education characters. Children throughout local authorities are already familiar with these characters through the intera...
Read More about Kulio Education Characters - online platform.