Fortinet Acquires Next DLP Strengthens its Top-Tier Unified SASE Solution Read the release
Updated: May 2, 2024   |  

Next DLP Announces First Security Solution to Automatically Map to MITRE Engenuity's Insider Threat Knowledge Base

Go back
The Reveal Platform leverages techniques, mitigations, and observable human indicators to enable faster and more accurate insider risk assessments.

Boston, MA, and London, April 30, 2024 – Next DLP (“Next”), a leader in data loss prevention and insider threat solutions, today announced that their Reveal Platform is the first Insider Risk Management solution to automatically map detection events to the expanded Insider Threat Knowledge Base (ITKB) developed by MITRE Engenuity's Center for Threat-Informed Defense. The ITKB is the first of its kind to offer an evidence-based, multi-organizational and publicly-available compendium of insider threat tactics, techniques, and procedures (TTPs) mapped to MITRE ATT&CK® . This endeavor was developed in partnership between MITRE Engenuity, Next DLP, CrowdStrike, HCA Healthcare, JPMorgan Chase Bank, Lloyds Banking Group, Microsoft Corporation and Verizon Business. 

Digital transformation and hybrid workforces have significantly increased the complexity and volume of insider threats organizations face. Legacy solutions often require extensive manual effort to correlate detection events with specific threat behaviors, resulting in delayed responses, potential security breaches, and data leaks. Reveal addresses this challenge head-on by automatically including ITKB’s Techniques, Tactics and Procedures (TTPs) in its detections, incidents and analyst case reports. 

MITRE_indicators_in_incidents_Next DLP Reveal Platform

“The expansion and refinement of our data repository was made possible by new cases and insights from our cross-sector community of data contributors,” said Jon Baker, director, Center for Threat-Informed Defense, MITRE Engenuity. “Leveraging our knowledge base helps Next to provide defenders with additional intelligence and tools to detect malicious insiders.” 

By incorporating ITKB’s TTPs Reveal delivers a comprehensive narrative of the entire incident lifecycle, from initial reconnaissance and data collection to defense evasion and exfiltration. For the chronically overstretched Security team—a persistent problem given the ongoing security talent shortage—this rich information view maximizes the efficiency of analyst resources, empowering security teams of all sizes to perform at heightened levels.

“With Reveal, and in partnership with MITRE CTID, we are setting a new standard for data protection and insider threat mitigation,” said John Stringer, Head of Product at Next DLP. “By automating the mapping of detections to ITKB's TTPs, we enhance our clients' security posture by demonstrating MITRE ATT@CK coverage and significantly reducing the time and resources required to identify, respond to and report on high-impact insider threat activity.”

 

To learn more about Next’s alignment with the MITRE Insider Threat Knowledge Base, we’ve put together an informative blog post available to read now. We're also going to be presenting alongside MITRE live at RSA on Wednesday, May 8 at 12.30pm PDT in our joint "Empowering Insider Risk Practitioners" session. Learn more and get your diary reminder here

About Next DLP
Next DLP ("Next") is a leading insider risk and data protection solution provider. The Reveal Platform by Next uncovers risk, stops data loss, educates employees, and fulfills security, compliance, and regulatory needs. The company's leadership brings decades of cyber and technology experience from Fortra (f.k.a. HelpSystems), Digital Guardian, Crowdstrike, Forcepoint, Mimecast, IBM, Cisco, and Veracode. Next is trusted by organizations big and small, from the Fortune 100 to fast-growing healthcare and technology companies. For more information, visit www.nextdlp.com.

About The Center for Threat-Informed Defense 
The center is a non-profit, privately funded research and development organization operated by MITRE Engenuity, MITRE’s tech foundation for public good. The center’s mission is to advance the state of the art and the state of the practice in threat-informed defense globally. Comprised of participant organizations from around the globe with highly sophisticated security teams, the center builds on MITRE ATT&CK®, an important foundation for threat-informed defense used by security teams and vendors in their enterprise security operations. Because the center operates for the public good, outputs of its research and development are available publicly and for the benefit of all. For more information, contact ctid@mitre-engenuity.org.  

For Media Inquiries

Touchdown PR
Randy Walker
nextdlp@touchdownpr.com
(512) 599 4015



See how Next DLP protects your employees and prevents data loss

Book a demo Contact us