From the course: Securing Software as a Service (SaaS)
Join today to access over 24,600 courses taught by industry experts.
Detect SaaS cyberattacks
From the course: Securing Software as a Service (SaaS)
Detect SaaS cyberattacks
- No matter how many protect controls we have in place conventional wisdom dictates that attackers will successfully circumvent those measures. That means your job is to catch them quickly before any damage is done. This is the purpose of the detect core function, and in SaaS, it's pretty straightforward. Let's look at how we do it. The top of the list is foundational. Establish a baseline of normal activity. To effectively detect deviations from normal activity, you first establish a baseline of what is considered normal behavior within your environment. This can include things like normal login patterns, network traffic patterns, and resource utilization. With SaaS, you are heavily dependent on your identity solution here. If you've eliminated local access, like we discussed in the protect video, your only front door to manage is your SSO solution. Determine what normal is so that you can catch anything abnormal.…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.