Fasoo RiskView (FRV) is a user and entity behavior analytics (UEBA) solution that helps organizations identify, assess, and prioritize security risks related to unstructured data usage. It is designed for security, copliance and IT teams seeking to identify abnormal behaviors and potential data exposure by analyzing file usage patterns.
FRV leverages comprehensive logging and metadata collected through Fasoo's security platform to map how sensitive documents are access, shared, printed, or transferred. Rather than relying on traditional DLP-based alerts or endpoint monitoring, FRV provides a contextual understanding of file interactions based on user identity, file classification, and organizational hierarchy.
FRV is used to support insider threat management, security audits, and data protection strategy optimization. It is particularly suited for organizations managing sensitive business data. By visualizing document flows and usage anomalies through an intuitive dashboard, FRV allows stakeholders to make informed decisions on security policy adjustments, access rights, and incident response priorities.
Key Features:
- Detect Event Anomalies: FRV detects event anomalies, such as logins with user IDs of former employees, a given user logging in from multiple locations simultaneously, or unauthorized users retaining an excessive numbers of sensitive files.
- Monitor File-based Risks: FRV monitors file based risks, such as unauthorized users' attempts to decrypt confidential files.
- Monitor User-based Risks: FRV monitors user based risks, such as decrypting files more frequently than usual, printing more files than usual after regular business hours, or sending files to external recipients more than usual.
FFasoo RiskView applies sophisticated rule-based modelling to data sources to establish normal patterns of behavior and flag supicious activities that indicate sufficient risk to merit concern and potential intervention by business management.
