August 08, 2016

5 Things You Can Do With ThisData

Here at ThisData we're adding new features all the time. Some of them are visible, like new features on the website. Many are invisible, as we add more smarts to our anomaly detection engine. I want to take a minute to look at five of my favourite ways ThisData can make your online business smarter and safer.

#1. Track events for a detailed third-party audit trail

When you strip the system right back, underneath it all is a history of user interactions with your site. There are two great things you can get out of it. The first is helping companies with compliance. Many regulations require business to keep third-party independent audit trails, so using ThisData can easily tick that box. The second is helping system administrators and support people with incident forensics. With a few clicks you can find out who did what when, with detailed context around it.

#2. Show the C-Suite your security improvements

ThisData pulls out key insights from that audit log, and presents them in an easy to use dashboard. The graphs answer the security questions your CIO or CTO is asking. How much risky traffic are we seeing? Why is it risky, and what are we doing about it? How long does it take us to respond? It's all there on the dashboard.

Learn more: "Introducing our security dashboard"

#3. Find seat cheaters

If you sell your product on a per-seat basis, you'll know the pain of seat sharing. Multiple people logging in to your app through one account, so that they only have to pay for one license. Not only does it hurt your bottom line, but it's also less secure, as people are sharing passwords. With ThisData you can see the devices a user is using. When a single user is on your website with 5 different browsers at once, you'll know something's up. A laptop and a phone is OK. Ten laptops? Probably not.

#4. Distribute & automate your security workload

Your system administrators and support team are overworked. Often adding a new security tool will increase that burden, as there are a new set of alerts to deal with. ThisData distributes those security questions to the person who can best answer them - the user. They know if they're really logging in from a city they've never been to before, or if they travelled at the speed of sound to download the latest sales data.

And when the user answers, your sysadmins and support team still don't have to do anything. You'll have created an automated workflow which can automatically log an attacker out, and lock the account. Or if you're using an IDP like OneLogin, you can log the account out of every connected app at once!

Learn more: "Sharing the load with distributed security alerts"

#5. Stop risky users from doing high-impact things

As a business, any friction you put in front of your users for the sake of security will often lead to a less interaction or increased frustration. By using ThisData's Verify API, you can keep the friction to a minimum. As users interact with your site, you keep an eye on their risk level. When you're pretty sure it's the user, you don't need to prompt for a 2FA code unless it's a super high risk action. If you're not so sure, you can still let them do low risk activities, but then challenge them when they try to get at the more sensitive data. And if you know it's almost certainly not them, you can stop them right in their tracks!

Learn more: "Continuous, adaptive authentication with ThisData"

Those are five things you can do with ThisData which I think are really cool, and will improve your security posture. I couldn't cover everything in one list, so keep an eye out for future blog posts. More importantly, what are your favourite things to do with ThisData? Let us know in the comments below!

Tweet this article!

Try ThisData for free!


The future of authentication

Today I’m excited to announce a deal that we have been working on for the past few months and how that will impact the future of contextual ...

Introducing custom security rules

For the past few years we’ve been working hard to create a plug and play adaptive risk engine. We designed our core service using a mix of b ...