UEBA in Enterprise SecOps
6 min readJan 3, 2019
User and Entity Behavior Analytics (UEBA) is the analysis of user and entity behavior data to detect suspicious behaviors associated with security threats. UEBA tools establish baselines where ‘normal’ behavior can be defined and from which unique behavior can be quantified and tracked.
When unusual behavior is detected, the weight of the unusual behavior is determined relative to various entity attributes assigned to…