Identity Threat Detection and Response

Multi-Factor Authentication

An authentication method requiring two or more verification factors to gain access to a resource.

Biometric Authentication

Using unique biological characteristics like fingerprints, facial features, or iris patterns to verify identity.

Privileged Access Management

Security solutions that control and monitor access for users with elevated permissions to critical systems.

Deception Technology

Security solutions that deploy decoy assets such as fake servers, credentials, and data to detect, misdirect, and analyse attackers who have breached perimeter defences.

Secrets Management

The secure storage, distribution, rotation, and auditing of sensitive credentials such as API keys, tokens, passwords, and certificates used by applications and services.

Phishing-Resistant Authentication

Authentication methods such as FIDO2 passkeys and hardware security keys that are immune to phishing attacks because credentials are cryptographically bound to the legitimate service.

An approach integrating security practices within the DevOps process, making security a shared responsibility.

An advanced firewall that goes beyond traditional packet filtering to include application awareness and intrusion prevention.

A system that monitors network traffic or system activities for malicious activity or policy violations.

An entity that issues digital certificates, verifying the identity of organisations and encrypting communications.

A web security vulnerability allowing attackers to inject malicious scripts into web pages viewed by other users.

The practice of reporting security vulnerabilities to software vendors so they can be fixed before public exploitation.

An attack where the attacker secretly relays and potentially alters communication between two parties.

Malicious software designed to disrupt, damage, or gain unauthorised access to computer systems.