DGS CyLABs: Identity Threat Detection and Response (ITDR)

To protect the identity and securing corporate structures, in the ITDR cyber security laboratory (CyLAB) the DGS experts experiment new Threat Detection techniques for early detection of attack attempts and implementation of containment actions.

The informatic systems based on Digital Identity represent an opportunity both for companies and people, in terms of agility, efficiency and safety. However, we need to consider any critical issues related to identity management, for istance their importance in the Metaverse and future evolutions of information systems, and what the theft of a digital identity can mean in these contexts that rely precisely on virtual identity. The use of smart working has also accelerated cloud adoption, and the resulting dematerialization of the corporate perimeter has expanded the attack surface, making Identity protection increasingly central.

In this scenario, it is now of paramount importance to keep an eye on the access policies and privileges granted to each individual user through his or her Digital Identity. A proper identity management lifecycle, combined with continuous monitoring of the proper use of identities, is a winning factor in countering cyber attacks.

Identity Threat Detection and Response is a process that starts from the continuous analysis of identity attack attempts (Identity Breach) to the containment of the attack and the resolution of related problems.

The purpose of our ITDR CyLAB is to protect identities (human and non-human) including in public Clouds (AWS, Azure, GCP) from Account/credential TakeOver (ATO) cyber attacks by testing new Threat Detection techniques for early detection of attack attempts and implementation of containment actions, including through the adoption of the Zero Trust paradigm.

The Zero Trust paradigm, which has long since become one of the benchmarks at DGS for the design of security solutions, assumes that any entity or object cannot be deemed trustworthy a priori, but must still be susceptible to a verification and authentication process.

Specifically, as part of the ITDR laboratory, our cyber experts deal with Identity security in the processes of:

  • Governance
  • Provisioning
  • Privileged Account Management 
  • Secrets Management
  • Entitlement Management 

The results of the ITDR laboratory, through the continuous modeling and implementation of Identity Threat Detection processes, enable DGS to concretely support companies in implementing a state-of-the-art cybersecurity strategy that can protect privacy and with it Identities.

Find out what other areas we operate in at our CyLABs, CLICK HERE.