ANALYSIS PRODUCTS

layout styles

Watchtower Behavioral Analytics System

The Watchtower Behavioral Analytics System allows organizations to leverage high-volume and high-complexity collections by integrating data across a variety of information domains to support automated analysis, threat discovery and prioritization, risk prediction capabilities and incident management capabilities.

The system is architected to integrate quickly and reliably with existing Intelligence Community data collections and management systems, and built upon a configuration which has been accredited for use within the Department of Defense and Intelligence Community networks at all classification levels.

Whole Person Oversight - Human-Focused Analysis

Audit collected from computer activity, real-world event data, and personnel records are fused into an all-source risk profile which enables “whole person” risk review.


Whole Process Management - Analyst-Focused Implementation

Successful operation of an Insider Threat Program (ITP) requires several system capabilities including data integration, risk modeling, workflow management, and incident tracking.

The Watchtower approach is to provide a complete end-to-end ITP-focused solution which enables analysts to track activity at each step, from detection to resolution, within a single pane of glass. This avoids the challenge of integrating multiple systems and allows for a coherent and auditable workflow for analysts.

Product Features

Standards Focused

Pre-configured to understand the most common US Government data formats, meet national Insider Threat program (e.g. full compliance with ICS 700-2) and operating requirements (e.g. PKI enablement).

Proven System Security

The system is currently authorized to operate at all classification levels by multiple US Government agencies. User activity auditing compliant with ICS 500-27 and exportable in the DNI IC Audit.XML format.

Native UAM Integration

The Watchtower system was designed from its inception to fully integrate with commercial User Activity Monitoring (UAM) solutions commonly deployed by US Government agencies.

Incident Management

Includes the capability to track activity, collaborate across the analysis team, and exchange incident details with external teams.

Rocket Science Included

Watchtower ships with 135 models (and growing!) focused on finding high risk trends and evaluating the probability of high-risk future behavior.

Detailed Data Protections

Data records can be associated with an unlimited number of custom groups to enable record-level and person-level restrictions on data access.

Integrated Backup Capability

Watchtower enabled painless system recovery or transition to new infrastructure by capturing the entire system state within a single data structure that can be exported to file or external database.

Image Analysis

Display, organization, and categorization of image data for volume review by analysts to detect document images which otherwise would not be detected, or image access in violation of policy.