AD
Alex Dawkins
Network and Security Engineering

Coursework Case Study

KnowBe4 Insider Threat Analysis

Analytical case study of a 2024 insider threat scenario involving identity theft, deepfake-enabled hiring deception, and attempted malware pivoting via remote access.

Insider Risk ATT&CK Mapping 25-Minute Response Window

Case Analysis Focus

This work examined how modern identity fraud and remote onboarding workflows can be abused. The analysis combined incident timeline review, ATT&CK mapping, root-cause assessment, and control recommendations for both immediate and strategic improvement.

Threat Chain Breakdown

Mapped access and execution behaviours including valid account abuse and remote service exposure patterns.

T1078 T1133 T1059

Root Cause Review

Identified operational gaps between HR and IT workflows, plus verification weaknesses in remote hiring pipelines.

Process Risk Governance Identity Assurance

Mitigation Strategy

Built a layered plan covering stronger identity verification, endpoint behavioural monitoring, and zero-trust controls.

Zero Trust EDR Analytics Continuous Vetting

Skills Demonstrated

  • Threat intelligence synthesis from multiple public and technical sources.
  • ATT&CK-driven analytical reporting with clear control mapping.
  • Risk communication for non-technical stakeholders and decision-makers.
  • Practical understanding of insider-threat detection and prevention design.
View GitHub Repository Back to Projects