Citrix Analytics Security Service
Defining the Citrix Analytics Security solution
Background
– Enhancing cyber security is always top-of-mind for IT teams.
– Traditional Perimeter-based solutions are not always sufficient to detect all threats.
– Internal threats expand beyond the datacenter.
Design Goal
Design a comprehensive Security Analytics solution based on AI and Machine Learning that would analyze user behavior to quickly identify, detect and mitigate internal & external threats. Solution would utilize existing data from Citrix solutions.
Business Goals
– Tap into the Analytics market.
– To increase value to Citrix Cloud Suite, offering a true cloud integrated solution.
– Amplify Citrix security message and build credibility.
– Inject AI and ML into Citrix products, making it a key differentiator from competitors.
My Role
Principal Designer working closely with Program Management and engineering to create initial concepts, to then to lead the Security Analytics design initiative going forward.
Users
– Security Analysts: Diagnoses and monitors threats.
– Security Engineers: Responds to threats.
– Security Operators: Monitors threats.
– Citrix Admins (SMB): Do it all.
Design | Security Analytics Prototype Recording
Designed all areas of the service: FTU, Data source onboarding, Dashboard, alerts, watchlists, user profiles, risk timelines, risk indicator details and actions per Citrix solution, Etc.
– Enhancing cyber security is always top-of-mind for IT teams.
– Traditional Perimeter-based solutions are not always sufficient to detect all threats.
– Internal threats expand beyond the datacenter.
Design Goal
Design a comprehensive Security Analytics solution based on AI and Machine Learning that would analyze user behavior to quickly identify, detect and mitigate internal & external threats. Solution would utilize existing data from Citrix solutions.
Business Goals
– Tap into the Analytics market.
– To increase value to Citrix Cloud Suite, offering a true cloud integrated solution.
– Amplify Citrix security message and build credibility.
– Inject AI and ML into Citrix products, making it a key differentiator from competitors.
My Role
Principal Designer working closely with Program Management and engineering to create initial concepts, to then to lead the Security Analytics design initiative going forward.
Users
– Security Analysts: Diagnoses and monitors threats.
– Security Engineers: Responds to threats.
– Security Operators: Monitors threats.
– Citrix Admins (SMB): Do it all.
Design | Security Analytics Prototype Recording
Designed all areas of the service: FTU, Data source onboarding, Dashboard, alerts, watchlists, user profiles, risk timelines, risk indicator details and actions per Citrix solution, Etc.
Final Designs | Screens Stills
Design Explorations | Security Dashboard Evolution
The goal of the dashboard was to provide quick live insights of the company workspace, giving security analyst a quick way to recognize and mitigate user threats.
Design Explorations | Security User Profile Evolution
The goal of the user profile was to provide a progressive way to show relevant information to mitigate a threat, allowing the admin to dig deeper as needed.
Research | Initial Internal Security Admins Interviews | Needs Summary
Worked closely with research team to perform initial stakeholder interviews to determine needs and pain points:
– Identify risky behavior FAST.
– Better explanation of a score system.
– Help prioritizing possible threats.
– Dig deeper for information as needed (Who, what, when, and where).
– Track ongoing or suspicious incidents.
Worked closely with research team to perform initial stakeholder interviews to determine needs and pain points:
– Identify risky behavior FAST.
– Better explanation of a score system.
– Help prioritizing possible threats.
– Dig deeper for information as needed (Who, what, when, and where).
– Track ongoing or suspicious incidents.
Research | Focus Group & Poster Questions Findings
Worked closely with research team to perform concept validation and initial concepts feedback:
– 72% (20 of 28) of participants showed high interest on the new service concept.
– Customers need introduction to main concepts: data sources, risk score, risk Indicators.
– New features requested (Alerts, rules, 3rd party integration, dashboard customization, etc)
Outcome
– Citrix successfully launched the Analytics service with User Security. Service quickly expanded to Performance and operations analytics.
– Citrix built an entire design team around the Analytics solutions.
– Service success created a lot of internal buzz. making different teams wanting to integrate with the service.
– First service to include AI and ML in their product.