Gaining organizational effectiveness
The three key organizational governance steps to maximizing the value that is delivered by Interact are as follows:
- Develop a dedicated change management process. See Change management.
- Validate cross-functional alignment. See Organizational alignment.
- Track operational maturity. See Operational metrics.
Develop a tailored, dedicated change management process for data consumption, taking into account the new capabilities provided by Tanium.
- Update SLAs with elevated expectations, including data consumption configuration and maintenance.
- Identify key resources in the organization to review and approve changes to data consumption to ensure minimal unexpected or unapproved changes.
- Identify maintenance windows for various data consumption scenarios to maximize uptime.
- Create a Tanium steering group (TSG) for data consumption activities, to expedite reviews and approvals of processes that align with SLAs.
Successful organizations use Tanium across functional silos as a common platform for high-fidelity endpoint data and unified endpoint management. Tanium provides a common data schema that enables security, operations, and risk/compliance teams to assure that they are acting on a common set of facts that are delivered by a unified platform.
In the absence of cross-functional alignment, functional silos often spend time and effort in litigating data quality instead of making decisions to increase awareness of data consumption at all levels of the organization.
Managing data consumption successfully includes operationalization of the technology and measuring success through key benchmarking metrics. The four key processes to measure and guide operational maturity of your Tanium Interact program are as follows:
|Usage||How and when Tanium Interact is used in your organization|
|Automation||How automated Tanium Interact is|
|Functional Integration||How integrated Tanium Interact is, across IT security, IT operations, and IT risk/compliance teams|
|Reporting||How automated Tanium Interact is and who the audience of data consumption is|
Use the following table to determine the maturity level for Tanium Interact in your organization.
|Process||Usage||Interact is installed and one or more users have access and can ask basic questions||
Saved questions created and in use / custom dashboards created that use saved questions / Question Builder in use for advanced questions
Parameterized sensors understood and in use
Visibility into real-time hardware and software inventory
Leverage cache data through Tanium Data Service
Basic role-based access control (RBAC) configured
Ad-hoc / scheduled actions in use / deploying actions
Importing custom content for specific use cases
Managing and registering sensors in Tanium Data Service
Optional: Action approval implemented (control before deploying an action)
Advanced question syntax in use (such as the sensor column filter, ‘in’ operator, and regular expressions)
Export RBAC details to audit user management
Custom RBAC implemented, as desired
Authoring custom sensors and custom packages
|Automation||Manual||Automated; Tanium Data Service data collection and purging||Automated; saved questions and scheduled actions||Automated; tuning Tanium Data Service purging of transient computers by computer group||Automated; tuning Tanium Data Service purging of transient computers by computer group|
|Functional integration||Tanium Core with Tanium Interact is integrated across Security / Compliance / Operations|
|Reporting||Unused||Ad hoc; reporting tailored to stakeholders at request||Automated through Tanium Connect; reporting tailored to stakeholders on cadence||Automated through Tanium Connect; reporting tailored to stakeholders ranging from Operator to Executive||Automated through Tanium Connect; reporting tailored to stakeholders ranging from Operator to Executive|
Last updated: 5/30/2023 2:31 PM | Feedback