It’s been a couple of months or so since Citrix Analytics was first made commercially available as part of the new Citrix Workspace offerings. These new Workspace packages help Citrix IT administrators stay out in front of their dynamic workforces by delivering modern, intelligent workspaces that accommodate users’ new styles of working. In addition to making Workspace delivery more efficient and high-performing, Citrix customers are also looking for new ways to increase their security postures. With machine learning and the practical application of advanced analytics, Citrix IT administrators now have access to sophisticated new methods to detect and prevent malicious user behavior spanning Citrix deployments.

Here’s a look at what some early adopter customers are doing with Citrix Analytics.

A large financial services firm has an initiative to enable users’ access to their systems using their own devices (BYOD – bring your own device – support). The financial services firm will not be responsible for managing the end devices, but must deliver controlled access to their systems and maintain high security around their infrastructure.

Several Citrix offerings support this solution, including the new Citrix Access Control service. Providing this access also comes with concerns around PII (personally identifiable information) and DLP (data loss protection) for very sensitive information. Using Citrix Analytics, the customer plans to monitor user access across the Citrix environment from login through file sharing. Citrix Analytics will be able to provide insights into device types (ensuring compliance with IT standards), sites visited, files downloaded and more.

With Citrix Content Collaboration connected to a DLP engine, files can be tagged as sensitive. When accessed by users, that information gets added to other data collected across the Citrix portfolio to determine individual risk scores. IT administrators will then be able to take appropriate action on these users if they are deemed to be compromising corporate assets or doing other harm. Eventually, this firm would like to extend this same access to partners and use Citrix Analytics to assess risk of individual partner users connected to their systems.

Another Citrix customer is in the travel industry. They have many of their users — some are third-party contractors, all of them are remote workers. This customer will be using Citrix Analytics to uncover risky access to content and web sites and take quick action to prevent harmful outcomes, such as downloading malware or loss of sensitive files. Using Citrix Analytics across Citrix Virtual Apps and Desktops in combination with Citrix Content Collaboration provides a more holistic view of users compared to existing on-premises solutions.

With Citrix Access Control, Citrix Analytics can detect “Attempts to Access Blacklisted URL.” Once discovered, a number of actions can be taken, including locking devices, disabling the user and notifying the administrator.

Figure 1. Various conditions that can be detected across the Citrix portfolio

A third customer in the healthcare industry is well underway with user and entity behavior security analytics. The Citrix IT administrators work closely with the healthcare entity’s enterprise security team to implement security standards. Citrix Analytics has enabled the IT team to more easily adhere to corporate security standards by identifying risky users well before they cause any serious damage to the organization. The ability to assess all users in their respective environments (international and domestic) with a single offering — one that tailors results to individual behaviors — has been a tremendous win. Eliminating false positives while surfacing just the few risky users has been a significant time saver.

These are just a few Citrix customers using Citrix Analytics to drive efficacy and security across their organizations. If you would like to see more, check out this short video:

Go directly to and start a trial of Citrix Analytics today!