Open Raven Case Studies Apiture Integrates Data Security into SecOps with Open Raven

Edit This Case Study Record

	Apiture Integrates Data Security into SecOps with Open Raven Open Raven

Apiture Integrates Data Security into SecOps with Open Raven

Open Raven

Technology Category	Cybersecurity & Privacy - Cloud Security Infrastructure as a Service (IaaS) - Cloud Computing Infrastructure as a Service (IaaS) - Cloud Storage Services
Applicable Industries	Finance & Insurance
Applicable Functions	Business Operation
Use Cases	Cybersecurity
Services	Cloud Planning, Design & Implementation Services Cybersecurity Services
Challenge	Apiture migrated to the cloud for improved service delivery speed and quality, but this move presented a challenge for CISO Sean Darragh. He needed to maintain his ability to protect data from attacks and compliance risks. However, the rate and variety at which infrastructure (IaC) and data change in the cloud meant that legacy, non-native, DLP, and governance tools could not keep pace. This reduced visibility rippled throughout SecOps, reducing the confidence in their overall security posture. The security gaps created and accentuated by the cloud set Sean on a search for an automated, data-centric approach to security to solve three problems: Restoring visibility with automated asset discovery and data classification, streamlining risk assessment, detection, and response, and using data insights to define and drive support for proactive defense hardening. Read More
About Customer	Apiture is a leading provider of digital banking solutions. It provides financial institutions with the integrations, capabilities, and resources that banks and credit unions have not had access to in the past. Offering two differentiated digital experience platforms, Apiture Xpress and Apiture Open, Apiture develops innovative solutions that can be used by financial institutions of any size. Apiture serves hundreds of financial institutions in the United States market. The company is headquartered in Wilmington, North Carolina, with offices in Austin, Texas. Apiture operates in the financial technology industry and uses Amazon Web Services (AWS), S3 as its cloud service provider. It adheres to the Center for Internet Security (CIS) framework and is compliant with SSAE 18, SOC2 Type II (CIS) standards. Its examining bodies include FFIEC. Read More
Solution	Apiture adopted the Open Raven Data Security Platform to gain complete and automated visibility into data types and locations. This information allows them to better manage the attack surface and compliance requirements with precision alerting and accelerated incident response. Open Raven simplified how Apiture answered fundamental questions with automated discovery, mapping, and data classification across an AWS Organization. Open Raven enabled Apiture’s team to apply policies to specific data types regardless of location rather than particular services or storage pools. These data-centric policies automated discovering risks like rogue assets and misplaced data with improper controls. The built-in Splunk-based search, reporting, and analysis allow teams to incorporate data findings from Open Raven into SPL queries, reports, and dashboards. Read More Log in to view content
Contents

Technology Category

Cybersecurity & Privacy - Cloud Security

Infrastructure as a Service (IaaS) - Cloud Computing

Infrastructure as a Service (IaaS) - Cloud Storage Services

Applicable Industries

Finance & Insurance

Applicable Functions

Business Operation

Use Cases

Cybersecurity

Services

Cloud Planning, Design & Implementation Services

Cybersecurity Services

Challenge

Apiture migrated to the cloud for improved service delivery speed and quality, but this move presented a challenge for CISO Sean Darragh. He needed to maintain his ability to protect data from attacks and compliance risks. However, the rate and variety at which infrastructure (IaC) and data change in the cloud meant that legacy, non-native, DLP, and governance tools could not keep pace. This reduced visibility rippled throughout SecOps, reducing the confidence in their overall security posture. The security gaps created and accentuated by the cloud set Sean on a search for an automated, data-centric approach to security to solve three problems: Restoring visibility with automated asset discovery and data classification, streamlining risk assessment, detection, and response, and using data insights to define and drive support for proactive defense hardening.

About Customer

Apiture is a leading provider of digital banking solutions. It provides financial institutions with the integrations, capabilities, and resources that banks and credit unions have not had access to in the past. Offering two differentiated digital experience platforms, Apiture Xpress and Apiture Open, Apiture develops innovative solutions that can be used by financial institutions of any size. Apiture serves hundreds of financial institutions in the United States market. The company is headquartered in Wilmington, North Carolina, with offices in Austin, Texas. Apiture operates in the financial technology industry and uses Amazon Web Services (AWS), S3 as its cloud service provider. It adheres to the Center for Internet Security (CIS) framework and is compliant with SSAE 18, SOC2 Type II (CIS) standards. Its examining bodies include FFIEC.

Solution

Apiture adopted the Open Raven Data Security Platform to gain complete and automated visibility into data types and locations. This information allows them to better manage the attack surface and compliance requirements with precision alerting and accelerated incident response. Open Raven simplified how Apiture answered fundamental questions with automated discovery, mapping, and data classification across an AWS Organization. Open Raven enabled Apiture’s team to apply policies to specific data types regardless of location rather than particular services or storage pools. These data-centric policies automated discovering risks like rogue assets and misplaced data with improper controls. The built-in Splunk-based search, reporting, and analysis allow teams to incorporate data findings from Open Raven into SPL queries, reports, and dashboards.

Impact #1	Automated discovery and data classification restored visibility into data types and locations, allowing better management of the attack surface and compliance requirements.
Impact #2	Data-centric policies automated the discovery of risks like rogue assets and misplaced data with improper controls.
Impact #3	The built-in Splunk-based search, reporting, and analysis allowed teams to incorporate data findings from Open Raven into SPL queries, reports, and dashboards.

Impact #1

Automated discovery and data classification restored visibility into data types and locations, allowing better management of the attack surface and compliance requirements.

Impact #2

Data-centric policies automated the discovery of risks like rogue assets and misplaced data with improper controls.

Impact #3

The built-in Splunk-based search, reporting, and analysis allowed teams to incorporate data findings from Open Raven into SPL queries, reports, and dashboards.

Download PDF Version

Overview

Apiture Integrates Data Security into SecOps with Open Raven

Operational Impact