Rapid7 Case Studies Enhancing Security Visibility and Reducing Risk: A Case Study on Alpina Group's Adoption of Rapid7

Edit This Case Study Record

	Enhancing Security Visibility and Reducing Risk: A Case Study on Alpina Group's Adoption of Rapid7 Rapid7

Enhancing Security Visibility and Reducing Risk: A Case Study on Alpina Group's Adoption of Rapid7

Rapid7

Technology Category	Cybersecurity & Privacy - Intrusion Detection Platform as a Service (PaaS) - Application Development Platforms
Applicable Industries	Finance & Insurance National Security & Defense
Use Cases	Cybersecurity Tamper Detection
Services	Cybersecurity Services
Challenge	Alpina Group, a Netherlands-based insurance technology firm, was facing a significant challenge in improving the maturity of its in-house security program. The company was on a steep growth curve, expanding its workforce from 350 to 550 employees in just two years. This rapid growth also led to an increase in the number of IT assets to manage and secure. The insurance sector is a popular target for attackers due to the wealth of sensitive personal and financial information they hold. Alpina Group recognized the need to enhance its visibility into the threat landscape and its own IT infrastructure to proactively manage risk. The company's incumbent SIEM platform created a blind spot after a year-long implementation, as it was too complex for the small security team to operate effectively. Security Officer Joost Dubbelman was tasked with finding vulnerability management and incident detection solutions that could be managed by a small team, provide enhanced insight, and help reduce risk. Read More
About Customer	Alpina Group is a Netherlands-based insurance technology firm with a history dating back over 100 years. Founded as an insurance broker in 1909, the family-run business has since evolved into a services-led organization. The company has recently experienced a steep growth curve, expanding its workforce from 350 to 550 employees in just two years. This rapid growth has also led to an increase in the number of IT assets to manage and secure. As a key cog in the insurance supply chain, Alpina Group holds a wealth of sensitive personal and financial information, making it a prime target for attackers. Recognizing the need to enhance its security visibility and reduce risk, the company sought out effective, easy-to-deploy solutions that could be managed by a small team. Read More
Solution	After running a detailed proof-of-concept program with several providers, Dubbelman chose Rapid7’s InsightVM vulnerability management offering. This solution provided a more expansive set of scan results than rival options and was a better fit for Alpina Group's flat organizational structure. InsightVM provided more insight into the assets and vulnerabilities present at any given moment. The solution was later supplemented with Rapid7's InsightIDR threat detection and response tool. This combination allowed the team to see what was happening in their network and who was doing what. The visual reporting and Live Dashboards features in InsightVM were particularly useful in providing a clear picture of risk, allowing the team to review and either accept or remediate. The decision to choose InsightIDR was made easier because Rapid7 and its Insight Agent were already on board. It took just a day and a half to get up-and-running with cloud-hosted InsightIDR, compared to the year it took to implement the previous SIEM solution. Read More Log in to view content
Contents

Technology Category

Cybersecurity & Privacy - Intrusion Detection

Platform as a Service (PaaS) - Application Development Platforms

Applicable Industries

Finance & Insurance

National Security & Defense

Use Cases

Cybersecurity

Tamper Detection

Services

Cybersecurity Services

Challenge

Alpina Group, a Netherlands-based insurance technology firm, was facing a significant challenge in improving the maturity of its in-house security program. The company was on a steep growth curve, expanding its workforce from 350 to 550 employees in just two years. This rapid growth also led to an increase in the number of IT assets to manage and secure. The insurance sector is a popular target for attackers due to the wealth of sensitive personal and financial information they hold. Alpina Group recognized the need to enhance its visibility into the threat landscape and its own IT infrastructure to proactively manage risk. The company's incumbent SIEM platform created a blind spot after a year-long implementation, as it was too complex for the small security team to operate effectively. Security Officer Joost Dubbelman was tasked with finding vulnerability management and incident detection solutions that could be managed by a small team, provide enhanced insight, and help reduce risk.

About Customer

Alpina Group is a Netherlands-based insurance technology firm with a history dating back over 100 years. Founded as an insurance broker in 1909, the family-run business has since evolved into a services-led organization. The company has recently experienced a steep growth curve, expanding its workforce from 350 to 550 employees in just two years. This rapid growth has also led to an increase in the number of IT assets to manage and secure. As a key cog in the insurance supply chain, Alpina Group holds a wealth of sensitive personal and financial information, making it a prime target for attackers. Recognizing the need to enhance its security visibility and reduce risk, the company sought out effective, easy-to-deploy solutions that could be managed by a small team.

Solution

After running a detailed proof-of-concept program with several providers, Dubbelman chose Rapid7’s InsightVM vulnerability management offering. This solution provided a more expansive set of scan results than rival options and was a better fit for Alpina Group's flat organizational structure. InsightVM provided more insight into the assets and vulnerabilities present at any given moment. The solution was later supplemented with Rapid7's InsightIDR threat detection and response tool. This combination allowed the team to see what was happening in their network and who was doing what. The visual reporting and Live Dashboards features in InsightVM were particularly useful in providing a clear picture of risk, allowing the team to review and either accept or remediate. The decision to choose InsightIDR was made easier because Rapid7 and its Insight Agent were already on board. It took just a day and a half to get up-and-running with cloud-hosted InsightIDR, compared to the year it took to implement the previous SIEM solution.

Impact #1	The adoption of Rapid7’s InsightVM and InsightIDR has significantly improved Alpina Group's visibility into the threat landscape and its own IT infrastructure. The tools have helped the company proactively manage risk and spot potential risky behavior. The visual reporting and Live Dashboards features in InsightVM have been particularly useful in providing a clear picture of risk, allowing the team to review and either accept or remediate. The log search functionality has also been praised for helping generate clear situational awareness to work out what’s going on and whether further action needs to be taken. The company is now focused on reducing the large volume of vulnerabilities currently flagged for attention, and migrating off of legacy Windows Servers. The team is also planning to set up Remediation Projects in InsightVM to help prioritize vulnerabilities going forward.

Impact #1

The adoption of Rapid7’s InsightVM and InsightIDR has significantly improved Alpina Group's visibility into the threat landscape and its own IT infrastructure. The tools have helped the company proactively manage risk and spot potential risky behavior. The visual reporting and Live Dashboards features in InsightVM have been particularly useful in providing a clear picture of risk, allowing the team to review and either accept or remediate. The log search functionality has also been praised for helping generate clear situational awareness to work out what’s going on and whether further action needs to be taken. The company is now focused on reducing the large volume of vulnerabilities currently flagged for attention, and migrating off of legacy Windows Servers. The team is also planning to set up Remediation Projects in InsightVM to help prioritize vulnerabilities going forward.

Benefit #1	InsightIDR was implemented in just a day and a half, compared to a year for the previous SIEM solution.
Benefit #2	The solution allowed for effective management of security with a small team, saving on the cost of additional personnel.
Benefit #3	The Insight Agent was already on board, reducing the cost and time required for implementation.

Benefit #1

InsightIDR was implemented in just a day and a half, compared to a year for the previous SIEM solution.

Benefit #2

The solution allowed for effective management of security with a small team, saving on the cost of additional personnel.

Benefit #3

The Insight Agent was already on board, reducing the cost and time required for implementation.

Download PDF Version

Overview

Enhancing Security Visibility and Reducing Risk: A Case Study on Alpina Group's Adoption of Rapid7

Operational Impact

Quantitative Benefit