Case Studies Financial Services Innovator Deploys Robotic Decision Automation for 24x7 Security Operations

Edit This Case Study Record

	Financial Services Innovator Deploys Robotic Decision Automation for 24x7 Security Operations

Financial Services Innovator Deploys Robotic Decision Automation for 24x7 Security Operations

Technology Category	Analytics & Modeling - Predictive Analytics Cybersecurity & Privacy - Security Compliance Cybersecurity & Privacy - Network Security
Applicable Functions	Business Operation Quality Assurance
Use Cases	Intrusion Detection Systems Regulatory Compliance Monitoring
Services	System Integration Software Design & Engineering Services
Challenge	Smaller or mid-sized financial services companies face the same security challenges as large banks and major investment firms. No matter its size, any company that processes or stores consumer financial data needs to ensure that information is well protected. This is especially important for organizations that process large volumes of high-value transactions. Our customer, the mortgage and title division of a Fortune 500 home building firm, needed to protect the data of its thousands of customers with a security team of only four full-time employees. To achieve this goal, the team deployed the Respond Analyst side-by-side with their traditional SIEM solution. Comparing the results over the course of a year in which both solutions ingested the same data, they are highly confident that the intelligence and reliability of Robotic Decision Automation has made it possible for them to build a more efficient and cost-effective security program with no loss of detection accuracy. Read More
About Customer	The customer is the mortgage and title division of a Fortune 500 home building firm. This division processes high-value transactions and interacts directly with consumers, making it an attractive target for cyber threats. Despite its small size, the company handles significant volumes of consumer financial data, necessitating robust security measures. The security team consists of only four full-time employees, which presents a challenge in maintaining enterprise-grade information security. The company had previously deployed a traditional Security Information and Event Management (SIEM) platform to meet regulatory compliance requirements and aggregate log data from security sensors across their environment. However, they needed to enhance their security posture and increase coverage and visibility within their environment. Read More
Solution	The organization decided to deploy the Respond Analyst to increase coverage and visibility within its environment. The team aimed to enhance their security posture by introducing east-west traffic monitoring to detect lateral movement across the network, which client-to-server monitoring might have missed. They knew that installing additional detection devices would increase the number of alerts, but with the Respond Analyst, they could handle the expansion cost-effectively. The benefits seen since deploying the Respond Analyst include time savings, cost savings, and continuous improvement of their security program. The security team spends less time tuning the SIEM and can exclude more alerts, knowing that the Respond Analyst will catch anything the SIEM misses. The Respond Analyst essentially added an additional analyst to the team, reviewing the full set of raw log data and not being limited by SIEM rules. This allows human security team members to focus on higher-value tasks, such as threat hunting and investigating potential vulnerabilities. The company plans to continue working with Respond Software to develop additional capabilities within the Respond Analyst and improve the maturity of their security program. Read More Log in to view content
Contents

Technology Category

Analytics & Modeling - Predictive Analytics

Cybersecurity & Privacy - Security Compliance

Cybersecurity & Privacy - Network Security

Applicable Functions

Business Operation

Quality Assurance

Use Cases

Intrusion Detection Systems

Regulatory Compliance Monitoring

Services

System Integration

Software Design & Engineering Services

Challenge

Smaller or mid-sized financial services companies face the same security challenges as large banks and major investment firms. No matter its size, any company that processes or stores consumer financial data needs to ensure that information is well protected. This is especially important for organizations that process large volumes of high-value transactions. Our customer, the mortgage and title division of a Fortune 500 home building firm, needed to protect the data of its thousands of customers with a security team of only four full-time employees. To achieve this goal, the team deployed the Respond Analyst side-by-side with their traditional SIEM solution. Comparing the results over the course of a year in which both solutions ingested the same data, they are highly confident that the intelligence and reliability of Robotic Decision Automation has made it possible for them to build a more efficient and cost-effective security program with no loss of detection accuracy.

About Customer

The customer is the mortgage and title division of a Fortune 500 home building firm. This division processes high-value transactions and interacts directly with consumers, making it an attractive target for cyber threats. Despite its small size, the company handles significant volumes of consumer financial data, necessitating robust security measures. The security team consists of only four full-time employees, which presents a challenge in maintaining enterprise-grade information security. The company had previously deployed a traditional Security Information and Event Management (SIEM) platform to meet regulatory compliance requirements and aggregate log data from security sensors across their environment. However, they needed to enhance their security posture and increase coverage and visibility within their environment.

Solution

The organization decided to deploy the Respond Analyst to increase coverage and visibility within its environment. The team aimed to enhance their security posture by introducing east-west traffic monitoring to detect lateral movement across the network, which client-to-server monitoring might have missed. They knew that installing additional detection devices would increase the number of alerts, but with the Respond Analyst, they could handle the expansion cost-effectively. The benefits seen since deploying the Respond Analyst include time savings, cost savings, and continuous improvement of their security program. The security team spends less time tuning the SIEM and can exclude more alerts, knowing that the Respond Analyst will catch anything the SIEM misses. The Respond Analyst essentially added an additional analyst to the team, reviewing the full set of raw log data and not being limited by SIEM rules. This allows human security team members to focus on higher-value tasks, such as threat hunting and investigating potential vulnerabilities. The company plans to continue working with Respond Software to develop additional capabilities within the Respond Analyst and improve the maturity of their security program.

Impact #1	The security team is spending less time tuning the SIEM, allowing them to focus on higher-value tasks.
Impact #2	The Respond Analyst has effectively added an additional analyst to the team, enhancing their capacity.
Impact #3	The team is now more proactive in threat hunting and investigating potential vulnerabilities.

Impact #1

The security team is spending less time tuning the SIEM, allowing them to focus on higher-value tasks.

Impact #2

The Respond Analyst has effectively added an additional analyst to the team, enhancing their capacity.

Impact #3

The team is now more proactive in threat hunting and investigating potential vulnerabilities.

Benefit #1	160 incidents escalated out of 272M events monitored with 100% accuracy.
Benefit #2	20% increase in security team capability.
Benefit #3	24/7 extended coverage.

Benefit #1

160 incidents escalated out of 272M events monitored with 100% accuracy.

Benefit #2

20% increase in security team capability.

Benefit #3

24/7 extended coverage.

Download PDF Version

Overview

Financial Services Innovator Deploys Robotic Decision Automation for 24x7 Security Operations

Operational Impact

Quantitative Benefit