Case Studies
From legacy onprem to a modern cloud SIEM
Overview
Analytics & Modeling - Predictive Analytics Cybersecurity & Privacy - Security Compliance | |
Construction & Infrastructure | |
Business Operation | |
Fraud Detection | |
Cloud Planning, Design & Implementation Services Cybersecurity Services System Integration | |
Operational Impact
A modern cloud SIEM that’s easy to deploy and use. The SOC team’s first big win with Cloud SIEM was the ability to centrally see everything across the organization’s environment and user-friendly features, including more than 600 out-of-the-box rules. That made it easy for the security team to ramp up and get started within two hours. | |
Invaluable insights to manage threat investigations. Cloud SIEM delivers significant improvement for the SOC team in handling threat investigations. With the solution’s cloud-native architecture, the team no longer has to worry about disc space for log ingestion or latency in obtaining search results. With Cloud SIEM’s advanced analytics, Knauf gets millions of threat signals distilled down to insights for the SOC team to focus on. | |
Flexibility to support new use cases. Now that Knauf has a strong SIEM foundation, the SOC is ready to pursue new use cases with the Sumo Logic platform. Next, the team plans to automate incident response actions for the more common and easy response workflows, expediting the team’s remediation efforts and advancing the company’s security posture. In addition, the team will leverage Cloud SIEM to adopt proactive threat hunting and threat intelligence to introduce cyber fusion by converging all security practices. Adding cyber fusion functions, including fraud detection and vulnerability management, will empower Knauf with a unified approach to dealing with potential threats by bridging team functions and fostering inter-team collaboration. | |
Quantitative Benefit
Easy onboarding in only two hours. | |
600+ out-of-the-box rules to swiftly respond to security incidents. | |