CheckPoint Software Case Studies SE2 Leverages CloudGuard for Enhanced Security in Dynamic Cloud Environment

Edit This Case Study Record

	SE2 Leverages CloudGuard for Enhanced Security in Dynamic Cloud Environment CheckPoint Software

SE2 Leverages CloudGuard for Enhanced Security in Dynamic Cloud Environment

CheckPoint Software

Technology Category	Cybersecurity & Privacy - Application Security Cybersecurity & Privacy - Cloud Security
Applicable Industries	Finance & Insurance National Security & Defense
Applicable Functions	Product Research & Development Quality Assurance
Use Cases	Supply Chain Visibility Tamper Detection
Services	Cloud Planning, Design & Implementation Services Testing & Certification
Challenge	SE2, a third-party administrator of life insurance contracts and annuities, faced the challenge of securing a complex, multi-account AWS environment. The company needed to gain visibility and enforce governance without inhibiting business-critical development. The task was to secure and manage both on-premises and cloud environments with the same team. The move to the cloud gave SE2 agility and resilience, but it also meant securing more, faster, in a constantly changing cloud environment while ensuring the company's security posture stayed strong. The company had to manage 500 EC2 instances with several hundred security groups and multiple users authorized to make configuration changes. Read More
About Customer	SE2 is an insurance technology and services firm based in Topeka, KS. The company enables insurers to quickly build and launch new products that support digital transformation. SE2 currently administers nearly 2 million active life insurance and annuity policies on behalf of its clients. It also has $100 billion in assets under administration with more than 200,000 new business applications annually. SE2 recognized the opportunity for digital transformation early, building a DevOps organization and business practice focused on rapid solution development and deployment for insurance clients. Read More
Solution	SE2 chose Check Point CloudGuard Cloud Security Posture Management (CSPM) to simplify governance. CloudGuard CSPM automated governance across multi-cloud assets and services, enabling the SE2 team to easily visualize and assess security posture while providing misconfiguration detection and enforcing security best practices and compliance frameworks. The SE2 team also used Check Point Infinity Network Detection and Response (NDR) capabilities to augment cloud security with continual visibility and alerting. Infinity NDR provided non-signature-based threat detection, visibility, and investigation capabilities for cloud deployments without affecting business traffic. It alerted the team to hidden threats, network reconnaissance, lateral movement attempts, data exfiltration, and other tactics used by malicious actors. Read More Log in to view content
Contents

Technology Category

Cybersecurity & Privacy - Application Security

Cybersecurity & Privacy - Cloud Security

Applicable Industries

Finance & Insurance

National Security & Defense

Applicable Functions

Product Research & Development

Quality Assurance

Use Cases

Supply Chain Visibility

Tamper Detection

Services

Cloud Planning, Design & Implementation Services

Testing & Certification

Challenge

SE2, a third-party administrator of life insurance contracts and annuities, faced the challenge of securing a complex, multi-account AWS environment. The company needed to gain visibility and enforce governance without inhibiting business-critical development. The task was to secure and manage both on-premises and cloud environments with the same team. The move to the cloud gave SE2 agility and resilience, but it also meant securing more, faster, in a constantly changing cloud environment while ensuring the company's security posture stayed strong. The company had to manage 500 EC2 instances with several hundred security groups and multiple users authorized to make configuration changes.

About Customer

SE2 is an insurance technology and services firm based in Topeka, KS. The company enables insurers to quickly build and launch new products that support digital transformation. SE2 currently administers nearly 2 million active life insurance and annuity policies on behalf of its clients. It also has $100 billion in assets under administration with more than 200,000 new business applications annually. SE2 recognized the opportunity for digital transformation early, building a DevOps organization and business practice focused on rapid solution development and deployment for insurance clients.

Solution

SE2 chose Check Point CloudGuard Cloud Security Posture Management (CSPM) to simplify governance. CloudGuard CSPM automated governance across multi-cloud assets and services, enabling the SE2 team to easily visualize and assess security posture while providing misconfiguration detection and enforcing security best practices and compliance frameworks. The SE2 team also used Check Point Infinity Network Detection and Response (NDR) capabilities to augment cloud security with continual visibility and alerting. Infinity NDR provided non-signature-based threat detection, visibility, and investigation capabilities for cloud deployments without affecting business traffic. It alerted the team to hidden threats, network reconnaissance, lateral movement attempts, data exfiltration, and other tactics used by malicious actors.

Impact #1	The implementation of CloudGuard CSPM and Infinity NDR has brought about significant operational benefits for SE2. The solution has minimized risk without compromising on the company's agility and resilience. Developers can now make necessary changes to security groups temporarily for testing new functionalities or products, with CloudGuard CloudBots remediation reverting it to the original state until the security team can review the request and evaluate risk. This has made security an enabler, allowing DevOps teams to do their best work without compromising on the company's security posture. Compliance has been simplified with the CloudGuard CSPM NIST compliance check identifying anything not aligned with the standard and automatically remediating it or alerting the team. The team now has complete visibility across the on-premises and cloud environments, with automatic alerting and remediation handling events transparently.

Impact #1

The implementation of CloudGuard CSPM and Infinity NDR has brought about significant operational benefits for SE2. The solution has minimized risk without compromising on the company's agility and resilience. Developers can now make necessary changes to security groups temporarily for testing new functionalities or products, with CloudGuard CloudBots remediation reverting it to the original state until the security team can review the request and evaluate risk. This has made security an enabler, allowing DevOps teams to do their best work without compromising on the company's security posture. Compliance has been simplified with the CloudGuard CSPM NIST compliance check identifying anything not aligned with the standard and automatically remediating it or alerting the team. The team now has complete visibility across the on-premises and cloud environments, with automatic alerting and remediation handling events transparently.

Benefit #1	Automated access and remediation to remove development roadblocks
Benefit #2	Simplified compliance and alignment with NIST standards
Benefit #3	Improved visibility into anomalous traffic and hidden threats

Benefit #1

Automated access and remediation to remove development roadblocks

Benefit #2

Simplified compliance and alignment with NIST standards

Benefit #3

Improved visibility into anomalous traffic and hidden threats

Download PDF Version

Overview

SE2 Leverages CloudGuard for Enhanced Security in Dynamic Cloud Environment

Operational Impact

Quantitative Benefit