Vectra AI Inc. Case Studies Vectra AI

Edit This Case Study Record

	Vectra AI Vectra AI Inc.

Vectra AI

Vectra AI Inc.

Technology Category	Analytics & Modeling - Machine Learning
Applicable Functions	Discrete Manufacturing
Use Cases	Cybersecurity Intrusion Detection Systems
Services	Data Science Services
Challenge	The company initially implemented Vectra AI to protect some of its legacy systems that did not support encryption at rest. This was necessary to meet compliance requirements. The company then extended the use of Vectra AI to monitor other devices and servers within its network. The company was looking for a solution that could detect anomalous behavior and reduce the time spent on looking into logs. The company also wanted a solution that could triage threats and correlate them with compromised host devices. The company was dealing with about 300 events a day, with about 10 to 15 events requiring investigation. Read More
About Customer	The customer is a company that has implemented Vectra AI to monitor and protect its network. The company has a small team of security analysts who work with Vectra alerts. The company also has a number of information security officers who have a read-only role and can view alerts and logs if they need more information. The company initially implemented Vectra AI to protect some of its legacy systems that did not support encryption at rest. This was necessary to meet compliance requirements. The company then extended the use of Vectra AI to monitor other devices and servers within its network. Read More
Solution	The company implemented Vectra AI, an artificial intelligence solution that monitors the network for anomalous behavior. Vectra AI reduces the time spent on looking into logs by alerting the team to any device that is behaving strangely. The solution also triages threats and correlates them with compromised host devices. The company also purchased Recall, an addition to Vectra AI, which provides more information for investigation. Recall provides the metadata for network traffic, allowing the team to investigate further if a detection is made. The solution captures network metadata at scale and enriches it with security information. Read More Log in to view content
Contents

Technology Category

Analytics & Modeling - Machine Learning

Applicable Functions

Discrete Manufacturing

Use Cases

Cybersecurity

Intrusion Detection Systems

Services

Data Science Services

Challenge

The company initially implemented Vectra AI to protect some of its legacy systems that did not support encryption at rest. This was necessary to meet compliance requirements. The company then extended the use of Vectra AI to monitor other devices and servers within its network. The company was looking for a solution that could detect anomalous behavior and reduce the time spent on looking into logs. The company also wanted a solution that could triage threats and correlate them with compromised host devices. The company was dealing with about 300 events a day, with about 10 to 15 events requiring investigation.

About Customer

The customer is a company that has implemented Vectra AI to monitor and protect its network. The company has a small team of security analysts who work with Vectra alerts. The company also has a number of information security officers who have a read-only role and can view alerts and logs if they need more information. The company initially implemented Vectra AI to protect some of its legacy systems that did not support encryption at rest. This was necessary to meet compliance requirements. The company then extended the use of Vectra AI to monitor other devices and servers within its network.

Solution

The company implemented Vectra AI, an artificial intelligence solution that monitors the network for anomalous behavior. Vectra AI reduces the time spent on looking into logs by alerting the team to any device that is behaving strangely. The solution also triages threats and correlates them with compromised host devices. The company also purchased Recall, an addition to Vectra AI, which provides more information for investigation. Recall provides the metadata for network traffic, allowing the team to investigate further if a detection is made. The solution captures network metadata at scale and enriches it with security information.

Impact #1	Vectra AI has helped the company reduce the time it takes to respond to attacks. The solution sends an email to the company's SIEM solution, which then generates emails and tickets. This has greatly reduced the company's measurable baseline.
Impact #2	The solution has also improved the company's security with a minimum amount of work. The company now has 10 to 15 events that it needs to investigate each day.
Impact #3	The solution has also helped the company detect misconfigurations of servers and applications. These are not security risks, but they need to be addressed.

Impact #1

Vectra AI has helped the company reduce the time it takes to respond to attacks. The solution sends an email to the company's SIEM solution, which then generates emails and tickets. This has greatly reduced the company's measurable baseline.

Impact #2

The solution has also improved the company's security with a minimum amount of work. The company now has 10 to 15 events that it needs to investigate each day.

Impact #3

The solution has also helped the company detect misconfigurations of servers and applications. These are not security risks, but they need to be addressed.

Benefit #1	The solution has reduced the time between an alert coming up and a ticket being generated to 15 to 20 minutes.
Benefit #2	The solution has increased the number of tickets the company has to deal with, but these are tickets for things the company needs to do.

Benefit #1

The solution has reduced the time between an alert coming up and a ticket being generated to 15 to 20 minutes.

Benefit #2

The solution has increased the number of tickets the company has to deal with, but these are tickets for things the company needs to do.

Download PDF Version

Overview

Vectra AI

Operational Impact

Quantitative Benefit