Case Study – Investment Management

Strengthening a global investment manager’s threat-led defense through unified visibility

DOWNLOAD THE PDF

About the client

The client is a financial asset management company with a large IT presence and a broad, international customer base. The client underwent a demerger process from a large, international banking group. Prior to the demerger, the client’s entire IT and cyber services were being managed by the holding company.

As a newly independent entity, the client sought to strengthen its cyber defense posture and gain greater visibility into its exposure across digital assets and global operations.

The client’s challenge

Following the demerger, the client assumed responsibility for managing its own IT and security services. The client sought a trusted vendor who could quickly transition their security monitoring service without any disruption to business operations. The client also wanted help in defining a cyber defense strategy and building fully customized cyber defense operations focused on proactive exposure management and threat-led defense.

CyberProof was selected as the preferred provider to build and operate the following capabilities and services:

Security Event Monitoring and Response
SIEM platform and content management
Tailored Threat Intelligence
Incident Response retainer
Endpoint Detection and Response
Vulnerability Assessment and Penetration Testing
Staff augmentation with security specialists and SMEs

In searching for a partner that could provide end-to-end support, the client felt that CyberProof was the right fit to meet their existing and future security needs, with the ability to leverage the scale and capabilities of its parent organization, UST.

Benefits

Single pane of glass view for analysts providing real-time alerts and recommendations for IT and security incidents across all environments.
Quicker response as CyberProof provides context that strengthens triage and identification of attack patterns, and facilitates faster, more effective response.
Greater operational efficiency through the effective integration and orchestration of multiple security tools and workflows.
Enhanced exposure management by leveraging the platform’s collaboration and automation abilities to dramatically reduce Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR).

Our solution

CyberProof set up a new security event monitoring infrastructure and seamlessly transitioned existing configurations, policies, and data – ensuring service continuity. A number of existing security tools were transitioned, ensuring that the client’s existing investments were maintained while optimizing and enhancing their capabilities.

CyberProof built additional capabilities leveraging specialist tools, technologies, and processes supported by expert resources to further enhance the client’s cyber detection and response abilities and improve visibility into potential exposures. The CyberProof service delivery platform was used to ensure the orchestration of tools including Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), and Tailored Threat Intelligence solutions. This provided the client with a consolidated and prioritized view of enriched alerts and validated incidents – enabling the operations team to act on real issues faster and make data-driven decisions, empowering the team with more proactive threat-led defense.

The platform’s ChatOps and automation features provided the client’s security staff with a collaborative environment to communicate seamlessly with internal teams and our analysts in real-time when needing to solve complex issues.

CyberProof’s managed security services enhanced the client’s overall cyber defense capabilities—covering security event monitoring and response, Advanced Threat Intelligence, Incident Response, and Penetration Testing. The deployment also included log analytics for advanced visibility across machine data, supporting endpoint protection, detection, and exposure management.

Finally, CyberProof provided continuous access to skilled security specialists through a staff augmentation model, ensuring end-to-end cyber support and assisting with the client’s ongoing cloud and digital transformation initiatives.

Results

CyberProof provided the client with a single pane of glass with real-time alerts, validated incidents and response recommendations – providing consistency across many different applications. The solution improved the client’s operational efficiency by integrating threat intelligence, automation, and exposure management into daily operations. This reduced MTTD and MTTR, improving their cybersecurity readiness.

Speak with an expert

Explore how CyberProof can help you anticipate, prevent, and mitigate ever-evolving cyberattacks in investment management, specifically for hybrid and cloud-native environments.

SPEAK WITH AN EXPERT

BUSINESS NEED

INDUSTRY

90% increase in visibility after deploying Microsoft XDR with CyberProof

Organization saves millions on data ingestion & storage following cloud migration

International logistics company sees 40% savings in security operations costs