About the client
An American Fortune 500 company providing financial services that apart from investment and financial planning include investment banking and asset management.
The challenge
As a financial company, our client is the target of various cyberattacks. Their number increased every day and the existing SOC team was unable to deal with it. Extended average incident resolution time increased the risk of a successful security breach.
What we did
We provided a 24/7 SOC service focused on:
- First and second line support for potential cybersecurity incidents
- Analysis of security incidents from various sources: malicious emails, firewall, antivirus, IDS/IPS, etc.
- Analysis of malicious software on sandbox environments
- Performance of containment actions, e.g. updating firewall rules
Benefits for the client
- Fast identification, analysis and resolution of security incidents significantly increased the client’s security level
- Average incident resolution time was decreased by over 50%
- Quality of incident resolution was improved