Download PDF
Redscan > Case Studies > Proactive Cyber Security Measures for a Global Shipping Company
Redscan Logo

Proactive Cyber Security Measures for a Global Shipping Company

Technology Category
  • Infrastructure as a Service (IaaS) - Hybrid Cloud
  • Infrastructure as a Service (IaaS) - Public Cloud
Applicable Industries
  • Marine & Shipping
  • National Security & Defense
Applicable Functions
  • Logistics & Transportation
  • Quality Assurance
Use Cases
  • Intrusion Detection Systems
  • Tamper Detection
Services
  • Cybersecurity Services
  • Training
The Challenge

The case study revolves around a global shipping company, one of the largest in the world, with over 135 years of experience in the industry. The company manages around 600 vessels and employs 20,000 people on shore and at sea, through nine ship management centres worldwide. The company was aware of the potential damage cybercrime could inflict on its operations, finances, and reputation, especially after the NotPetya malware attack on Maersk in 2017. The company had some security controls in place, but these did not provide visibility across its complete hybrid cloud infrastructure, including Office 365. They also lacked confidence that attacks would be identified quickly enough to minimise potential damage and disruption. With a relatively small number of IT specialists for its size, the company sought a third party to help with day-to-day threat detection, enable a more proactive approach to cyber security, and mitigate future security risks. They also needed to ensure that appropriate controls and processes were in place to meet all its data protection obligations, including the ability to detect and report breaches in line with the GDPR.

About The Customer

The customer is a global shipping company, one of the largest in the world with over 135 years of experience in the industry. The company provides integrated maritime solutions through nine ship management centres worldwide and manages around 600 vessels. It employs 20,000 people on shore and at sea. The company operates a globally dispersed network and a hybrid infrastructure, with strict compliance responsibilities. It was looking for a solution to enhance its cyber security measures, particularly in relation to the detection of ransomware, and to ensure that appropriate controls and processes were in place to meet its compliance obligations.

The Solution

The shipping company decided to build a long-term partnership with a top-tier Managed Detection and Response (MDR) provider, Redscan. The decision was based on a range of criteria, including technical expertise, approach to threat detection, and quality of customer references. Redscan's Managed Detection and Response service provided the people, technology, and intelligence the company needed to identify and respond to both current and emerging cyber threats, 24/7. The company recognised the value of MDR in improving visibility across its infrastructure and the impact the service would have in driving a reduction in the mean time to detect and respond to threats. Redscan's Security Operations Centre (SOC) professionals operate as a virtual extension of the team, providing high-quality insight and mitigation guidance. To ensure robust security, Redscan also conducts managed vulnerability scanning and CREST-accredited penetration testing to help identify and address vulnerabilities across its global infrastructure.

Operational Impact

  • The shipping company now enjoys enhanced threat visibility across its global network of offices, ships, and public cloud environments. When threats arise, Redscan swiftly identifies them and helps the IT team respond before they can impact business operations. The company has seen a reduction in phishing attacks, thanks to Redscan's integration with their chosen Secure Email Gateway (SEG) solution. Redscan also provides swift incident response, supplying the outcomes and actionable mitigation guidance needed to respond quickly to incidents and significantly reduce the possibility of an attack. The company's vulnerability management has improved, with Redscan using the latest vulnerability scanning tools to identify known vulnerabilities across key assets in the organisation’s environment. This is further enhanced by penetration testing engagements, conducted by Redscan’s team of ethical hackers, designed to identify and help address hidden vulnerabilities across the company’s infrastructure. The company also benefits from increased situational awareness, with monthly service reports from Redscan providing high-quality information to key stakeholders.

Quantitative Benefit

  • Enhanced visibility across the company's global network of offices, ships, and public cloud environments.

  • Swift identification and response to threats before they impact business operations.

  • Reduction in phishing attacks through integration with the organisation’s chosen Secure Email Gateway (SEG) solution.

Related Case Studies.

Case Study
Real-time Networked Sonar System for Ships
A multinational, knowledge-based corporation that delivers marine electronics solutions is utilizing industrial Ethernet technology to help ensure that operations at sea are dependable and optimal. Based in Europe, the company has nearly 4000 employees working in 20 countries around the world, and produces high-tech systems for offshore oil and gas operations, merchant marine systems, and various applications for the defense and aerospace industries. The company produces products and systems used by merchant vessels and offshore installations for positioning, navigation, automation, as well as for surveying and monitoring the seabed, and for fishing vessels and fi sheries research. As one of the major suppliers of high quality marine electronics in the world, their products include chart plotters for yachts, triple redundant dynamic positioning systems for oil drilling rigs, and sonar and instrument systems for scientifi c research vessels. Products used for marine applications must be rugged enough to endure the corrosive effects of salt water, and be able to withstand excessive amounts of vibration and shock. For this reason, the company only uses DNV and GL certified products and components to ensure that their systems can meet the high standards required by the maritime industry.
Learn more
Case Study
Major Aerospace Company Automates Asset Management
The O&M division of an aerospace and global security company was using spreadsheets to manually track more than 3,000 assets assigned to students and staff. Maintaining audit trails for this high volume of equipment became increasingly time-consuming and challenging. The chore involved knowing precisely what equipment was on hand, what had been issued, its location and the name of the custodial owner of each item. Every aspect of this task was carried owner of each item. Every aspect of this task was carried out by individuals with spreadsheets. Manually documenting the full lifecycle of each asset added to the burden. This included tracking maintenance requirements and records, incidents and damages, repairs, calibrations, depreciation, and end-of-life data.
Learn more
© 2015-2024 IoT ONE Limited | Privacy Policy

Contact us

Let's talk!

* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.