Download PDF
Redscan > Case Studies > Proactive Cyber Security Measures for a Global Shipping Company
Redscan Logo

Proactive Cyber Security Measures for a Global Shipping Company

Technology Category
  • Infrastructure as a Service (IaaS) - Hybrid Cloud
  • Infrastructure as a Service (IaaS) - Public Cloud
Applicable Industries
  • Marine & Shipping
  • National Security & Defense
Applicable Functions
  • Logistics & Transportation
  • Quality Assurance
Use Cases
  • Intrusion Detection Systems
  • Tamper Detection
Services
  • Cybersecurity Services
  • Training
The Challenge

The case study revolves around a global shipping company, one of the largest in the world, with over 135 years of experience in the industry. The company manages around 600 vessels and employs 20,000 people on shore and at sea, through nine ship management centres worldwide. The company was aware of the potential damage cybercrime could inflict on its operations, finances, and reputation, especially after the NotPetya malware attack on Maersk in 2017. The company had some security controls in place, but these did not provide visibility across its complete hybrid cloud infrastructure, including Office 365. They also lacked confidence that attacks would be identified quickly enough to minimise potential damage and disruption. With a relatively small number of IT specialists for its size, the company sought a third party to help with day-to-day threat detection, enable a more proactive approach to cyber security, and mitigate future security risks. They also needed to ensure that appropriate controls and processes were in place to meet all its data protection obligations, including the ability to detect and report breaches in line with the GDPR.

About The Customer

The customer is a global shipping company, one of the largest in the world with over 135 years of experience in the industry. The company provides integrated maritime solutions through nine ship management centres worldwide and manages around 600 vessels. It employs 20,000 people on shore and at sea. The company operates a globally dispersed network and a hybrid infrastructure, with strict compliance responsibilities. It was looking for a solution to enhance its cyber security measures, particularly in relation to the detection of ransomware, and to ensure that appropriate controls and processes were in place to meet its compliance obligations.

The Solution

The shipping company decided to build a long-term partnership with a top-tier Managed Detection and Response (MDR) provider, Redscan. The decision was based on a range of criteria, including technical expertise, approach to threat detection, and quality of customer references. Redscan's Managed Detection and Response service provided the people, technology, and intelligence the company needed to identify and respond to both current and emerging cyber threats, 24/7. The company recognised the value of MDR in improving visibility across its infrastructure and the impact the service would have in driving a reduction in the mean time to detect and respond to threats. Redscan's Security Operations Centre (SOC) professionals operate as a virtual extension of the team, providing high-quality insight and mitigation guidance. To ensure robust security, Redscan also conducts managed vulnerability scanning and CREST-accredited penetration testing to help identify and address vulnerabilities across its global infrastructure.

Operational Impact
  • The shipping company now enjoys enhanced threat visibility across its global network of offices, ships, and public cloud environments. When threats arise, Redscan swiftly identifies them and helps the IT team respond before they can impact business operations. The company has seen a reduction in phishing attacks, thanks to Redscan's integration with their chosen Secure Email Gateway (SEG) solution. Redscan also provides swift incident response, supplying the outcomes and actionable mitigation guidance needed to respond quickly to incidents and significantly reduce the possibility of an attack. The company's vulnerability management has improved, with Redscan using the latest vulnerability scanning tools to identify known vulnerabilities across key assets in the organisation’s environment. This is further enhanced by penetration testing engagements, conducted by Redscan’s team of ethical hackers, designed to identify and help address hidden vulnerabilities across the company’s infrastructure. The company also benefits from increased situational awareness, with monthly service reports from Redscan providing high-quality information to key stakeholders.

Quantitative Benefit
  • Enhanced visibility across the company's global network of offices, ships, and public cloud environments.

  • Swift identification and response to threats before they impact business operations.

  • Reduction in phishing attacks through integration with the organisation’s chosen Secure Email Gateway (SEG) solution.

Related Case Studies.

Contact us

Let's talk!

* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.