Download PDF
Rapid7 > Case Studies > US Naval Academy Alumni Association & Foundation Relies on Rapid7 UserInsight for Identifying Compromise and Risky User Behavior
Rapid7 Logo

US Naval Academy Alumni Association & Foundation Relies on Rapid7 UserInsight for Identifying Compromise and Risky User Behavior

Technology Category
  • Cybersecurity & Privacy - Identity & Authentication Management
  • Cybersecurity & Privacy - Network Security
  • Cybersecurity & Privacy - Security Compliance
Applicable Functions
  • Business Operation
  • Facility Management
Use Cases
  • Intrusion Detection Systems
  • Cybersecurity
  • Remote Asset Management
Services
  • System Integration
  • Training
The Challenge
In a non-profit organization, cost-effectiveness is essential. The USNA Alumni Association & Foundation needed to build a security architecture to protect personal information of alumni. Ken Kurz, the Director of Information Services, faced the challenge of managing an infrastructure that supports 70,000 living alumni without leveraging government resources. The primary concern was to ensure the security of personal information while operating within the constraints of a non-profit budget. Ken's extensive background in information assurance and high-level security engineering made him well-suited for the task, but the challenge remained significant due to the unique constraints of the non-profit sector.
About The Customer
The US Naval Academy Alumni Association & Foundation is a non-profit organization dedicated to supporting the alumni of the United States Naval Academy. With a membership of 70,000 living alumni, the organization plays a crucial role in maintaining connections and providing support to its members. The organization operates independently of government resources, which presents unique challenges in terms of funding and resource allocation. Ken Kurz, the Director of Information Services, brings extensive experience in information assurance and security engineering to the organization, having previously worked for the NSA. His role involves managing the IT infrastructure and ensuring the security of personal information for the alumni.
The Solution
Rapid7 UserInsight was chosen to provide situational awareness into users and common attack patterns. The solution offers real-time visibility of compromised user credentials and worldwide authenticated users, which is vital for securing the population of remote officers. UserInsight helps in detecting and investigating attacks leveraging compromised credentials, user impersonation, and lateral attacker movement. It provides a full picture of activity in one place and offers automated analysis to identify anomalous behavior, saving security teams time and improving accuracy. Additionally, UserInsight's geolocation information alerts the security team if there are multiple failed ingress attempts from unexpected locations, helping to quickly identify and respond to potential threats.
Operational Impact
  • UserInsight provides a comprehensive view of user activity, consolidating information that would otherwise be scattered across systems.
  • The solution offers automated analysis to identify anomalous behavior, improving the accuracy and efficiency of security teams.
  • Geolocation information helps in quickly identifying and responding to potential threats from unexpected locations.
Quantitative Benefit
  • 76% of network intrusions involve compromised credentials, highlighting the importance of UserInsight's capabilities.
  • The solution identified user credentials involved in data breaches, such as the Stratfor Global Intelligence breach in 2011.

Related Case Studies.

Contact us

Let's talk!

* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.