Download PDF
Rapid7 > Case Studies > User Monitoring and Log Search: Rapid7 InsightIDR Delivers for UK Investment Bank Evercore
Rapid7 Logo

User Monitoring and Log Search: Rapid7 InsightIDR Delivers for UK Investment Bank Evercore

Technology Category
  • Application Infrastructure & Middleware - Data Exchange & Integration
  • Application Infrastructure & Middleware - Data Visualization
  • Cybersecurity & Privacy - Security Compliance
Applicable Industries
  • Finance & Insurance
Applicable Functions
  • Business Operation
  • Quality Assurance
Services
  • System Integration
  • Training
The Challenge
Neil Johnson, security manager at Evercore, needed a robust SIEM solution to handle user behavior monitoring and provide comprehensive log search capabilities for data analysis. The existing vulnerability management solution managed by a third party was not meeting their requirements, prompting the need for a more effective solution. The primary drivers for selecting InsightIDR included the ability to alert on anomalous user logins and provide detailed log search functionalities. The head of IT was particularly interested in monitoring user activities to ensure that employee credentials were not compromised.
About The Customer
Evercore is a UK-based financial organization with 1,700 employees. As a financial institution, security is of utmost importance due to the sensitive nature of the data they handle, which can potentially impact stock markets. Neil Johnson, the security manager, oversees a smaller security team that relies on efficient and user-friendly security solutions to manage their operations. The organization deals with highly confidential information, necessitating a robust security infrastructure to protect their data and maintain compliance with industry standards.
The Solution
Evercore implemented Rapid7's InsightIDR for incident detection and response, paired with Nexpose for vulnerability management. Johnson was familiar with Rapid7 products from previous roles and quickly set up InsightIDR, which began gathering information within two days. The combination of InsightIDR and Nexpose allowed Evercore to ingest scan results and provide comprehensive security monitoring. InsightIDR's capabilities enabled the security team to monitor user activities, alert on anomalous logins, and perform detailed log searches. The solution also facilitated the creation of custom alerts tailored to Evercore's specific environment, enhancing their security posture.
Operational Impact
  • InsightIDR enabled Evercore's small security team to efficiently manage alerts and hand them off to the service desk for quick action.
  • The solution allowed for dynamic asset categorization, enabling targeted vulnerability management across different system areas.
  • Customizable alerts and comprehensive log integration provided a complete security picture, enhancing monitoring and response capabilities.
Quantitative Benefit
  • InsightIDR was set up and gathering information within two days.
  • Evercore's security team consists of a small number of individuals, highlighting the efficiency of the solution.

Related Case Studies.

Contact us

Let's talk!

* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.