下载PDF
Rapid7 > 实例探究 > Rapid7 InsightVM and InsightIDR Integrate to Drive 60% Time Savings and Ease Compliance for Energie Suedbayern
Rapid7 Logo

Rapid7 InsightVM and InsightIDR Integrate to Drive 60% Time Savings and Ease Compliance for Energie Suedbayern

技术
  • 网络安全和隐私 - 端点安全
  • 网络安全和隐私 - 网络安全
  • 分析与建模 - 预测分析
适用行业
  • 公用事业
适用功能
  • 商业运营
  • 质量保证
用例
  • 入侵检测系统
  • 预测性维护
  • 远程资产管理
服务
  • 系统集成
  • 云规划/设计/实施服务
挑战
One of Benjamin Nawrath’s biggest challenges is maintaining compliance with Germany’s IT Security Act (ITSG), which became law in 2015 but applies from July 2017 onward. The law requires all critical infrastructure providers to run an advanced cybersecurity program designed to ensure the availability, integrity, authenticity, and confidentiality of their IT infrastructure. It also demands that organizations regularly provide certification proving their compliance. Failure to do so could result in a fine of hundreds of thousands Euro. With a large and complex environment to monitor (including 2,000 IP addresses), limited IT staff resources, a growing compliance burden, and ever-determined hackers to keep at bay, Benjamin Nawrath needed robust technology solutions to help overcome these major challenges.
关于客户
Energie Suedbayern (ESB) is a Southern Bavarian energy provider that supplies natural gas and electricity to 120,000 households in the south of Germany. As the largest operator of its kind in the region, ESB employs around 350 people, with 14 staff members working alongside Benjamin Nawrath in IT. The company operates in the energy/utilities industry and has a significant presence in Germany’s large energy sector, making it a sizeable target for cyber threats. ESB has been proactive in adopting advanced cybersecurity measures to protect its IT infrastructure and ensure compliance with regulatory requirements.
解决方案
ESB IT had been using Rapid7’s leading vulnerability management solution Nexpose previously, so expanding their portfolio with Rapid7 was a natural choice. To fill the need for an incident detection and response solution, a Proof of Concept (PoC) with Rapid7 InsightIDR was quickly and easily set up to provide that all-important confirmation of the product’s capabilities. ESB moved forward with the combination of InsightVM (the evolution of Rapid7 Nexpose) and InsightIDR—both powered by the Rapid7 Insight cloud—to offer industry-leading vulnerability management and incident detection and response. Benjamin Nawrath states that both solutions were easy to set up and maintain, and that they provide “one agent to rule them both”—simplifying management and centralizing reporting. ESB has been a keen adopter of cloud services, so there were no roadblocks in terms of delivery. And since it was for security purposes, the monitoring of IP addresses was given the green light by representatives from the German works council.
运营影响
  • InsightIDR has saved ESB IT time and helped them respond to incidents far more quickly. Unifying SIEM, user behavior analytics (UBA), and endpoint detection and response (EDR), it was designed from the ground up to detect intrusions as early on in the attack chain as possible, leaving nowhere for the bad guys to hide.
  • The easy-to-manage portal allows Benjamin Nawrath to keep an eye on any unusually high values, if remote users are logging in from other countries, or any other metrics that might indicate non-compliance. Email alerts complete the picture and are also sent to other members of the IT team, allowing them to respond if anything malicious is found.
  • Rapid7’s InsightVM automatically collects, monitors, and analyzes any vulnerabilities on the corporate network, featuring advanced analytics and reporting to allow users to prioritize and remediate risk. The agents have also helped save time over regular scans, and the benefit of tight integration with InsightIDR has boosted efficiency by enabling highly accurate correlations between incidents and vulnerabilities.
数量效益
  • The combined power of InsightIDR and InsightVM has saved Benjamin Nawrath as much as 60% of his and his team’s time.

相关案例.

联系我们

欢迎与我们交流!

* Required
* Required
* Required
* Invalid email address
提交此表单,即表示您同意 IoT ONE 可以与您联系并分享洞察和营销信息。
不,谢谢,我不想收到来自 IoT ONE 的任何营销电子邮件。
提交

Thank you for your message!
We will contact you soon.