下载PDF
Rapid7 > 实例探究 > User Monitoring and Log Search: Rapid7 InsightIDR Delivers for UK Investment Bank Evercore
Rapid7 Logo

User Monitoring and Log Search: Rapid7 InsightIDR Delivers for UK Investment Bank Evercore

技术
  • 应用基础设施与中间件 - 数据交换与集成
  • 应用基础设施与中间件 - 数据可视化
  • 网络安全和隐私 - 安全合规
适用行业
  • 金融与保险
适用功能
  • 商业运营
  • 质量保证
服务
  • 系统集成
  • 培训
挑战
Neil Johnson, security manager at Evercore, needed a robust SIEM solution to handle user behavior monitoring and provide comprehensive log search capabilities for data analysis. The existing vulnerability management solution managed by a third party was not meeting their requirements, prompting the need for a more effective solution. The primary drivers for selecting InsightIDR included the ability to alert on anomalous user logins and provide detailed log search functionalities. The head of IT was particularly interested in monitoring user activities to ensure that employee credentials were not compromised.
关于客户
Evercore is a UK-based financial organization with 1,700 employees. As a financial institution, security is of utmost importance due to the sensitive nature of the data they handle, which can potentially impact stock markets. Neil Johnson, the security manager, oversees a smaller security team that relies on efficient and user-friendly security solutions to manage their operations. The organization deals with highly confidential information, necessitating a robust security infrastructure to protect their data and maintain compliance with industry standards.
解决方案
Evercore implemented Rapid7's InsightIDR for incident detection and response, paired with Nexpose for vulnerability management. Johnson was familiar with Rapid7 products from previous roles and quickly set up InsightIDR, which began gathering information within two days. The combination of InsightIDR and Nexpose allowed Evercore to ingest scan results and provide comprehensive security monitoring. InsightIDR's capabilities enabled the security team to monitor user activities, alert on anomalous logins, and perform detailed log searches. The solution also facilitated the creation of custom alerts tailored to Evercore's specific environment, enhancing their security posture.
运营影响
  • InsightIDR enabled Evercore's small security team to efficiently manage alerts and hand them off to the service desk for quick action.
  • The solution allowed for dynamic asset categorization, enabling targeted vulnerability management across different system areas.
  • Customizable alerts and comprehensive log integration provided a complete security picture, enhancing monitoring and response capabilities.
数量效益
  • InsightIDR was set up and gathering information within two days.
  • Evercore's security team consists of a small number of individuals, highlighting the efficiency of the solution.

相关案例.

联系我们

欢迎与我们交流!

* Required
* Required
* Required
* Invalid email address
提交此表单,即表示您同意 IoT ONE 可以与您联系并分享洞察和营销信息。
不,谢谢,我不想收到来自 IoT ONE 的任何营销电子邮件。
提交

Thank you for your message!
We will contact you soon.