SOC & Incident Response-as-a-Service for Global Manufacturing Company

Client
Our client is a global Heating Ventilator and Air Conditioning (HVAC) manufacturing company headquartered in the US, with an employee base of more than 53,000.

Challenges

Increasing volumes of security alerts.
Legal and regulatory compliance.
Log storage and archiving.
Management of numerous security tools.
Competition for skilled analysts and lack of knowledge transfer between them.
Budget constraints with security incidents becoming more costly.

LTM Solution

24×7 security incident monitoring and management through a Security Operations Center (SOC)
Logs ingestion from all the security devices and the network telemetry
Content creation in line with MITRE ATT&CK framework
Automation playbook development using Security Orchestration Automation and Response (SOAR)
Publication of incident and threat reports
Use case management (commission/decommission, fine-tuning)

Business Benefits

Real-time detection and correlation of all cybersecurity attacks.
20% reduction in noise alerts and overall operation cost of managing security operations program.
60% reduction in Mean Time To Respond and Mean Time To Detect (MTTR, MTTD respectively).
Monthly and weekly publication of threat and risk reports to clients, which helps in making informed decisions.
70% false positives reduced.
Log storage and archiving for compliance.
50% improvement in the security posture of the organization.