Building on our latest three blog posts in our series outlining how to manage and reduce your organization’s cyber risk, we wanted to show you how these principles (of reducing cyber risk) apply in a real-world case study. To do so, we’ll quickly drill down into detection and response capabilities that can reduce your overall risk.
Infocyte customers have the capability to identify, isolate and contain threats across all hosts. Response Readiness is a measurement of the technical ability for the organization to detect and respond to a future incident or attack. Infocyte also provides independent evaluation outside of the existing security stack.
Consider this case study of a government customer with extremely sensitive data under our Command Subscription (managed detection and response) during the first four months of our engagement. We worked closely with the customer’s security team to dramatically lower the cyber risk and overall exposure…
Customer’s Threats Over Time
Customer’s Overall Risk Score Progress
- Government network with sensitive data (including PII).
- The customer had good protection tools but lacked proactive threat hunting and incident response expertise.
- First three months we identified, resolved, and addressed the root cause of over 80 threats and/or unwanted applications.
- The organization now demonstrates significantly higher IR readiness and network hygiene.
More from our blog
Despite the rich data provided by SIEMs, organizations find themselves drowning in false positives, making it difficult to focus on high-priority events. This problem of alert fatigue prevents cyber security teams from identifying and addressing real threats – impacting small teams with no SOC, large enterprise teams with a SOC, and MSSPs overseeing the security for many SOCs/customers.Read More »
In 2018, the U.S. Healthcare Industry Remained a Hot Target for Data Breaches. Last year alone, over 15 million patient records were affected with an average of one data breach occurring every 24 hours in the healthcare industry. It goes without saying that hackers and cyber attackers are finding ways around/through/past security defenses—exploiting vulnerabilities and…Read More »
A Brief History of Forensic State Analysis Prior to starting Infocyte, our co-founders, Chris Gerritz and Russ Morris, created the first enterprise-scoped threat hunting team for the entire U.S. Department of Defense. Their teams were responsible for hunting, detecting, and responding to highly sophisticated attacks across an 800,000-node network. With virtually unlimited resources and access…Read More »