Auden Group's Secure Expansion of Financial Services with Rapid7 Insight Platform
Technology Category
- Functional Applications - Enterprise Asset Management Systems (EAM)
- Platform as a Service (PaaS) - Application Development Platforms
Applicable Industries
- Cement
- National Security & Defense
Applicable Functions
- Product Research & Development
Use Cases
- Cybersecurity
- Tamper Detection
Services
- Cloud Planning, Design & Implementation Services
- Cybersecurity Services
About The Customer
Auden Group is a socially responsible financial services company based in Manchester, UK. Founded in 2013, the company is dedicated to building better ways for its customers to borrow and take control of their money. Its first product was a loan platform that makes short-term loans more affordable. Today, the company is developing new banking services designed to improve customers’ financial health and wellbeing. The company's leadership recognized the importance of cybersecurity for the success of its mission and growth, and brought on a six-person security team to manage all aspects of cybersecurity.
The Challenge
Auden Group, a socially responsible financial services company, was looking to expand its product portfolio while ensuring robust cybersecurity. The company's leadership recognized the importance of cybersecurity for the success of its mission and growth. They brought on a six-person security team, led by Philip Wright, Head of InfoSec, to manage all aspects of cybersecurity from prevention to threat response. Wright was particularly concerned about phishing and human error, and wanted to build a program around the NIST cybersecurity framework: identify, protect, detect, respond, and recover. With only a month until the company’s first product launch, Wright’s priority was obtaining the ability to detect suspicious activity. He turned to InsightIDR - Rapid7’s easy to deploy SIEM (Security Information and Event Management) solution that features built-in threat detection.
The Solution
Wright began a POC of InsightIDR within two weeks of starting at Auden. He had never used InsightIDR before, but he had extensive experience with other SIEM solutions and he knew that it would take months to get to a point where one of those products would be fully deployed. He needed a product that had powerful out of the box detection capabilities. InsightIDR features User Behavior Analytics and a number of other detection methodologies, making it the perfect product for Wright’s needs. Once InsightIDR was up and running, Wright turned his attention to automating processes to keep his staff from being overwhelmed. He looked at InsightConnect to address the automation challenge. Auden was able to quickly get more than 30 InsightConnect automation workflows into production. As a result, almost two-thirds of Auden’s weekly alerts are handled automatically, while the remaining one-third are accelerated with automation and alert enrichment.
Operational Impact
Quantitative Benefit
Case Study missing?
Start adding your own!
Register with your work email and create a new case study profile for your business.
Related Case Studies.
Case Study
System 800xA at Indian Cement Plants
Chettinad Cement recognized that further efficiencies could be achieved in its cement manufacturing process. It looked to investing in comprehensive operational and control technologies to manage and derive productivity and energy efficiency gains from the assets on Line 2, their second plant in India.
Case Study
Data Capture for Afghanistan Forces
Electronic equipments on the field of Afghanistan provided information on the status of the vehicle and to identify potential threats surrounding it to the British Force. The monitoring and interpretation of this data requires robust and sophisticated digitization for data capture and communication.
Case Study
Digital Transformation of Atlanta Grout & Tile: An IoT Case Study
Atlanta Grout & Tile, a Tile, Stone & Grout restoration company based in Woodstock, Georgia, was facing challenges with its traditional business model. Despite steady growth over the years, the company was falling behind the web revolution and missing out on the opportunity to tap into a new consumer base. They were using independent software from different vendors for each of their department information and workforce management. This resulted in a lot of manual work on excel and the need to export/import data between different systems. This not only increased overhead costs but also slowed down their response to clients. The company also had to prepare numerous reports manually and lacked access to customer trends for effective business decision-making.
Case Study
Enhancing Security and Compliance in Remitly's Global Money Transfer Service with Fastly
Remitly, an online remittance service, was faced with the challenge of securing its proprietary global transfer network. The company needed a security solution that could meet PCI requirements and protect customers' sensitive transactions through its mobile application. The solution had to be capable of defending against new and emerging attack types without impacting performance. Remitly also had to deal with irregular traffic patterns, such as a sudden spike in account transfers from a small network segment on the Pacific coastline of South America. The company needed to determine in real time whether such traffic indicated an attack or valid requests. A traditional web application firewall (WAF) would not be able to distinguish this traffic, potentially leading to customer frustration if the IP was blacklisted.
Case Study
Major Aerospace Company Automates Asset Management
The O&M division of an aerospace and global security company was using spreadsheets to manually track more than 3,000 assets assigned to students and staff. Maintaining audit trails for this high volume of equipment became increasingly time-consuming and challenging. The chore involved knowing precisely what equipment was on hand, what had been issued, its location and the name of the custodial owner of each item. Every aspect of this task was carried owner of each item. Every aspect of this task was carried out by individuals with spreadsheets. Manually documenting the full lifecycle of each asset added to the burden. This included tracking maintenance requirements and records, incidents and damages, repairs, calibrations, depreciation, and end-of-life data.
