Changing the rules of the game for cybersecurity
Company Size
1,000+
Region
- America
Country
- United States
Product
- Respond Analyst
- Palo Alto Networks IDS/IPS
- Vectra Threat Detection Platform
- Nessus Vulnerability Scanner
- ProofPoint Email Security Gateway
Tech Stack
- Open Source IDS
- Suricata
- Next-Gen Firewall
- DNS Filtering
- Email Gateway Tools
Implementation Scale
- Enterprise-wide Deployment
Impact Metrics
- Customer Satisfaction
- Employee Satisfaction
- Innovation Output
- Productivity Improvements
Technology Category
- Cybersecurity & Privacy - Endpoint Security
- Cybersecurity & Privacy - Intrusion Detection
- Cybersecurity & Privacy - Network Security
- Cybersecurity & Privacy - Security Compliance
Applicable Industries
- Education
Applicable Functions
- Business Operation
- Facility Management
Use Cases
- Intrusion Detection Systems
Services
- Software Design & Engineering Services
- System Integration
- Training
About The Customer
The University of Oklahoma (OU) is a prominent higher education institution with a large and diverse user base. It serves over 30,000 students and 7,000 full-time faculty and staff, in addition to providing user accounts to alumni, retirees, and distance learners. This results in approximately 90,000 user accounts accessing the university's IT infrastructure from over 120,000 devices each week during peak periods. The university's security team, led by Chief Information Security Officer Aaron Baillio, consists of 10 full-time employees and 3-4 student security analysts. The team is responsible for protecting the university's institutional data and guarding users against internal and external threats. Despite the small size of the team, they are committed to leveraging advanced technologies to enhance their security operations and provide valuable training opportunities for students interested in cybersecurity.
The Challenge
The University of Oklahoma faced a significant challenge in managing the vast number of security events generated by their network sensors. With over 80 million security events and 350 alerts per week, the small security team, consisting of 10 full-time employees and 3-4 student security analysts, struggled to monitor and respond to these events effectively. The high volume of false positives further complicated their efforts, making it nearly impossible to identify and address genuine threats promptly. The university's IT infrastructure, accessed by approximately 90,000 user accounts from over 120,000 devices, required a robust and efficient security solution to protect against internal and external threats.
The Solution
To address the overwhelming volume of security events, the University of Oklahoma implemented the Respond Analyst, an intelligent decision engine that automates the analysis and triage of network security data. This solution mimics a human analyst's decision-making process, allowing it to make escalation decisions with the same finesse and expert judgment as a human, but at machine speed. By integrating the Respond Analyst with their existing security tools, including open-source IDS, Palo Alto Networks IDS/IPS, Vectra Threat Detection Platform, and Nessus Vulnerability Scanner, the university achieved comprehensive sensor coverage and significantly reduced the number of false positives. The Respond Analyst's ability to filter and prioritize security events enabled the security team to focus on the most critical incidents, improving their overall efficiency and effectiveness. This automation allowed the team to devote more time to incident response workflows, threat hunting, and engineering and automating workflows, ultimately enhancing their ability to protect the university's IT infrastructure.
Operational Impact
Quantitative Benefit
Case Study missing?
Start adding your own!
Register with your work email and create a new case study profile for your business.
Related Case Studies.
Case Study
IoT platform Enables Safety Solutions for U.S. School Districts
Designed to alert drivers when schoolchildren are present, especially in low-visibility conditions, school-zone flasher signals are typically updated manually at each school. The switching is based on the school calendar and manually changed when an unexpected early dismissal occurs, as in the case of a weather-event altering the normal schedule. The process to reprogram the flashers requires a significant effort by school district personnel to implement due to the large number of warning flashers installed across an entire school district.
Case Study
Revolutionizing Medical Training in India: GSL Smart Lab and the LAP Mentor
The GSL SMART Lab, a collective effort of the GSL College of Medicine and the GSL College of Nursing and Health Science, was facing a challenge in providing superior training to healthcare professionals. As clinical medicine was becoming more focused on patient safety and quality of care, the need for medical simulation to bridge the educational gap between the classroom and the clinical environment was becoming increasingly apparent. Dr. Sandeep Ganni, the director of the GSL SMART Lab, envisioned a world-class surgical and medical training center where physicians and healthcare professionals could learn skills through simulation training. He was looking for different simulators for different specialties to provide both basic and advanced simulation training. For laparoscopic surgery, he was interested in a high fidelity simulator that could provide basic surgical and suturing skills training for international accreditation as well as specific hands-on training in complex laparoscopic procedures for practicing physicians in India.
Case Study
Implementing Robotic Surgery Training Simulator for Enhanced Surgical Proficiency
Fundacio Puigvert, a leading European medical center specializing in Urology, Nephrology, and Andrology, faced a significant challenge in training its surgical residents. The institution recognized the need for a more standardized and comprehensive training curriculum, particularly in the area of robotic surgery. The challenge was underscored by two independent studies showing that less than 5% of residents in Italian and German residency programs could perform major or complex procedures by the end of their residency. The institution sought to establish a virtual reality simulation lab that would include endourological, laparoscopic, and robotic platforms. However, they needed a simulator that could replicate both the hardware and software of the robotic Da Vinci console used in the operating room, without being connected to the actual physical console. They also required a system that could provide both basic and advanced simulation training, and a metrics system to assess the proficiency of the trainees before they performed surgical procedures in the operating theater.
Case Study
Edinburgh Napier University streamlines long-distance learning with Cisco WebEX
• Geographically dispersed campus made in-person meetings costly and inconvenient.• Distance-learning programs in Malaysia, India, and China required dependable, user-friendly online tools to maximize interaction in collaborative workspaces.• Virtual learning environment required a separate sign-in process, resulting in a significant administrative burden for IT staff and limited adoption of collaboration technology.
Case Study
8x increased productivity with VKS
Before VKS, a teacher would spend a lot of time showing a group of 22 students how to build a set of stairs within a semester of 120 hours. Along with not leaving the teacher much time to provide one-on-one support for each student to properly learn carpentry, it also left a considerable amount of room for error. Key information would be misinterpreted or lost as the class was taught in the typical show-and-tell way.
Case Study
Scalable IoT Empowering GreenFlex's Sustainable Growth
GreenFlex, a company that supports sustainable development, decarbonization, and energy efficiency, faced several challenges in its quest to expand its business. The company needed to deploy a robust and sustainable IoT technology to support its growth. It was crucial for them to monitor and control devices at customer sites in a safe and reliable manner. They also needed to integrate devices across a range of communication protocols and gather and act on data to meet efficiency targets. GreenFlex had previously built IoT capabilities into its digital platform, GreenFlexIQ, to monitor and manage customer sites remotely. However, they soon realized that they needed a new platform to support their ambitions. They needed a platform that could scale to connect more devices for production management and make it easier for the operations team to manage devices in the field.
