Rapid7 > Case Studies > Enhancing Security Visibility and Reducing Risk: A Case Study on Alpina Group's Adoption of Rapid7

Enhancing Security Visibility and Reducing Risk: A Case Study on Alpina Group's Adoption of Rapid7

Rapid7 Logo
Technology Category
  • Cybersecurity & Privacy - Intrusion Detection
  • Platform as a Service (PaaS) - Application Development Platforms
Applicable Industries
  • Finance & Insurance
  • National Security & Defense
Use Cases
  • Cybersecurity
  • Tamper Detection
Services
  • Cybersecurity Services
About The Customer
Alpina Group is a Netherlands-based insurance technology firm with a history dating back over 100 years. Founded as an insurance broker in 1909, the family-run business has since evolved into a services-led organization. The company has recently experienced a steep growth curve, expanding its workforce from 350 to 550 employees in just two years. This rapid growth has also led to an increase in the number of IT assets to manage and secure. As a key cog in the insurance supply chain, Alpina Group holds a wealth of sensitive personal and financial information, making it a prime target for attackers. Recognizing the need to enhance its security visibility and reduce risk, the company sought out effective, easy-to-deploy solutions that could be managed by a small team.
The Challenge
Alpina Group, a Netherlands-based insurance technology firm, was facing a significant challenge in improving the maturity of its in-house security program. The company was on a steep growth curve, expanding its workforce from 350 to 550 employees in just two years. This rapid growth also led to an increase in the number of IT assets to manage and secure. The insurance sector is a popular target for attackers due to the wealth of sensitive personal and financial information they hold. Alpina Group recognized the need to enhance its visibility into the threat landscape and its own IT infrastructure to proactively manage risk. The company's incumbent SIEM platform created a blind spot after a year-long implementation, as it was too complex for the small security team to operate effectively. Security Officer Joost Dubbelman was tasked with finding vulnerability management and incident detection solutions that could be managed by a small team, provide enhanced insight, and help reduce risk.
The Solution
After running a detailed proof-of-concept program with several providers, Dubbelman chose Rapid7’s InsightVM vulnerability management offering. This solution provided a more expansive set of scan results than rival options and was a better fit for Alpina Group's flat organizational structure. InsightVM provided more insight into the assets and vulnerabilities present at any given moment. The solution was later supplemented with Rapid7's InsightIDR threat detection and response tool. This combination allowed the team to see what was happening in their network and who was doing what. The visual reporting and Live Dashboards features in InsightVM were particularly useful in providing a clear picture of risk, allowing the team to review and either accept or remediate. The decision to choose InsightIDR was made easier because Rapid7 and its Insight Agent were already on board. It took just a day and a half to get up-and-running with cloud-hosted InsightIDR, compared to the year it took to implement the previous SIEM solution.
Operational Impact
  • The adoption of Rapid7’s InsightVM and InsightIDR has significantly improved Alpina Group's visibility into the threat landscape and its own IT infrastructure. The tools have helped the company proactively manage risk and spot potential risky behavior. The visual reporting and Live Dashboards features in InsightVM have been particularly useful in providing a clear picture of risk, allowing the team to review and either accept or remediate. The log search functionality has also been praised for helping generate clear situational awareness to work out what’s going on and whether further action needs to be taken. The company is now focused on reducing the large volume of vulnerabilities currently flagged for attention, and migrating off of legacy Windows Servers. The team is also planning to set up Remediation Projects in InsightVM to help prioritize vulnerabilities going forward.
Quantitative Benefit
  • InsightIDR was implemented in just a day and a half, compared to a year for the previous SIEM solution.
  • The solution allowed for effective management of security with a small team, saving on the cost of additional personnel.
  • The Insight Agent was already on board, reducing the cost and time required for implementation.

Case Study missing?

Start adding your own!

Register with your work email and create a new case study profile for your business.

Add New Record

Related Case Studies.

Contact us

Let's talk!
* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.