Vectra AI

Vectra AI Inc. Logo
Product
  • Vectra AI
  • Recall
Tech Stack
  • Artificial Intelligence
  • SIEM
Implementation Scale
  • Enterprise-wide Deployment
Impact Metrics
  • Productivity Improvements
  • Digital Expertise
Technology Category
  • Analytics & Modeling - Machine Learning
Applicable Functions
  • Discrete Manufacturing
Use Cases
  • Cybersecurity
  • Intrusion Detection Systems
Services
  • Data Science Services
About The Customer
The customer is a company that has implemented Vectra AI to monitor and protect its network. The company has a small team of security analysts who work with Vectra alerts. The company also has a number of information security officers who have a read-only role and can view alerts and logs if they need more information. The company initially implemented Vectra AI to protect some of its legacy systems that did not support encryption at rest. This was necessary to meet compliance requirements. The company then extended the use of Vectra AI to monitor other devices and servers within its network.
The Challenge
The company initially implemented Vectra AI to protect some of its legacy systems that did not support encryption at rest. This was necessary to meet compliance requirements. The company then extended the use of Vectra AI to monitor other devices and servers within its network. The company was looking for a solution that could detect anomalous behavior and reduce the time spent on looking into logs. The company also wanted a solution that could triage threats and correlate them with compromised host devices. The company was dealing with about 300 events a day, with about 10 to 15 events requiring investigation.
The Solution
The company implemented Vectra AI, an artificial intelligence solution that monitors the network for anomalous behavior. Vectra AI reduces the time spent on looking into logs by alerting the team to any device that is behaving strangely. The solution also triages threats and correlates them with compromised host devices. The company also purchased Recall, an addition to Vectra AI, which provides more information for investigation. Recall provides the metadata for network traffic, allowing the team to investigate further if a detection is made. The solution captures network metadata at scale and enriches it with security information.
Operational Impact
  • Vectra AI has helped the company reduce the time it takes to respond to attacks. The solution sends an email to the company's SIEM solution, which then generates emails and tickets. This has greatly reduced the company's measurable baseline.
  • The solution has also improved the company's security with a minimum amount of work. The company now has 10 to 15 events that it needs to investigate each day.
  • The solution has also helped the company detect misconfigurations of servers and applications. These are not security risks, but they need to be addressed.
Quantitative Benefit
  • The solution has reduced the time between an alert coming up and a ticket being generated to 15 to 20 minutes.
  • The solution has increased the number of tickets the company has to deal with, but these are tickets for things the company needs to do.

Case Study missing?

Start adding your own!

Register with your work email and create a new case study profile for your business.

Add New Record

Related Case Studies.

Contact us

Let's talk!
* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.