实例探究 > Major Energy Provider Chooses Deception Technology to Better Protect Critical Assets

Major Energy Provider Chooses Deception Technology to Better Protect Critical Assets

公司规模
Large Corporate
地区
  • America
国家
  • United States
产品
  • Attivo Networks® ThreatDefend™
  • BOTsink
  • Attivo Central Manager
  • ThreatStrike
技术栈
  • Deception Technology
  • SCADA Systems
  • SIEM Integration
实施规模
  • Enterprise-wide Deployment
影响指标
  • Cost Savings
  • Productivity Improvements
  • Customer Satisfaction
  • Digital Expertise
技术
  • 网络安全和隐私 - 入侵检测
  • 网络安全和隐私 - 网络安全
  • 网络安全和隐私 - 安全合规
适用行业
  • 公用事业
适用功能
  • 设施管理
  • 商业运营
用例
  • 入侵检测系统
服务
  • 网络安全服务
  • 系统集成
  • 培训
关于客户
The customer is a large public energy utility company that operates a complex and diverse network environment. This includes specialized systems like SCADA, as well as typical user and datacenter spaces. The company has a robust perimeter security system but recognized the need for enhanced internal network visibility to detect and respond to potential threats, including insider threats. The organization is proactive in its approach to cybersecurity, aiming to stay ahead of potential threats rather than reacting to incidents after they occur. The company has a dedicated Information Security team responsible for maintaining and improving their cybersecurity posture.
挑战
Existing perimeter defenses were not providing adequate visibility into the organization’s complex network environment. Their environment was diverse, with systems and topologies unique to their business, such as SCADA systems and the typical user and datacenter spaces. Any solution needed to scale and be able to detect intruders in this diverse environment without adding excessive workload to the Information Security team.
解决方案
The organization chose to implement the Attivo Networks® ThreatDefend™ platform, including BOTsink and Attivo Central Manager systems, to gain deeper and more comprehensive visibility into their network environment. The ability to clearly detect a breach and thwart an attacker early in the attack cycle were major driving forces behind their adoption of the Attivo solution. They are planning to add ThreatStrike and other ThreatDefend™ components in the future to further expand their active defense capabilities. The Attivo Networks® solution required no additional staffing. The organization found that their existing security team could easily deploy and maintain the solution without impacting their normal responsibilities, and integration with their existing security infrastructure gave improved visibility with minimal overhead.
运营影响
  • The organization added deception proactively to improve visibility and threat response capabilities, rather than in response to a security incident, putting them ahead of the curve.
  • The Attivo Networks® ThreatDefend™ platform includes native integrations with 3rd party security applications, enabling the organization to seamlessly mesh deception into their existing security infrastructure, feeding their SIEM and ticketing systems directly, improving efficiency and effectiveness.
  • The system has quickly identified existing misconfigurations and proven to be very effective in testing, leaving the organization confident they will be able to detect, and respond to, a sophisticated attack or insider threat.
  • The Attivo Networks® solution required no additional staffing. The organization found that their existing security team could easily deploy and maintain the solution without impacting their normal responsibilities.
数量效益
  • The organization quickly discovered some misconfigurations and other issues in their environment, giving an almost immediate return on investment.

Case Study missing?

Start adding your own!

Register with your work email and create a new case study profile for your business.

Add New Record

相关案例.

联系我们

欢迎与我们交流!
* Required
* Required
* Required
* Invalid email address
提交此表单,即表示您同意 IoT ONE 可以与您联系并分享洞察和营销信息。
不,谢谢,我不想收到来自 IoT ONE 的任何营销电子邮件。
提交

感谢您的信息!
我们会很快与你取得联系。