Tailored service - outstanding solution

Editorial Type: Case Study Date: 2018-11-01 Views: 1,318 Tags: Security, Retail Sector, Cyber Attacks, MSSP, Breaches, SIEM, ECS Security PDF Version:
A FTSE 100 luxury goods retailer, headquartered in London with a global footprint, needed the right solution to a security challenge

Protecting the retailer's high-profile brand is continually at the forefront of the board and shareholder's concerns for the prestigious company in question. Its IT security operations director contacted ECS Security to discuss improving the organisation's ability to detect and respond to constantly-evolving cyber threats.

Historically, a global Managed Security Services Provider (MSSP) monitored the retailer's environment for potential security breaches. However, they required a more agile MSSP that could provide a tailored service to satisfy the demands of their business.

To meet the client's bespoke service requirements, ECS Security delivered a hybrid solution, leveraging both shared and dedicated service components. The ECS Security-managed, 24x7 Security Operations Centre (SOC), built on a Splunk platform, works in partnership with a committed on-site presence.

ECS's dedicated on-boarding team worked with the client to deliver an integrated services partnership and a solution that answered their requirements. Its SOC teams initially conducted investigation workshops and then used structured collaboration methods to design a service that met the client's needs. During this consultative process, ECS Security identified additional crucial client requirements and was able to expand the scope to include data analytics, SIEM support and maintenance, and threat hunting activities.

The provision of the Threat Monitoring Service and these additional services continue to drive the security posture of the client forward. New and improved Use Cases are delivered in line with the client's priorities and built on the ECS Security team's contextual awareness of the business.

MANAGED SECURITY SERVICES
ECS Security sees itself as an innovative MSSP that goes beyond just ticking the necessary compliance boxes. "The team delivers bespoke, high-value services to meet client-specific challenges," it states. "As a business formed and managed by ex-security leaders, ECS Security's trusted and transparent approach and enthusiasm for cybersecurity has driven us to become the UK's leading independent Cyber Security Services company, recognised within the industry and commended and awarded by some of the leading industry publications, vendors and analysts."

The ECS Security SOC, based in the UK, delivers ECS Security's Managed Services with a shared, highly experienced team. Key to the service is maintaining high contextual awareness of the customer, its business and the wider threat landscape. ECS caps the number of customers per SOC team, ensuring that the team has visibility and learning across a number of customers and maintains a deeper level of knowledge of specific clients.

The Director responsible for MSSP at the client is an experienced industry veteran and commented that the service is "the best they have ever seen, as ECS Security's agility and the high context the team maintains sets it apart from the rest of the market".

BENEFITS

Key benefits delivered by the ECS solution include:
• Greater visibility of the client's environment and potential threats - 24x7 proactive threating hunting, investigation and resolution
• Improved service partnership with a SOC team that understands the client's whole business
• Increased service transparency - ECS provides the client with full visibility of the investigation tools, as well as all actions and investigations
• Continual service improvement, based on new monitoring and use cases as a standard - no complex change records or time-consuming discussions.