Industry Life Insurance & Financial Services
Solution Type Reduce Time to Detect and Contain Threats
Needs Company needed to reduce the time it took to detect and contain security incidents. Their objectives included improving both their penetration testing and security operations and threat detection programs.
Supporting the CISO, our team reviewed current penetration testing program and made recommendations to processes, procedures, tools, report templates, IT systems / architecture and related security controls. We conducted collaborative “purple team” testing with SOC personnel to validate and improve the effectiveness of their current incident detection and response capabilities. We mentored team members on penetration testing methodologies and processes, risk identification and reporting, leading risk management and security practices, and testing tools and techniques.
At the end of the day
Improvements in their testing programs have lead to a reduced time to detect and respond to cyber attacks. Their staff is now better prepared to perform penetration testing and collaborative testing to validate and enhance threat detection. Their testing environment is more secure and efficient and delivers improved reporting and remediation recommendations