Outcomex deployed and implemented a security maturity improvement program for an enterprise software company’s business operations and infrastructure. By partnering specifically with Exabeam, Outcomex delivered a security information and event management (SIEM) solution to help the software company better detect, analyse, and respond to security threats, reducing potential disruptions to the business’s operations. Additionally, Exabeam’s SaaS service and their analytics platform User and Entity Behaviour Analytics (UEBA) was implemented, along with our professional services and 24/7 event monitoring by our in-house security operations centre (SOC) team to provide continuous support.

Client 

Our client is a prominent enterprise software company, that supplies enterprise resource planning software, supporting businesses and millions of customers globally. The enterprise software company works within multiple sectors and industries, including defence, smart transport, resources, utilities, and manufacturing.

Opportunity

As a supplier of enterprise software, ensuring their software is secure is imperative for the enterprise software company. As such, the group underwent an internal project to source and implement a new SIEM within their environment, assessing and evaluating multiple products on the market to find the right solutions that would fulfil their unique requirements. The enterprise software company’s security operations team specifically needed a solution to help them overcome the challenge of working with skeleton resources, including a solution to help them solve the manual undertaking of threat detection and investigations, often resulting in the delayed discovery of detrimental threats. The solution not only needed to be reliable but needed to allow them to respond to any security threats on their software as quick as possible to prevent data loss and keep financial and business operations running smoothly and securely. Additionally, the enterprise software company needed a solution that would provide user and entity behaviour intelligence on top of the SIEM and log management data repositories to detect compromised and rogue insider threats and present the group with a complete picture of the user session and lateral movement use in the attack chain.

Solution 

To specifically address the requirements of the enterprise software company, Outcomex provided a proof of concept for several security use cases, including ransomware, insider threats, phishing attacks, and multiple other prevalent cyber security concerns, using the Exabeam SIEM product suite. As Exabeam is a market leader in SIEM and UEBA, we deployed their solutions. Exabeam’s UEBA baselines the normal behaviour of users and devices to detect, prioritise, and respond to anomalies based on risk – by understanding the normal user session, the behaviours missed by other tools, such as lateral movement, privilege escalation, credential swapping, can be more easily detected. UEBA has the ability to follow attacks if they move laterally by way of changing devices, IP addresses, or credentials by presenting the entire attack chain without any gaps or missing pieces where lateral movement occurred. Backed by Exabeam, our implementation allowed for the monitoring and assessing of domain services activity, windows activity, and VPN (login and logout), while providing security alert functionality. As Outcomex is a recognised Exabeam services partner, and also has an engineering team who have been actively engaged with Exabeam over the past years, we offer exceptional professional services and support to customers utilising Exabeam’s platform. Procurement of SIEM was a major part of the enterprise software company’s security maturity improvement program and were more than happywith the Exabeam product in terms of functionality and ease of use.  

Lastly, we offered Managed Services to the enterprise software company, which will give them access to unlimited break/fix support. With security being at the core of our business and the heart of everything we do, we understand the challenges experienced by the group. With this in mind, we recognise there is a struggle to maintain and deploy resources where they are most needed and that protecting your environment 24×7 is not something you can do alone. Through this service, the software companywill have the ability to proactively manage their security network and infrastructure. As a result, they will benefit from a high performing and secure platform that is simple to operate and enables reliable services for business-critical applications.

Technologies used 

  • Exabeam SIEM SaaS
  • Exabeam UEBA
  • Managed Services 

Impact 

Outcomex provided an enterprise software company with a security maturity improvement program, utilising an updated SIEM solution and Exabeam’s UEBA. This timely solution has significantly improved response time to potential threats, giving the team proactive management of the security infrastructure. The company now has a program that is stable, responsive, efficient, and secure.  

The enterprise software company will continue to receive support and managed services from Outcomex, which will aid them in ensuring continued monitoring of the SIEM solution. Additionally, they now have insight into a snapshot of events and incidents, executive summary containing incidents, service health, executive summary on service and maturity recommendations, with an ongoing assessment of maturity of the service and recommendations.

Technologies used

Image Image

Networking

Designing and implementing architectures to improve network performance
Image Image

Managed Services

Ensuring ICT technologies are fit for day-to-day operations

Other Case Studies

image description

The National Centre for Healthy Ageing
image description

Seven Network
image description

Red Energy
image description

Trinity College WA
image description

AFTRS
image description

College of Law