Sorting
From A to Z
Deployments found: 2
CUSTOMER PROFILE
Ranked as one of the best banks in America by Forbes magazine, our high–tech commercial banking customer had a large, complex and distributed IT environment supporting more than 1,600 employees and 34 locations worldwide.
CHALLENGES
“Next-generation firewalls introduce a new complexity into our environment. Many competitors that we worked with just cannot keep up with innovation. Skybox, on the other hand, really worked with us, understood our environment, and tackled innovation and virtualization head-on.” ABOUT THE SOLUTION The customer deployed three modules of the Skybox Security Suite—Firewall Assurance, Network Assurance and Vulnerability Control. Firewall Assurance was able to bring all firewalls into a single view and continuously monitor policy compliance, optimize firewall rulesets and finds attack vectors that other solutions missed. With Network Assurance, the customer illuminated complex security zones and policy compliance violations, giving them the insight they needed to reduce attack vectors and network disruptions. The addition of Vulnerability Control allowed them to improve risk management, employing security analytics to quickly identify exposures and prioritize risk as well as remediation in the context of their network. RESULTS After just one week, the commercial bank had a level of network visibility and control that they never had before. With meaningful compliance reports and validated security intelligence, they were better able to support audits and reduce their attack surface. Skybox gave them a comprehensive and accurate view of their network and its risks.
- Risk analysis around the latest technology, including virtualization and next–generation firewalls
- Continuous compliance with financial industry regulatory standards
- Manual processes draining limited IT resources
- One-week deployment for quick insight to IT architecture, risk and controls
- Continuous compliance and on-demand, substantive reports
- Prioritized risk management
- Automated daily reporting on best practices
“Next-generation firewalls introduce a new complexity into our environment. Many competitors that we worked with just cannot keep up with innovation. Skybox, on the other hand, really worked with us, understood our environment, and tackled innovation and virtualization head-on.” ABOUT THE SOLUTION The customer deployed three modules of the Skybox Security Suite—Firewall Assurance, Network Assurance and Vulnerability Control. Firewall Assurance was able to bring all firewalls into a single view and continuously monitor policy compliance, optimize firewall rulesets and finds attack vectors that other solutions missed. With Network Assurance, the customer illuminated complex security zones and policy compliance violations, giving them the insight they needed to reduce attack vectors and network disruptions. The addition of Vulnerability Control allowed them to improve risk management, employing security analytics to quickly identify exposures and prioritize risk as well as remediation in the context of their network. RESULTS After just one week, the commercial bank had a level of network visibility and control that they never had before. With meaningful compliance reports and validated security intelligence, they were better able to support audits and reduce their attack surface. Skybox gave them a comprehensive and accurate view of their network and its risks.
CUSTOMER PROFILE
Our customer is a large, federal credit union with employees distributed worldwide, and a complex global network. The company generates more than $500 million in revenue annually and holds in excess of $20 billion in financial assets.
CHALLENGES
Reducing the Attack Surface Through implementing Skybox, the credit union could mitigate daily threats quickly. Using the simulated model, the CISO was able to visualize all potential attack vectors that a new vulnerability or attack could create. When he received reports from his vulnerability scanner that 400 servers were affected by a specific vulnerability, Skybox security analytics could deduce the three servers actually at risk. The analysis showed that the company’s layers of security defenses—including firewall rules and network segmentation—provided sufficient mitigation. “The model shows us what systems need immediate attention and focuses our resources on fixing our most critical at-risk systems immediately. We can do the remaining patchwork at will,” said the CISO. Skybox helped the organization mitigate risks faster and reduce the vulnerability exposure window. “Actionable intelligence is really critical. You want to be able to make the best decisions in the shortest amount of time with the least amount of business impact. Instead of looking at four hundred servers, I can focus on three. It’s about concentrating our efforts on the right things for the right reasons in the shortest amount of time.” Avoiding Risks of Network Changes Skybox modeling capabilities proved exceptionally valuable to the CISO. Now—before the credit union deploys any new services, applications or network changes—the CISO can model planned changes within a virtual environment without experimenting on the live network and risking disruption or worse.
“It’s actionable intelligence when I need it,” said the CISO. “The organization can maximize connectivity, minimize risk exposure, reduce IT workload and improve accuracy and timeliness through automated risk modeling.” Ensuring Continuous Compliance Deploying Skybox radically changed the federal regulatory audit process. “This was the first year where rather than tearing through firewall rules, IDS logs and incident reports, the examiners focused on our risk management and assessment plans and our infrastructure strategy,” said the CISO. “The reports that Skybox generated made it completely self-explanatory to regulators as to why certain assets were more critical than others. It was a dramatic shift for us.” With the ability to associate the credit union’s security threats and vulnerabilities to their actual business impact and likelihood of breach, it’s no surprise that the CISO positioned Skybox as the cornerstone of the organization’s information security management program. “We’re focused on making Skybox the risk management center of our universe. We’re building dashboards that show risk across the entire enterprise to gain deep insight into our overall risk. It’s only possible because Skybox correlates our relevant business information with our real-world risks.” ABOUT THE SOLUTION The credit union deployed two modules of the Skybox Security Suite—Network Assurance and Vulnerability Control. Using Network Assurance’s comprehensive and automated modeling capabilities, the customer was able to gain complete visibility and command of network access and routes, laying the foundation for strategic security initiatives and maintaining continuous compliance. Adding Vulnerability Control not only gave the customer unique insight to how vulnerabilities could impact their network, but enabled them to work with the network model and simulate multi-step attacks without affecting the network. The robust solution gave them an in-depth understanding of how their security would perform under a real attack and helped them better protect critical assets. RESULTS Using Skybox, the credit union achieved total network visibility across devices and interdependent systems. The organization fully automated vulnerability detection, assessment, prioritization and remediation within the context of the network. With patented attack simulation tools, the company was able to identify access paths and vulnerabilities even for complex, multistep attacks. The credit union also incorporated modeling tools to assess the impact of a proposed change prior to implementation, preventing disruption to the live network. Automated compliance reports transformed the compliance audit process, elevating the discourse from dissecting rules, logs and reports to a strategic discussion on risk management and assessment and infrastructure plans. In the words of the CISO, “Skybox is phenomenal technology.”
- Complex IT architecture with thousands of interdependencies
- Unable to effectively prioritize vulnerabilities and turn analysis into meaningful action
- Lack of visibility into the value of business assets
- No tools to correlate vulnerabilities and threats with likelihood and business impact
- Compliance with government and financial industry regulations
- Significantly reduced vulnerability exposure window
- Harnessed total visibility to analyze access paths and connectivity for improved security—even during changes
- Automated vulnerability management processes, prioritizing risk and remediation in context
- Simulated attacks to identify access paths and vulnerabilities
- Ensured continuous compliance and implemented a Security Risk Management (SRM) program
Reducing the Attack Surface Through implementing Skybox, the credit union could mitigate daily threats quickly. Using the simulated model, the CISO was able to visualize all potential attack vectors that a new vulnerability or attack could create. When he received reports from his vulnerability scanner that 400 servers were affected by a specific vulnerability, Skybox security analytics could deduce the three servers actually at risk. The analysis showed that the company’s layers of security defenses—including firewall rules and network segmentation—provided sufficient mitigation. “The model shows us what systems need immediate attention and focuses our resources on fixing our most critical at-risk systems immediately. We can do the remaining patchwork at will,” said the CISO. Skybox helped the organization mitigate risks faster and reduce the vulnerability exposure window. “Actionable intelligence is really critical. You want to be able to make the best decisions in the shortest amount of time with the least amount of business impact. Instead of looking at four hundred servers, I can focus on three. It’s about concentrating our efforts on the right things for the right reasons in the shortest amount of time.” Avoiding Risks of Network Changes Skybox modeling capabilities proved exceptionally valuable to the CISO. Now—before the credit union deploys any new services, applications or network changes—the CISO can model planned changes within a virtual environment without experimenting on the live network and risking disruption or worse.
“It’s actionable intelligence when I need it,” said the CISO. “The organization can maximize connectivity, minimize risk exposure, reduce IT workload and improve accuracy and timeliness through automated risk modeling.” Ensuring Continuous Compliance Deploying Skybox radically changed the federal regulatory audit process. “This was the first year where rather than tearing through firewall rules, IDS logs and incident reports, the examiners focused on our risk management and assessment plans and our infrastructure strategy,” said the CISO. “The reports that Skybox generated made it completely self-explanatory to regulators as to why certain assets were more critical than others. It was a dramatic shift for us.” With the ability to associate the credit union’s security threats and vulnerabilities to their actual business impact and likelihood of breach, it’s no surprise that the CISO positioned Skybox as the cornerstone of the organization’s information security management program. “We’re focused on making Skybox the risk management center of our universe. We’re building dashboards that show risk across the entire enterprise to gain deep insight into our overall risk. It’s only possible because Skybox correlates our relevant business information with our real-world risks.” ABOUT THE SOLUTION The credit union deployed two modules of the Skybox Security Suite—Network Assurance and Vulnerability Control. Using Network Assurance’s comprehensive and automated modeling capabilities, the customer was able to gain complete visibility and command of network access and routes, laying the foundation for strategic security initiatives and maintaining continuous compliance. Adding Vulnerability Control not only gave the customer unique insight to how vulnerabilities could impact their network, but enabled them to work with the network model and simulate multi-step attacks without affecting the network. The robust solution gave them an in-depth understanding of how their security would perform under a real attack and helped them better protect critical assets. RESULTS Using Skybox, the credit union achieved total network visibility across devices and interdependent systems. The organization fully automated vulnerability detection, assessment, prioritization and remediation within the context of the network. With patented attack simulation tools, the company was able to identify access paths and vulnerabilities even for complex, multistep attacks. The credit union also incorporated modeling tools to assess the impact of a proposed change prior to implementation, preventing disruption to the live network. Automated compliance reports transformed the compliance audit process, elevating the discourse from dissecting rules, logs and reports to a strategic discussion on risk management and assessment and infrastructure plans. In the words of the CISO, “Skybox is phenomenal technology.”