A large retail company sought to Acribia to integrate an NGFW solution. After integration, tasks began to arise related to maintaining the system settings to ensure continuous protection, maintaining the solution and diagnosing problems that arise.
After concluding a technical support agreement, the client was provided with access to the ticket system for convenient and quick registration of tasks and work planning, including at night.
Fine-tuning of DLP system
A large insurance company sought Acribia’s assistance in fine-tuning their DLP system which by that time had already been purchased and implemented but did not produce the desired outcome.
Our action plan involved several small iterations, with each of them having a certain result and cost. The outsourcing agreement allowed us to perform tasks gradually in a way that was convenient for the client. During the first iteration, the DLP system was configured to detect as many incidents as possible but there also was a large number of false alerts. The data analysis uncovered many cases of security policy violations, misuse, malicious activity of employees and agents. During the following iterations, based on the findings of the analysis, we fine-tuned the DLP system in order to minimize the number of false alerts and for more accurate detection of incidents.
Splunk SIEM implementation with data source connectivity
The bank set a goal to deploy a SIEM system based on Splunk, for which it turned to Acribia for help.
In the course of the work, the infrastructure of the SIEM system was fully prepared, after which many systems were configured to send logs to Splunk, including Active Directory, Exchange, Sharepoint, etc., as well as all available information protection tools. After the completion of the integration work, Aсribia's employees helped colleagues from the bank to draw up up-to-date correlation rules to identify anomalies in the infrastructure and set up alerts to responsible employees.
Please fill out our form, and we'll get in touch as soon as possible