The two teams worked closely together to extend TX Group’s detection and response capabilities across cloud services and infrastructure.
Cybereason was originally chosen for its flexible support for on-premises and air-gapped environments, strong pre-built detection coverage, and because Cybereason exposes Malops (malicious operations), a fully correlated narrative and deep context about an attack as opposed to individual alerts and alarms for each detected behaviour.
#Cyber reason for mac mac
Since 2018, TX Group has looked to Cybereason EDR to protect Windows, Mac and Linux endpoints across the company and its subsidiaries. TX Group didn’t want to centralise log data in a single place - it wanted a threat detection technology that could secure its Zero Trust deployment and more importantly, take automated responses.
#Cyber reason for mac manual
The data lake approach didn’t meet the company’s needs: there were visibility blind spots, manual work when reconciling events and there wasn’t a reduction in mean time to respond (MTTR). In the past, Schneider and his team had used multiple security information and event management (SIEM) tools. Or, if malicious operations have been detected on an asset, automatically limit the associated user’s access to critical applications. For example, if an unknown or Bring Your Own Device (BYOD) is being used to access an application, always require Two-Factor Authentication (2FA). In order to secure a work anywhere environment, Schneider wanted a solution that not only provided direct visibility into global endpoints, but could monitor and understand access to critical applications across cloud and on-premises. This means that instead of a hardened perimeter with firewalls and VPN, users should be able to access all of their business applications from any device, any time and anywhere. Since 2018, TX Group has worked to be a cloud-first company, adopting a Zero Trust framework and an agile security strategy. Adversaries are launching more attacks with automation and have become ruthless with data theft and extortion to achieve ransom demands.
The pandemic has not only changed the face of remote work, but has forced nearly every company today to re-evaluate their development, IT and security strategies. This is a tall order, especially in light of our ever-evolving world. The organisation was looking for a simple and modern solution that could be primarily operated centrally, but also decentralised for those who require it and it found this in Cybereason.Īndreas Schneider, Group CISO at TX Group, is tackling one of the greatest unsolved problems in cybersecurity today: ‘how can we thoughtfully automate our security team?’
Andreas Schneider, Group CISO at TX Group, tells us how the Swiss media company required a threat detection technology that could secure its Zero Trust deployment and more importantly, take automated responses.
0 kommentar(er)
