Client Background and Challenges
A FSI client asked to recommend a product which would allow them to replace their first-generation Security Information and Event Management (SIEM) product with a next generation solution that combines real-time monitoring, threat analytics, and event management / reporting.
The firm legacy SIEM solution collected and interpreted log files and event data but, was lacking in its reporting and alerting capabilities. It also fell short when it came to analyze the volume of threat data being generated across the enterprise.
Kreeyaa’s Solution
- Researched the SIEM solutions which would suit the firm demands
- Developed a detailed roadmap with focus areas and actionable initiatives.
- Defined the SIEM architecture.
- Implemented the SIEM solution, integrated all the log sources and created the relevant rules.
- Analyzed the correlation rules and performed necessary fine-tuning exercises.
- Decommissioned the legacy SIEM solution.
Results
Kreeyaa team helped build infrastructure security monitoring solution for the client that helped reduce noise, identify critical incidents, remediate the incident quickly, saving time, cost and reputation.