Maturity Score increased by 258% in the first 30 days
- Top Rating Electronics Retailer
- $400M annual revenue
- SIEM = Splunk Enterprise, ES, UBA
- Deployed and validated a content pack for Credential Dumping and Lateral Movement attack scenarios.
- Threat Modeling/Maturity Scoring completed to prioritize threat techniques and identified current logging and detection gaps using Automation and Insights.
- Using Automation, improved parsing and normalization around data feeds for endpoint and proxy.
- Customer’s Purple Team tested and validated Threat Scenario with attack simulation for Lateral Movement.
“The data feed mappings in maturity scoring was surprisingly accurate.”-SOC Manager
*8 hours to deploy content that would have taken >324 hours to develop, test and deploy