CUSTOMER STORY
CHALLENGE SUMMARY
One of the world’s largest digital security providers needed to enhance their cybersecurity posture in order to meet evolving compliance requirements. IT stakeholders, the C-Suite and the Board all understood the risks related to securing highly valuable passport information, personal banking data, and classified data in the military and defense sectors, so improving log management was escalated to company leadership. In addition to meeting strict compliance and security requirements, the solution they would choose for log management would need to integrate with existing technologies, be simple to deploy across many geographies and digital ecosystems, and be cost-effective.
Additionally, because of the size and scope of the company’s digital footprint, which included thousands of devices and endpoints, the security team and IT stakeholders required a central way to manage and analyze all logs and activity across all sites across the organization.
CHALLENGE OUTCOME
Implementing Snare to centrally manage all log data helped this organization meet compliance standards upon deployment. And because Snare requires few resources to deploy and manage, the adoption of Snare into the company’s existing technology stack was not only on-budget, but has led to continuous cost savings via Snare’s ability to filter, truncate, and store extremely large amounts of data.
With the company’s log collection, filtering, and reporting handled reliably by Snare and managed via multiple Snare Centrals, both IT stakeholders and the C-suite have confidence that their team can catch any anomalies in their system in a matter of minutes vs months – which is an invaluable security measure for a company charged with protecting valuable personal, corporate, and government data.
THE CLIENT
HANDLING SENSITIVE PERSONAL DATA FOR A GLOBAL TECH LEADER
This particular organization is responsible for securing vast amounts of personal data including (but not limited to) bank transfers, biometrics for private citizens and government personnel, passport information for travel and border security, digital wallets, background checks, and drivers licenses.
There are compliance and data security standards for virtually every sector and geography that must be met, and every one of those compliance requirements includes the collection and preservation of logs. In order to meet global compliance and data privacy requirements, this organization needed to be reliably capturing logs and event data to keep them compliant with:
- GDPR
- PCI-DSS, and
- Multiple data breach notification laws.
By implementing Snare alongside their current SIEM, the IT stakeholders at this organization were not only able to meet current data security, privacy, and compliance requirements, but they have a log management solution in place that is a quick and cost-effective way to help meet evolving requirements and deadlines.
THE CHALLENGE
STREAMLINING LOG COLLECTION ACROSS 20+ SITES
One of the biggest challenges with the organization was the sheer size and scope of the number of locations, geographies, and end points that needed to be managed. IT stakeholders were looking to streamline log collection for 20+ sites across multiple countries, and the solution needed to meet individual site-specific requirements. Most importantly, in order to effectively manage the number of devices and endpoints in the ecosystem, the team in charge required a centralized view of all event log activity across the entire organization.
Adding to the difficulty of the deployment, due to the highly sensitive personal data collected by this customer and the variety of log formats being ingested, the log management and collection solution would need to support numerous log formats and guarantee the integrity of the logs – meaning they could not tolerate any data loss.
On top of all that, they needed to leverage their existing security and logging software investment. This meant that the log management solution would also need to seamlessly integrate with their current cyber tech stack.
THE SOLUTION
MEETING CUSTOMER NEEDS WHERE OTHERS COULD NOT
The needs and specific logging criteria for this customer were not readily available in any of the end-to-end cybersecurity solutions evaluated by IT stakeholders, including Splunk, Solarwinds, and Syslog NG.
A number of reasons why Snare was the solution of choice:
- Reliability & Trust. Unreliable data or lost data can be detrimental to any business – particularly one tasked with personal data security. The tried and tested reliability of Snare and trust in Snare’s product and corporate dedication to security are why Snare has remained the log management platform of choice for this customer.
- Integrating with Existing Technology. Integrating with the existing SIEM and technology stack was a priority for the C-Suite due to the cost and time associated with making a major technology transition. Snare interoperated and complemented their existing security assets, which meant a seamless and frictionless integration as well as a cost savings by not having to displace their current tech stack.
- A Central View of All Log Data. A holistic view into the logs being collected across the entire organization was essential for monitoring the health of the system. Snare met individual site-specific requirements by reflecting a filtered set of data to a central SIEM for a corporate view of the enterprise.
- Savings on Resources. Snare was quick to deploy and did not require specialized consultants to implement and maintain.
- Long-Term Savings. Snare’s market-leading filtering, truncation, and long-term storage capabilities have led to a cost-savings in the millions.
- Forecasting Usage – The IT stakeholders at the organization were able to easily forecast the cost savings and overall usage of Snare to make the case that implementing Snare would be both an immediate and long-term savings for the business.
-
Front line support where it matters. A flexible infrastructure enabled our support team to customize the installation on-site to cope with unique log sources and reporting requirements in an air-gapped network.
In the end, it was the sum of the parts that convinced this organization to select Snare as the go-to log management and collection solution.
THE OUTCOME
A Trusted Solution Capable of Detecting System Anomalies In a Matter of Minutes
Snare was installed, configured, and deployed using the organization’s own IT resources, which meant an immediate cost savings in both implementation and a long-term cost savings on resources to maintain and support Snare.
With the company’s log collection, filtering, and reporting handled reliably by Snare, both IT stakeholders and the C-suite have confidence that their team can catch any anomalies in their system in a matter of minutes vs months – which is an invaluable security measure when compared to the longterm cost of a data breach for a company that manages sensitive personal data.
PCI
Compliance
PCI compliance involves meeting requirements such as: Protecting stored cardholder data through encryption and maintaining a firewall configuration.Regularly updating antivirus software. Assigning unique IDs to each person with computer access.
Connect Dozens of Sites Globally
Many organizations deperately need a log management solution, like Snare, that can meet individual site-specific requirements, while also providing a centralized view of all event log activity across the organization.
Frictionless Implementation
Companies need to be prepared to face the newly emerging threats of the cyber landscape. Snare’s centralized log management solution can be quickly installed and deployed to start protecting your organization from online threats today.
Reliable Log Management
Originally designed for military and defense, Snare is the de facto centralized log management solution for thousands of organizations worldwide.
