国内 & 一般 Works With Rapid7 to Operationalize Cybersecurity

所面临的挑战

国内 和 一般是一家拥有110年历史的企业，积累了多年来不断发展的系统和数十个IT流程. 随着该公司的全球扩张和数字化，他们的攻击面也在不断扩大. 混合的异构环境在增加网络风险方面带来了额外的挑战. 

D&G’s Chief Information Officer, 菲尔意识到，他需要加强公司的网络保护，并授权企业承担自己的网络风险. 但维&在混合环境中，G缺少一个现代组织需要确保其在识别风险和威胁方面得到充分保护的平台, 在规模和背景上. “我们需要一套现代化的技术，这些技术将为我们提供可观察性和主动能力,菲尔说。.

解决方案

Phil looked for a cybersecurity partner that would enable D&G to operationalize cybersecurity; to ensure that the department 和 person in the best position to manage the risk, had visibility into the risk 和 the tools to address it. “Based on the sheer volume of data, 工具, 和 accountabilities that were being distributed back into the business, we knew that we needed an advanced, easy-to-use platform to help orchestrate that.”

国内和通用选择Rapid7的平台与InsightVM进行漏洞风险管理, InsightCloudSec, cloud risk 和 compliance solution, InsightAppSec for application security, 和 威胁命令 by Rapid7 to manage external threats. +, 为了补充他们的安全团队，国内和通用选择了快速的管理检测和响应服务. “When we deployed the Rapid7 platform, it gave us a whole load of insights that we didn’t have before.”

Comprehensive 和 Easy-to-Use

“We identified a number of different tools that would help protect endpoints, 周长, 我们的终端用户. 但是我们所需要的，也是我们所不知道的是如何将所有这些整合在一起,菲尔回忆道。. “We looked for a toolset that would bring that together in an intelligent way. And that’s where the Rapid7 Platform came on our radar.”

“The ease-of-use 和 strength of the Rapid7 Platform is significant. 它提供了一个全面的、集成的解决方案和一套用户友好的工具，”他解释说.

“Digesting complicated, fast-moving data is easier. And that’s really important in this world. 如果事情发生了, 快速消化大量数据集并找出真实数据的能力至关重要. Rapid7 stood out on that front.”

Exp和ing Visibility 和 Ownership of Risk Beyond IT

Rapid7平台使Phil和他的团队能够分配任务的所有权, 行动, 和 risks to different team members within the organization. 结果是, Phil正在将网络安全从技术领域转移出来，使其成为业务流程的核心部分. It is helping improve resilience across the company.

例如，菲尔指出，犯罪分子创建假冒网站是多么容易. There’s literally hundreds with derivatives of the D&克的名字. 最适合决定如何处理这些网站的团队是我们的品牌团队. Do they want those websites taken down or those domains registered to D&G or deleted from the internet register? It’s not a security or a technology decision. 但是历史上在D&G, the br和 team has not been empowered to own this; that fell to the Information Security team to manage.

现在, 州菲尔, “ the person best suited to manage the risk, will own the risk from a cyber perspective. 而且，有了Rapid7平台，这些团队不需要成为网络安全专家. This massively increases the velocity, the productivity of the team. So, 这绝对是一个成本节约，因为不需要建造大量盯着显示器的身体.”

Phil补充说，他从业务团队那里得到了很多关于Rapid7平台的赞扬，因为它能够以一种易于使用和理解的方式接收和呈现大量数据. ”People are telling us, Wow, this is great. I never had this way of looking at 和 managing risk before. I’m more than happy to own it. It’s definitely part of our job.” 

A “Massive” Increase in Productivity

Another winning aspect; the ephemeral single pane of glass. 使用Rapid7平台D&G有一个中央窗格，用于查看所有功能中的风险所在, 和 to make sure each function is mitigating those risks. “From my perspective as the CIO, Rapid7提供了一个平台，该平台将信息安全的能力放大为一个核心功能，使人们对风险有更多的了解,菲尔注意到. 

此外，菲尔说，单窗格“大大”提高了D的生产力&G team by bringing contextual data to the severity of an issue. “它要么是高警报，要么是中等警报，该工具会迅速告诉你需要查看的地方. And so far, it’s been spot on. We’ve not had any false positives that have given us any concern.”

“And, Rapid7’s orchestration capabilities are unmatched,” continues Phil. “Rapid7让我们看到一个更动态的状态，因为云是更动态的. So, 因为MDR SOC能够观察到真正发生的事情，所以可以更好地管理更多风险.” 

新的数据，更深刻的见解

D&G soon learned that with Rapid7, they gained insights from new sets of data, 并将这些数据转换为商业利益相关者能够理解和采取行动的方式. ”Our appetite for metrics hasn’t changed, 但是我们交付上下文来支持指标的能力在Rapid7中发生了重大变化. 它已经现代化了. 与六个月前的情况相比，这是天壤之别，我认为在接下来的六个月里，这种情况还会加速,菲尔说。. 

D&G always tracked some of the technical metrics, such as the number of DdoS attacks, phishing 和 malware emails. And Phil notes that in the past, 这些指标, 这些都是技术性的, 是否相对容易，因为你可以进入工具并找到那些指标. “但Rapid7 SOC提供了更全面的风险视图，使我们能够将围绕品牌的指标带入门户网站, 声誉管理, 和欺骗域名. 这使我们能够了解企业面临的整体网络风险.” 

Phil补充说，他从内部用户那里收到了很多关于Rapid7平台的赞美，因为它能够以一种易于使用和理解的方式接收和呈现大量数据. 

Continuing the Journey with Rapid7

D&G has achieved a lot with Rapid7, 菲尔说，他们的公司仍在朝着他们设想的安全姿态前进. 菲尔补充说，Rapid7路线图是他们进入2023年所依赖的东西. “Rapid7建立业务的方式使像我们这样的公司能够实施网络风险管理，提高企业的弹性，这让我们相信这是一个非常令人兴奋的平台，它将会取得成功.”