NEW

The True Cost of a Security Breach

Arrow pointing right
ExtraHop Logo
Contact us
Menu iconX icon
  • Productschevron right
  • Solutionschevron right
  • Why ExtraHopchevron right
  • Blogchevron right
  • Resourceschevron right
Sign In
Contact us

Arrow pointing leftBlog

Professional Services Customer Success Stories: Resolving Device Inventory Pitfalls

Walter Phillips

October 27, 2020

The ExtraHop Professional Services Team has something to offer big companies as well as small. They recently engaged with one of our larger customers as part of a bundled service of migration to Reveal(x). That customer has a highly skilled IT team, and consequently it had taken them a while to connect with us. So, did our team have insights that benefitted them?

While not technically part of the standard migration service, the ExtraHop Solution Architect (SA) decided to review their data feed for the EDA's being migrated. He discovered that no new devices were reflected in the last 18 months. This seemed odd considering the dynamic nature of this Fortune 100 organization and the fact that Reveal(x) automatically detects and classifies devices communicating on the network.

Upon further investigation the SA realized the client's packet aggregator was not working. At some point ARPs (Address Resolution Protocol) stopped being delivered. Over two hundred devices were not being detected or monitored.

For eighteen months they were unaware they had a visibility gap and that their security posture was at risk. They, like many IT admins, had multiple system responsibilities and relied on operational cues to alert them to issues. With no alerts the assumption was the system was working fine.

Working with the packet aggregator company, the SA determined the firmware was outdated (very outdated) and an upgrade would solve the issue. With an upgrade and a configuration change, all those missing devices were now visible.

Improving Security Posture Through Health Checks

The "aha" moment for them was the realization that regular health checks should be an integral part of maintaining system integrity. The adage "you don't know what you don't know," applied in this situation. Having a Solution Architect, an ExtraHop expert who can spot the abnormal, investigate root causes, and optimize the system, freed IT to focus on higher value tasks and improved the performance of their Reveal(x) and their overall security.

We want to help you use Reveal(x) to eliminate blind spots! Reach out to our ExtraHop Professional Services Team to learn more.

Discover more

CybersecurityCommunityNDR

Explore related articles

Professional Services Customer Success Stories: Scaling Digital Experiences During COVID-19

September 17, 2020

Learn how ExtraHop Professional Services helped one company secure a massive increase in personal teller machine use in lieu of in-person interactions.

CybersecurityIndustry TrendsRevealXTips and HacksNDR
Read articleArrow pointing right

ExtraHop Named a Representative Vendor in the 2020 Gartner Market Guide for NDR

June 17, 2020

Get the top takeaways from the 2020 Gartner Market Guide for Network Detection and Response and see ExtraHop as a Representative Vendor.

CybersecurityIndustry TrendsNTANDR
Read articleArrow pointing right

How To Get a Complete Inventory of Devices on Your Network

August 20, 2020

Device inventory is vital to security, and is the first requirement of the CIS Top 20 security controls, but current inventory tech leaves huge blind spots. How can you get a better inventory without undue management hassle?

CybersecurityNDRRevealX
Read articleArrow pointing right

Experience RevealX NDR for Yourself

Schedule a demo
Contact us