Improved protection against breaches in a highly distributed manufacturing environment
Faster response and issue mitigation based on improved visibility
Better, data-driven security decisions ensure an improved security posture in a fast-changing environment
Manufacturing is quickly becoming one of the most hacked industries in the world. Newly modernized shop floors and sophisticated operational technology (OT) networks make manufacturing a more attractive target for IP theft, phishing attacks, and ransomware.
This manufacturer was determined to get ahead of the curve by implementing robust security processes before becoming a target. The company relies on an IT team of about 50 with diverse skills and responsibilities to manage both mainframe and .NET apps. Automation requires communications across systems. And the team has to stay up to date on a host of fast-evolving security and compliance requirements.
We use ExtraHop every day. When we see a potential problem, it's the first place we go to check it out. With Reveal(x), we're constantly aware of patterns so we can quickly identify actual issues that need mitigation.
CIO & VP-IT
The company recently overhauled their entire environment, moving from physical servers to hyper-converged systems—all while continuing to operate as usual. Equipment on the shop floor requires constant connectivity, so they needed a security solution that guaranteed zero downtime.
And because the team manages all aspects of IT across a highly distributed estate, they also needed visibility into all their critical systems. Reveal(x) immediately proved effective in its proof-of-concept phase, according to the company's CIO & VP of IT.
"At the first demo, we could tell that we'd be able to operationalize Reveal(x) almost immediately," he says. "We don't have a big enough team to focus solely on security. ExtraHop fulfilled all of our requirements for security and visibility."
Ultimately, the company built out a SNOC (security and network operations center) at headquarters. "We created a command center and put ExtraHop dashboards right in the center of it," says the CIO.
ExtraHop worked closely with the security team on exactly what dashboards would be the most important for them. "We put a dashboard that shows the MITRE framework right in the middle," says the CIO. "That means we're constantly aware of patterns so we can quickly identify actual issues that need mitigation."