International Appliance Company
Learn how an international appliance company increased their detection coverage by 52% in just 2 weeks.
52%
Increase in MITRE ATT&CK Technique Coverage in Two Weeks
138
Detections Deployed in Two Weeks vs Just 11 in 2022
500+
Detection Rules Deployed Since Becoming a Customer in 2023
Challenges
- Slow use case development with detection and data gaps
- Little-to-no data normalization across Microsoft Sentinel feeds
- Reduce dependency on Microsoft
The SOC team at an International Appliance Company encountered several challenges with their security operations, primarily due to the slow development of use cases and data normalization issues across their Microsoft Sentinel feeds, which resulted in limited visibility into detections and data gaps. Furthermore, SOC management desired to establish a detection program that would not further increase their dependency on Microsoft solutions, seeking a more flexible and efficient approach to enhance their security posture.
Enter Anvilogic
Since using the Anvilogic platform, the SOC team has experienced significant advancements driven by Anvilogic’s superior detection engineering capabilities, out-of-the-box Microsoft detection content, and MITRE ATT&CK integration. The team saw a 52% increase in MITRE ATT&CK detection coverage and deployed 138 detections during the first two weeks—a stark contrast to the 11 detections deployed throughout the entire previous year. Since then, over 500 detection rules have been successfully deployed, closing gaps and providing critical coverage for the company. Looking ahead, the team anticipates further efficiencies with Unified Detect for Azure, enabling them to build and test rules with greater speed.