.png)
Top 50 Financial Services Company
A top 50 financial services company boosts detection coverage by 91%.
91%
increase in overall detections deployed
6,500+
hours saved
23%
Increase in MITRE ATT&CK technique coverage
31%
increase in alert correlation
Challenges
- Low visibility across data, especially endpoint
- Slow to build and deploy detections
- Lack of actionable alerts from SIEM
Challenges
The SOC team at a Top 50 Financial Services Company faced critical challenges in their security operations. As a global entity, they had low visibility across different datasets, including their endpoint data in Tanium. In addition, the team had difficulties building and deploying effective detections in their SIEM. They found that the alerts were not high-fidelity enough for them to take action, making it difficult to prioritize and address the most critical threats promptly.
Enter Anvilogic
Within two months, Anvilogic enabled the SOC team to make significant improvements to its security operations. With out-of-the-box content and a no-code drag-and-drop builder, Anvilogic helped the team deploy over 500 detections — a 91% increase — across 15 additional data feeds. The increased detections led to a 23% increase in their prioritized MITRE ATT&CK coverage. As a result of the additional coverage, the team realized a 31% increase in alert correlation through behavior-based Threat Scenarios, enabling the team to triage and prioritize a manageable alert volume per day. The overall improvements have enabled this SOC team to improve team efficiency and enable proactive security.
.svg)
