One of the ingredients in Trustwave’s secret cybersecurity sauce is our close working relationship with Microsoft, its security products, and the skillset we have developed to not only manage those products for our clients, but allow them to get the most out of their Microsoft investment.
Trustwave recently worked with a large bank to adopt a Microsoft-first approach to security. With Microsoft Sentinel at the center, Trustwave provided a series of security solutions, including serving as a Managed Security Services Provider (MSSP) with Microsoft-specific additional skills.
The Situation
During Trustwave’s initial conversations with the bank, the client noted that its current MSSP had restrictive development on logbooks and alerts and the IP also resided with the MSSP’s platform, which the financial institution didn’t desire. The bank wanted to maintain the existing monitoring and alerting capability along with any new use cases that would be developed as part of the service. They also wanted access to a greater suite of security products to help mitigate the risk of blind spots.
An additional concern was time. The financial institution wanted to move quickly given its current service expiration date was due to expire. It was imperative that the new services had to be in place within three weeks.
Solving the Problem
Trustwave was able to complete the agreed phase one onboarding and migration objectives by the client’s deadline, with all Microsoft log sources ingested into Sentinel, the respective use cases being active, and our SOC monitoring for IOCs and malicious activity.
The Trustwave solution adopted by the client included:
In addition to the hard services provided, Trustwave also brought the client several “soft” benefits that we have developed and perfected through our decades of delivering cybersecurity solutions and our long-standing relationship with Microsoft.
Trustwave possesses an extensive knowledge of Microsoft technologies and, along with our established accreditations, past deployments, and rapid deployment capabilities, helped make us the preferred choice.
Supporting the Bank’s Security Team
When the bank’s security team, which was new to Sentinel, needed assistance during its transition, we stepped in with our expertise and our technology-agnostic approach allowed us to provide a flexible solution.
Trustwave’s Co-Managed service offering enables clients to retain ownership of their intellectual property (IP), which, as noted, is important to the client.
The client was impressed with Trustwave Fusion and our ability to integrate with Sentinel. In the initial conversations with the bank, its team expressed a strong preference for Fusion, appreciating its central dashboard.
In the end, Trustwave’s solution allowed the bank to drive greater efficiencies, allowing the client to consolidate its technology infrastructure and adopt a Microsoft-first approach.
Trustwave’s onboarding process allowed the client continuity with operations during the contract transition and expedited the migration process seamlessly.
Finally, the client attained its goal of appointing an MSSP to help deliver a managed security service and bring in the expertise to help them migrate seamlessly from its previous system to Microsoft Sentinel and provide 24/7/365 monitoring and management of security devices and systems.
