Protecting a global manufacturer’s critical systems
An international packaging company was concerned about its security posture after expanding rapidly. By selecting Redscan, the company now has visibility across its global network of offices and strengthened its protection of key industrial control systems against cyber-attacks.
- Fragmented IT estate
- Expanding hybrid infrastructure
- Legacy control systems
This organisation is a global packaging provider delivering sustainable solutions to the food and beverage, consumer, agricultural and transportation industries. Due to a process of consolidation, culminating in it becoming a globally integrated business, the organisation’s threat profile had increased significantly.
The company was highly aware of the wider cyber security challenges affecting the manufacturing industry and was worried that a cyber-attack could lead to system downtime and negatively impact production and its financial performance.
The manufacturer relied upon a number of specialist industrial control systems running legacy, unsupported software. The company needed to mitigate the risk of being unable to patch critical systems by enhancing its ability to proactively monitor them for threats that might seek to exploit any unpatched vulnerabilities. The company’s decision to migrate workloads to the cloud had also intensified its need to improve threat coverage and visibility.
The organisation had a SIEM system in place, but this offered only limited visibility across its hybrid environment. It did not provide the assurance that attacks would be identified fast enough to minimise damage and disruption. With only a relatively small number of IT specialists for its size, the company also lacked the resources to be able to respond to incidents out of regular business hours.
The global plastics manufacturer recognised the importance of developing a long-term partnership with a top tier Managed Detection & Response (MDR) provider. It identified that Redscan and its award-winning MDR service, would provide the support it needed to hunt for and help shut down cyber threats, 24/7.
By integrating experienced security personnel, leading network and endpoint detection technologies and up-to-the minute threat intelligence, the service significantly improves security visibility across the company’s hybrid infrastructure and reduces its mean time to detect and mean time to respond to threats.
Redscan’s Security Operations Centre (SOC) professionals operate as a virtual extension of the team, providing the high-quality insight and guidance its IT team needs to respond to incidents whenever they arise.
To help mitigate the risks posed by the use of legacy systems, endpoint sensors are installed on each of the organisation’s key assets. These capture a range of security telemetry, which is used by Redscan’s specialists to inspect more deeply into the company’s IT systems and hunt for threats.
To ensure that the manufacturer stays fully on top of security risks, Redscan also conducts regular vulnerability scanning and provides support to help address any exposures identified.
The Head of IT Security says:
“Right from the start, I found that the Redscan team were very much on top of their game. From both project management and technical perspectives, I would rate them as excellent.”