For a large insurance firm with over 15,000 employees, building a security operation center required the support of a specialist. Due to their modern, cloud-first development approach, a flexible cloud-based solution was a key requirement for their SOAR (Security Orchestration, Automation, and Response) platform.
How we solved it
When it comes to monitoring security, one size doesn’t fit all. Arco collaborated with the client to identify the specific needs of the various departments, core IT groups and other stakeholders. Together with the IT management, we outlined the business case and a roadmap for success.
With the client’s approval, Arco worked closely with Microsoft to pilot their new Azure Sentinel cloud platform, which combines high performance, artificial intelligence and a comparatively low cost in a scalable service. Following the successful pilot, the project launched into a multi-year implementation targeting over 400 critical business applications. Arco IT juggled a broad spectrum of tasks from managing stakeholders to building the detection logic and automated flows for support operators. We also made sure the Security Operations Center (SOC) team were completely confident with operating the security monitoring system, supporting them with onboarding users and internal clients.