GBS_Annual_Report2018_V12.1_SCREEN
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Glanbia Business Services 2018 Update<br />
CASE STUDY<br />
Information<br />
security<br />
Key Figures Jan—July 2018<br />
Glanbia’s mission critical systems and<br />
networks do not operate as an island.<br />
Being a highly digitised organisation<br />
integrated with trading partners and<br />
selling direct to consumers through<br />
internal channels introduces significant<br />
risks in terms of cyber security<br />
attacks and regulatory compliance.<br />
Cyber attacks can disrupt operations<br />
and cause considerable financial<br />
and reputational damage to even<br />
the most resilient organisation.<br />
15,879,812,969 Total events scanned<br />
306,072,209 Events of security interest<br />
135,380 Attacks defended (100%)<br />
1,150 High alerts<br />
453 Escalations requiring investigation<br />
Challenge<br />
Our IT and security controls<br />
generate millions of events every<br />
day that can be used to identify<br />
malicious or unauthorised activity<br />
on our networks. Making sense of<br />
these events and finding the one<br />
indicator that can help prevent an<br />
attack is no longer a task that can<br />
be done manually.<br />
The ever increasing number and<br />
sophistication of attacks also makes<br />
it impossible to constantly detect<br />
security attacks against our web<br />
sites and IT services.<br />
26<br />
Solution<br />
Glanbia needed to implement<br />
a Security Information & Event<br />
Management platform. Through<br />
our strategic partner, Secureworks,<br />
a suite of monitoring services to<br />
detect malicious activity 24/7—and<br />
perform proactive risk detection—<br />
was implemented for core<br />
infrastructure and critical services<br />
such as SAP and E-commerce<br />
websites.<br />
This service is monitored around<br />
the clock by Secureworks and any<br />
suspicious activity is immediately<br />
escalated to counteract any<br />
targeted attacks against Glanbia.<br />
Results<br />
The security monitoring service is<br />
integrated with over 500 devices<br />
and 25 websites across Glanbia.<br />
Each month the service evaluates<br />
approximately two billion events to<br />
identify security-related warnings, of<br />
which approximately 10,000 security<br />
attacks are detected and automatically<br />
blocked. These events include attempts<br />
to gain unauthorised access to the<br />
Glanbia network, and attempts to install<br />
malicious software on Glanbia PCs and<br />
servers.<br />
Each month, approximately 100 events<br />
are converted into actionable alerts and<br />
escalated into Glanbia or managed by<br />
the Secureworks team. Those events<br />
out of the billions evaluated are the<br />
needle in the haystack that must be<br />
found to maintain a secure and resilient<br />
operating environment for Glanbia.