Large Scale SIEM Implementation

Banking client
Large Scale SIEM Implementation
Karlsruhe, Germany

Brief :

A major German IT banking provider required harmonizing its heterogeneous cybersecurity monitoring environment towards a centralized SIEM solution. In particular, the request focused on connecting more than 40.000 assets to the newly established central SIEM solution and developing more than 380 platform-specific use cases.

BxC was asked to lead the implementation of this centralized SIEM solution in order to provide holistic coverage with essential SIEM use case controls.

Year Project Runtime
3
Year Project Runtime
Year Project Runtime
380+
Platform-Specific Use Cases
Log Sources
40.000+
Log Sources

Activities :

TECHNICAL PROJECT MANAGEMENT AND PROJECT LEAD

TECHNICAL PROJECT MANAGEMENT AND PROJECT LEAD

BxC restructured the existing agile-only project approach into a hybrid model leveraging comprehensive and project timeline-focused waterfall project planning while enabling agile methodologies whenever possible.

COORDINATION OF SYSTEM CONNECTIONS

COORDINATION OF SYSTEM CONNECTIONS

As part of the migration efforts, BxC handled and structured the communication with the new solution provider. This aimed at ensuring adequate support during the migration process, limiting the workload of the client administrative team, and structuring workshops across involved business units to address and proactively inform them about all cross-business unit topics.

COORDINATION OF USE CASE DEVELOPMENT

COORDINATION OF USE CASE DEVELOPMENT

BxC managed the development of more than 380 platform-specific SIEM cybersecurity use cases based on the MITRE ATTACK framework utilizing a multivendor team of up to 18 security analysts and use case developers.

results :

BxC has enhanced OT incident security maturity driving continuous improvements. ? Explore our solutions!

Harmonization of the existing logging and monitoring infrastructure towards a central solution

Harmonization of the existing logging and monitoring infrastructure towards a central solution

> 380 platform-specific use cases implemented

> 380 platform-specific use cases implemented

> 40.000 log sources connected following a harmonized logging approach and streamlined technologies

> 40.000 log sources connected following a harmonized logging approach and streamlined technologies

Long term improvement of the overall detection and response capabilities based on improved visibility and transparency

Long term improvement of the overall detection and response capabilities based on improved visibility and transparency