Reducing risk and alleviating attrition with an incident response team for a Fortune 500 multinational industrial conglomerate.
SITUATION
Our client was in the middle of restructuring their enterprise, including business org redesign and divestitures, which created some volatility within their security organization and caused employee retention issues that resulted in challenges in providing 24x7 monitoring to their organization. Within the client’s Security Operations Center (SOC) and Cybersecurity Incident Response Team (CIRT) there were increasing challenges to properly and quickly respond to security threats. Apex was chosen to supply SOC and CIRT services and staff due to our experience in the Cybersecurity space.
Reduced Risk with 24/7 SOC and CIRT Security Operations Coverage
Apex provided three teams of ten remote consultants to offer 24x7 security monitoring. The teams were comprised of Security Incident Responders (aka “Event Analysts”) as well as Operational Incident Engineers. Apex conducts all interviewing, hiring, and onboarding of consultants and manages the team against the client’s Key Performance Indicators (KPIs). Through the KPI adherence and by conducting biweekly performance management, Apex eliminated the attrition issue within the first three months of the engagement, and ongoing thereafter.
RESULT
By stabilizing the client’s cybersecurity operations monitoring and incident response, we helped them extend their capabilities to their customers throughout, despite challenging business divestitures that may have otherwise left vulnerabilities in our client’s business and to their customers. Apex teams close more tickets than were being closed before and continue to keep the business running while our client’s full-time employees moved over to their new division spinoff companies they divested. In the process, we were able to reduce risk to the client and maintain 24/7 security coverage. This engagement has been ongoing for over three years.
