During the pilot, Google SecOps immediately detected a hidden, active, and long-embedded Advanced Persistent Threat (APT) that had gone unnoticed by all the other platforms under evaluation, including their active SIEM/SOAR.
Challenge
A large American state university system had been relying on the industry leading SIEM vendor for IT infrastructure monitoring for over a decade. The university’s IT environment was diverse, utilizing a range of technologies and security solutions from various vendors.
While generally satisfied with their security posture, the university sought to evaluate the performance and cost-effectiveness of other Security Operation vendors.
Pilot Program of Leading Solutions
The university proactively engaged in a pilot program involving popular SIEM/SOAR/XDR solutions within a selected data center for a fair comparison.
Solutions from four of the largest and most well known providers were tested, including Google Security Operations.
The Google team introduced Dito, a Google Cloud Premier Partner with designated expertise in Google SecOps Service Delivery, to lead the pilot and assist with the evaluation and training. Dito has a strong track record of helping large universities evaluate and deploy Google Cloud security solutions, and recently developed a pilot program specifically for universities.
Results
Dito facilitated the rapid deployment and optimization of the Google SecOps platform. During the pilot, Google SecOps immediately detected a long-embedded Advanced Persistent Threat (APT) that had gone unnoticed by all the other platforms under evaluation, as well as their current active SIEM/SOAR.
Google SecOps unique data enrichment capabilities allowed for quickly transforming information into actionable knowledge. This detection enabled the university to remediate the threat before it could be exploited for ransomware attacks, identity theft, or other malicious activities.
The effectiveness of Google SecOps, combined with Dito’s expertise, led the university to select Google Security Operations Enterprise Plus as the platform of choice to modernize their SOC and enhance their threat detection, investigation, and response capabilities in today’s rapidly evolving cyber threat landscape.
Key Takeaways
- Google SecOps’s advanced threat detection capabilities, powered by Google’s Threat Intelligence, proved superior in identifying hidden threats.
- Dito’s expertise as a Google SecOps Service Delivery partner ensured smooth and efficient deployment and optimization of the SecOps platform.
- The university’s proactive approach to evaluating security solutions led to a significant improvement in their security posture.
