Case Studies

Government Agency Battles Cyberthreats With Omnis Cyber Intelligence

NETSCOUT Case Studies

Issue link:

Contents of this Issue


Page 0 of 1

E N T E R P R I S E l CASE STUDY l Customer Profile This large-scale agency works in collaboration with other government organizations, ensuring that data sharing and knowledge transfer occur in a manner that ensures peak operations efficiency. The agency is a long-standing NETSCOUT customer, with their Network Operations (NetOps) team most recently relying on the nGeniusONE Service Assurance platform to visualize and monitor data center services that had migrated to Equinix Co-located facilities (Co-lo's), which each featured Cisco Application Centric Infrastructure (ACI) Software-Defined Networking (SDN) architecture. The NETSCOUT solution offered the added benefits of visualizing and monitoring agency workloads that had migrated to Amazon Web Service (AWS) and VMware environments. The Challenge In this challenging geopolitical climate, government agencies of every size often represent high-profile targets for cyberattack attempts. This federal agency was no different. The current-day expansion, complexity, and sources of cybersecurity attack attempts seen by the Security Operations Center (SOC) team prompted agency leadership to identify next- level solutions to enrich their security strategies. Their goal was to advance the post-incident forensic security troubleshooting approach delivered by deployed tools, which often relied on retrospective log data as the data sources for cyber analytics. This labor-intensive log analysis process often consumed time that could be better spent isolating and mitigating the threat. OVERVIEW The Challenge • Government SecOps team battling persistent cyberattacks • Gaps in visibility, with SecOps response slowed by log-intensive cyberattack response processes The Solution • NETSCOUT ® Omnis ® Cyber Intelligence • Omnis ® Cyber Adaptor for use with packet- based InfiniStreamNG ® data sources The Results • Remediated Apache Log4j Vulnerability, GeoIP, and persistent cyberattacks • Promotes SecOps/NetOps collaboration through single smart data source for agency analytics Government Agency Battles Cyberthreats With Omnis Cyber Intelligence Realizes Early ROI By Mitigating Apache Log4j and GeoIP Threats

Articles in this issue

Links on this page

view archives of Case Studies - Government Agency Battles Cyberthreats With Omnis Cyber Intelligence