Client Result

How ROCK enhanced cyber security for a large financial services provider

Prior to GDPR legislation having come into effect, ROCK was contacted by a large company operating within the financial services sector. They informed us that their in-house IT department were concerned their cyber security measures were insufficient and that the company would fall foul of new laws as a result. Accordingly, they requested that ROCK audit their current setups and evaluate their cyber security.

Share On:

At a glance

  • 98% reduction in malicious login attempts
  • 13% increase in employee productivity

Situation

Shortly before GDPR legislation came into force, multiple organisations were concerned that their existing security setups were lacking the robustness needed to ensure adherence and – fearful of the potential fines they could receive – sought help. Amongst these companies was CreditCorp*, a financial services provider based in the South East of England.

CreditCorp contacted ROCK following their in-house IT department having determined that they did not believe the company’s existing security measures would be deemed adequate once GDPR had come into force. As a direct result, the company instructed ROCK to audit relevant systems and setups.

Following the completion of our audit, ROCK identified multiple potential improvements. These included updating existing anti-virus solutions and firewalls, the implementation of automated patching and, most importantly, the development of more robust authentication processes.

Recommendations

Having observed that CreditCorp utilised multiple virtual platforms – many of which contained sensitive data pertaining to customers – and that logs suggested several were persistently subjected to brute force attacks, ROCK implemented multi-factor authentication to enhance cyber security. In turn, all login attempts required at least one further form of verification to be undertaken before a user was able to access resources. IP checks were also leveraged in order to enhance security; login attempts from non-whitelisted addresses were prevented from accessing portals entirely.

With employees typically using several online applications each day, however, there was a significant possibility that enhanced login procedures could consume time and generate inefficient practice. To address this, ROCK utilised Smart Single Sign-On, a feature that affords users one set of credentials for multiple platforms and signs users in to several applications simultaneously. Bespoke configurations were then leveraged in order to ensure this did not generate deficiencies in security.

Outcome

Within several weeks of changes being implemented, server logs were analysed and it was determined that malicious login attempts had fallen to almost zero.

Furthermore, by utilising single sign-on practices, CreditCorp’s employees benefited from systems that allowed them to undertake their work in a more efficient manner. As a result, employee productivity grew by 13%.

*We value our clients and their right to a confidential consultation. While the name has been altered, the results are real.

More Insights

data set amal thumbnail.jpg
Digital Transformation

Why data set amalgamation is key to superior decision making

05/11/2019

View more
best place to work IT thumbnail.jpg
Culture

How we built the best place to work in IT

03/12/2019

View more
hotel of the future thumbnail.jpg
Digital Transformation

Hotels of the future: how IoT can transform the hospitality industry

06/01/2020

View more
Jane Onboarding Thumbnail 700x500.jpg
Performance Improvement

IT onboarding at ROCK

19/11/2019

View more

Hello, welcome to the ROCK live chat.

Your browser is out-of-date!

Update your browser to view this website correctly. Update my browser now

×