Success Stories
Information Risk Management for a Global Client
Client:
A global CSC client.Challenge:
- A large global client faced a number of security issues throughout the infrastructure. These issues presented potential vulnerabilities and weaknesses leading to increased risk, requiring a comprehensive program to manage that risk effectively.
Solution:
- CSC’s approach combined static and dynamic counter-measures, delivering more comprehensive security in a much shorter timeframe than a reactive, case-by-case basis to solving problems.
Results:
- In short, CSC's experts were able to help the client achieve the following:
• 90% reduction in vulnerability ratios
• 97% reduction in denial-of-service vulnerabilities
• 530% increase in systems with NO vulnerabilities
A global CSC client with major data centers in North America, Europe and the Far East uses a wide variety of complex technologies. Traditionally the implementation and enforcement of security policies had been left to the individual business units and local data center management. This left the client vulnerable to major security breaches. Addressed effectively, many existing vulnerabilities could be significantly reduced, effectively improving security and minimizing risk for the client.
Tailoring the Approach with CSC’s Information Risk Management Program
CSC identified six major security management issues:
- Lack of global security policy and consistent infrastructure
- No security compliance standards
- No ability to assess compliance with technical security standards
- No regular process to respond to detected “out-of-compliance” situations
- No real-time infrastructure monitoring for security policy compliance (including intrusion detection monitoring)
- No uniform access control method to the global IT infrastructure
Each of these issues indicated a condition which, left untended, was capable of jeopardizing the security and integrity of the entire processing and data infrastructure for the client. In a “reactive” mode, each of those conditions could have been addressed individually and independently – however, CSC’s tailored approach has shown that our Information Risk Management Program (IRMP) effectively reduced vulnerabilities and improved defenses.
Comprehensive, Rapid Results
CSC’s enterprise-wide approach combined static and dynamic counter-measures, enabling the client to benefit from comprehensive security in a much shorter timeframe than would have been possible via the previous, “problem-by-problem” basis.
Putting in place a number of CSC experts, employing proven processes and proprietary vulnerability technology, the client achieved the following results:
- 90% reduction in vulnerability ratios
- 97% reduction in denial-of-service vulnerabilities
- 530% increase in systems with NO vulnerabilities
Contact us today.