A leading APAC country's Government IT Body (GIB), tasked with spearheading cybersecurity and ICT policies for the Government departments under its supervision, approached us with several challenges associated with handling millions of incidents every month.
The GIB deployed DashMagic® to manage 120,000 endpoints which later grew to 150,000+ endpoints and have been successfully managing millions of incidents every month.
The GIB faced the tedious task of analyzing approximately 10 million incidents generated every month. They also wanted to levy monthly usage charges on the various government departments for the DLP based on the actual number of department’s endpoints supported by the DLP. There was no easy method or system available to compute the charges on an ongoing basis and generate monthly usage bills for the government departments using the DLP services. The DLP OEM did not have any method to support this must-have requirement.
After deploying DashMagiq® incident response workflow automation to manage millions of incidents per month, the GIB gained the advantages of:
Automatic rule-based processing and closure of alerts in DashMagiq® as well as the DLP.
Visually analyzing incidents on the DashMagiq® custom dashboards and prioritizing the approximately 1 million incidents that needed genuine attention, filtered out from the approximately 10 million generated in a month.
Dashboards with incident data of up to 1 year were available for review, neatly classified in monthly tables, with department-wise separation, all of which were unavailable in the DLP’s dashboards.
Each department was provided their own dashboard to view alerts and reports related to their endpoints.
Automatic Report Generation at the end of every month, for DLP incidents, monthly user data and consolidated billing reports.
The option to display in the dashboard all the active DLP policy rules, allowing seamless operation as changes to name and description in DLP policy rules are now automatically synced and reflected in the DashMagiq® dashboards.
SLA is now at 100% with automatic rule-based closures put in place through DashMagiq automation.
The bills for DLP usage for a month that used to get created only by the 5th or 6th of the subsequent month, now gets automatically generated on the 1st.
Provisioning/deprovisioning of endpoints of different departments that used to take about 2 days, now takes only a few minutes.
Policy application on endpoints that used to take about two days, now gets done within a few hours.
DashMagic® Unified Management Console
In a mid to large organization, cybersecurity teams sometimes spend several hours in a day just on consolidating data and making reports. DashMagiq® UMC dashboards can enable your cybersecurity team to spend their time on critical tasks like drafting stringent policies and strengthening the security landscape. DashMagiq® UMC simplifies the way you gather, present, and look at data. With apt and on-time reporting, you can analyse and control cybersecurity incidents more smartly.
Learn More