Deployment of DashMagiq® across 130,000 endpoints revolutionized a leading bank's alert resolution process, by automating the assignment and escalation of DLP alerts across departments.
Automated workflows reduced manual intervention, significantly improving SLA adherence and resolution times.
With policy governance and exemption mechanisms in place, unnecessary alerts were minimized, making the system more efficient.
The bank struggled with a heavy backlog of DLP alerts that required repeated manual follow-ups from unresponsive business users. Additionally, alerts generated by subsidiary users did not follow the predefined hierarchical structures, making it difficult to assign and resolve them in a timely manner. The absence of a mechanism for users to request temporary rule exemptions also led to more alerts piling up, creating friction between the business and cybersecurity teams. This resulted in massive delays, poor SLA adherence, and an overwhelmed cybersecurity team.
Comprehensive solutions to these challenges were achieved with the deployment of DashMagiq® for 130,000+ endpoints:
DashMagiq® introduced an automated alert routing system that directed alerts to the appropriate authorities without the need for manual assignment.
Automated reminders and escalations kept reviewers on track, improving SLA adherence.
DashMagiq’s Policy Governance module enabled users to request temporary rule exemptions, reducing unnecessary alerts and enhancing efficiency.
Alerts from subsidiary users were also automatically routed for manager assignments, maintaining a consistent workflow.
Manual reassignment options were also introduced, both for SOC Analysts and managers, allowing them to resolve alerts more efficiently.
Customized method to process alerts for group or generic user IDs ensured no slippage in alert investigations and timely resolution.
Simple business friendly questionnaire ensured the alert review process and the reasoning behind the actions were automatically documented for easing the process of compliance audits.
The deployment of DashMagiq® significantly transformed the bank's alert resolution process, yielding multiple benefits:
Faster alert resolution: Alerts that previously took days and significant effort from the cybersecurity team were now resolved within a day with minimal effort.
Elimination of alert backlog: The backlog caused by uncertainty over alert assignments was eliminated.
Streamlined policy exemptions: Policy exemptions that once took over two days were now handled within an hour, significantly reducing delays.
Automated reporting: Reports that were manually generated upon request are now automatically sent daily, improving transparency and accountability.
DashMagiq® Email Quarantine Workflow
When an email is quarantined by a DLP solution, DashMagiq® Email Quarantine Workflow automatically notifies the sender's manager or an appropriate stakeholder. It automates the process of quarantine management by deleting or releasing emails based on the responses and decisions of the manager(s) or stakeholder(s). The workflow presents a questionnaire to the manager or stakeholder to record their decision and reasons. DashMagiq® automatically releases the email from the DLP and creates and stores the documentation necessary for compliance.
Learn More