A private healthcare technology company located in South Africa is responsible for securing its customers’ medical data and financial records. With patient care a top priority for the firm, they require a consolidated platform that integrates with various third-party partners to ensure comprehensive protection
According to the 2022 SonicWall Cyber Threat Report, the healthcare industry has receiving some of the largest spikes in malware of late. As this healthcare company deals with sensitive information daily, including medical information and financial data, it’s paramount that they have a trusted solution to protect this sensitive data.
Like many industries, the healthcare sector struggles to adopt a security-first mindset among long-standing staff members that may not have adopted modern security practices. This dynamic often leaves security gaps, while company data and patient information becomes exposed to a high level of risk.
"The integration with the endpoints and Trend Vision One as a whole, has given me a couple of nights back to sleep."
Head of Security, South African Healthcare Technology Provider
The South African Healthcare company placed emphasis on the importance of having a cybersecurity platform where third-party solutions can integrate smoothly. “The nice thing with Trend Vision One is the seamless integration that we have with Microsoft 365,” says the company’s head of security. “Having that peace of mind, in terms of the retrospective scanning, is huge.”
In addition, the Trend security platform has helped decrease the time for endpoint remediation. “The integration with the endpoints and Trend Vision One as a whole, has given me a couple of nights back to sleep,” says the company’s head of security. “If we look at any endpoint detections, our incident response time used to be 45 minutes. Now with Trend Vision One, our average response time to remediation is 27 seconds.”
The healthcare organization has been a Trend customer for over eight years. Through this period, they have migrated their 2,600 users from Trend Micro™ Enterprise Security Suites to Trend Micro™ Smart Protection Suites and have adopted Trend Vision One as their primary security strategy.
“We made the decision to give Trend Vision One a try. We wanted to move from a traditional SOC type environment to an actual managed detection and response environment,” says the company’s head IT security officer. “And that’s where Trend Vision One really changed the dynamic.
“It also changed the thought process from the historic look at the firewall log, endpoint log, and Splunk dashboards, all of which were very much siloed, to a more holistic mindset,” continues the head IT security officer. “The fact that we can now consolidate and take all those analytics and turn them into actionable intelligence is a massive improvement.”
Trend Vision One features, such as forensic analysis on the incidence collection, allows the company to remediate an incident without interrupting business flow. In addition, the Trend Vision One operations dashboard provides visibility into the company’s overall risk index. “This feature enables my team to have a thorough understanding of our company’s risk posture, allowing them to take risk-informed response actions,” says the company’s head IT security officer.
"If we look at any endpoint detections, our incident response time used to be 45 minutes. Now with Trend Vision One, our average response time to remediation is 27 seconds.”"
Head of Security, South African Healthcare Technology Provider
Integrating Trend Vision One has delivered efficiencies to the organization’s security processes and team. This includes reducing their mean time to detect (MTTD) and mean time to respond (MTTR). It has enabled server patching 20 times quicker than before. “We used to take on average 60 days to patch a server. We have brought that down to 3 days, which is 20 times faster,” says the company’s head of security.
The importance of Trend Vision One continuous remedial scanning has also delivered benefits. “If we look at the time to respond, our priority was vulnerability patching on our public infrastructure,” says the company’s head of security. “Having that insight was something that we have never had before. The fact that we’ve got continuous remedial scanning for zero-day vulnerabilities that are getting fed through to the dashboard is impactful.”
With the goal of safeguarding patient data, the organization chooses to work with Trend based on their record of innovation and consistently reliable products. Most recently, they have activated Trend Vision One™ - Attack Surface Risk Management (ASRM) to identify, assess, and mitigate risk before it becomes an issue. “ASRM has been an eye opener for us. It has allowed us to see our attack surface in a whole new light,” says the company’s head of security. “By letting us benchmark our progress, we have been able to harden our defenses effectively. It has enabled us to proactively manage our risk, accelerate investigation, and prioritize remediation actions across our environment.
The company continues to improve its incident response time and is searching to identify new threat mitigation tactics and will continue to work with Trend to keep securing its customers’ information.
Company Name South African Healthcare Technology Provider
Industry Healthcare
Region South Africa, Africa
IT Environment Microsoft 365, Microsoft Azure, Microsoft System Center Configuration Manager, Splunk
Solutions Vision One
XDR