The aging of the existing system limited data processing and analysis, and the manual monitoring tasks resulted in a long threat response time (30 minutes).
We upgraded and implemented SecuLayer's eyeCloudXOAR (SIEM, SOAR) product. We standardized the threat response process by implementing an automated workflow playbook.
By integrating with Palo Alto firewalls for blocking, we significantly reduced the security response time from 30 minutes to under 1 minute. This resulted in a leveling up of response quality, regardless of individual capabilities.