It was difficult to analyze and respond to increasingly sophisticated and surging cyber threats with the existing system that could only handle single events.
By introducing eyeCloudXOAR (SIEM, SOAR), we established a data collection and analysis platform based on distributed processing. We set up a SOAR-based operational response system utilizing threat information from the Financial Security Agency's FCTI (Financial Cyber Threat Intelligence).
We reduced the security management processing time to one-sixth of the previous duration, allowing us to respond to new threats more quickly. Through FCTI integration, we continuously share new threat information with various institutions, building a robust security network.