It was difficult to analyze and respond to increasingly sophisticated and surging cyber threats with the existing system that could only handle single events.
By implementing eyeCloudXOAR (SIEM, SOAR), we established a data collection and analysis platform based on distributed processing. We set up a SOAR-based operational response system utilizing the FCTI (Financial Cyber Threat Intelligence) threat information from the Financial Security Institute.
We reduced the security management processing time to one-sixth of the previous duration, enabling faster responses to new threats. Through FCTI integration, we continuously share new threat information with various institutions, building a robust security network.