Nemours Case Study on Cymulate Implementation

This case study details the implementation of Cymulate Breach and Attack Simulation (BAS) by Nemours, a healthcare organization, to enhance its cybersecurity measures. The security team, led by CISO Jim Loveless, faced challenges such as alert fatigue and a lack of visibility in prioritizing remediation efforts against evolving cyber threats. The deployment of Cymulate allowed Nemours to evaluate its defenses, prioritize remediation activities, and improve incident response skills. The case study outlines how Cymulate helped reduce false positives and optimize security controls within Nemours' existing architecture. It also highlights specific outcomes, including the prevention of 168 exploits through a policy change in endpoint protection. Furthermore, the team utilized Cymulate for incident response exercises, which contributed to increased productivity and enhanced offensive security skills. The study emphasizes the importance of continuous threat exposure management and the role of Cymulate in strengthening the organization’s cybersecurity posture.