Cybersecurity Case Study on ArcSight Intelligence

This case study details the implementation of ArcSight Intelligence by a global manufacturer to enhance its cybersecurity measures. The organization, which already utilized CrowdStrike Endpoint Detection and Response, sought additional intelligence for threat management. The case study outlines a 30-day proof-of-concept project where ArcSight Intelligence was employed to detect and remediate a brute force attack in progress. The cybersecurity team discovered multiple endpoint anomalies and received a prioritized report of action items. The study explains how threats were graded to assist in prioritization, leading to swift actions that minimized exposure risks. Following a 48-hour remediation period, the organization engaged further with ArcSight’s threat hunting team for additional insights and guidance on preventing future threats. The case study concludes with the organization’s intention to implement ArcSight Intelligence for ongoing cybersecurity efforts, highlighting the importance of comprehensive security solutions in protecting distributed endpoints.