Healthcare Insurance Provider Tool Visibility Case Study

This case study details the collaboration between Optiv and a healthcare insurance provider to enhance the visibility of security tools within the client's cybersecurity program. The objective was to address the complexities arising from a diverse array of security technologies that had been adopted over time, which created challenges in identifying gaps and redundancies in security controls. The Optiv team conducted discovery workshops with subject matter experts to map the existing security tools to Optiv's controls and the MITRE ATT&CK® framework. This mapping process revealed eight technical needs for additional tools, 17 functional improvements that could be made with current tools, and two areas of redundancy that could simplify management efforts. Ultimately, the engagement provided the InfoSec manager with a clear plan for budget allocation and a structured approach to building an effective technology stack that aligns with long-term security objectives.