The client wanted to migrate their workloads and on-premise Security Information and Event Management (SIEM) solution to a single cloud native SIEM solution.
Infosys suggested Azure Sentinel as a single solution to manage both on-premise as well as cloud which led to optimized cost and better efficiency for one of the four major telecoms in APAC.
Enterprises can now leverage the full potential of cloud ecosystem with Infosys Cobalt to increase business value and speed to market.
Key Challenges
- Issues in migrating existing on-premise SIEM solution to cloud platform
- Challenges in integrating multiple third-party security and cloud native security controls to the existing SIEM solution
- Absence of Security Orchestration, Automation and Response (SOAR) capabilities with AI/ML features in the existing SIEM solution
The Solution
Experience transformation with secure cloud migration
- Migrated log sources from existing SIEM solution to cloud-based solution
- Integrated cloud native security tools with third-party Azure security solution
- Implemented out of the box and customized data connectors for native and third-party controls
- Consolidated dashboard to monitor and respond to real time threats and incidences
- Integrated security controls with cloud native SIEM and SOAR solution to provide holistic security
Benefits
A cost optimized cloud-based solution
Optimized cost through cloud based SIEM/SOAR solution
Strengthened overall security posture with Azure native security controls
Reduced 150+ GB log source data to 55 GB by optimizing log size
Customized data connectors as per the business requirement where out of the box solution was not available
Optimized efforts and cost as a result of single cloud-based solution
