Build Versus Buy a Security Operations Center
After exploring various options, Trusource concluded that it needed a security information and event management (SIEM) technology solution for complete visibility across its distributed IT infrastructure. It discovered, that the total cost of ownership of an in-house SIEM can be prohibitive. The company realized during a SIEM sales training session that to actually gain value from the SIEM, it would need to be the core part of a security operations center and a fulltime security expert would be required to oversee the solution and weed out false positive alerts—and top security talent is expensive and tough to land in a competitive tech climate like Austin. Trusource decided that, rather than building and staffing a SOC in house, a SOC-as-a-service that combined the people, process and SIEM technology was the better choice.
After careful evaluation, Trusource determined that Arctic Wolf Network’s AWN CyberSOC™ was the right solution. Arctic Wolf provided a turnkey solution with no hardware or software to purchase. The service installed in minutes, and the unique pricing model provided a predictable ongoing expense since it was not based on the amount of log data collected or the number of incidents, for which many other services charge.
Another important factor was that Arctic Wolf provided a named Concierge Security Engineer™ (CSE) for Trusource. This meant that Trusource’s IT team could rely on a security expert to help manage the threats they faced, freeing up their IT team members to focus on their own specific areas of expertise. Having direct access to a senior security expert meant that questions were answered quickly rather than having to go through an escalation process.
AWN CyberSOC™ Delivers for Trusource
With Arctic Wolf’s SOC-as-a-service, Trusource’s cybersecurity needs are well taken care of—from advanced threat detection to compliance reporting—giving its IT team peace of mind and greater flexibility. The service costs a fraction of what it would have cost Trusource to build the capabilities internally. In fact, Trusource estimates that they were able to save up to 90 percent of what it would have cost to build it themselves.
Trusource now has real-time security insights, and the benefit of Hybrid AI—a combination of machine learning and human expertise (the CSE)—so threats and incidents are quickly identified and receive an immediate response. Hybrid AI also cuts down false positives which can keep an IT team running around in circles. All in all, it provides 10x better threat detection with 5x fewer false positives, which has already proven valuable during a couple of phishing alerts that were remedied immediately.
As Trusource works across regulated industries, the customized compliance reporting services for PCI, HIPAA and ISO 27001, among others, have proven highly beneficial. And the solution has saved the company’s IT staff significant time in dealing with all kinds of issues.
Security expertise is a critical component. That the Arctic Wolf solution includes a named CSE is a huge benefit to Trusource’s IT team. This fact provides them a level of comfort knowing that cybersecurity concerns are always under control as they focus on other important IT functions. Best of all, the security process is so seamless that the Arctic Wolf CSE has essentially become a de facto member of the team.