Hedge Fund Manager Case Study
by Vertek Labs
Customer Profile:
- Hedge Fund Manager.
- Over $125M in asset management.
- Size: <20 employees.
- Hybrid Google and MSFT environment.
- Regulated by SEC safeguards.
Challenge:
Phase 1: The client experienced a security breach through a session token hijacking that compromised an employee email and resulted in a phony wire transfer request.
- Fix the real-time event and ensure bad actors no longer had access to the environment.
- Provide a readout on the extent of the compromise.
Phase 2:
- Consolidate Google and MSFT environment.
- Review MSFT Cloud and Security Configurations.
- Provide additional Cybersecurity recommendations.
- Add 24×7 SOC coverage service.
Vertek Solutions:
Phase 1:
- Conducted a breach investigation to understand the extent of the compromise.
- Identified security failures and ensured no additional comprise existed.
- Deployed 24×7 SOC Management of the environment.
Phase 2:
- Migrated from Office 365 to Microsoft 365 for enhanced security features.
- Configured conditional access and Intune for mobile device management.
- Migrated them from Bitdefender to Defender for endpoint protection.
- Added ransomMDR for additional anti-ransomware protection.
Outcomes:
- Phase 1 completed in 48 hours.
- Phase 2 completed in 2 weeks.
- +20 devices configured and monitored.
- Roadmap to evolve MSFT XDR.
- Analyst-led monthly review to ensure compliance and security event review.
- Zero data breaches or security incidents since implementation.
Recommended Posts
Cyberstrike: Training for Nation State Attacks
February 11, 2025
CVE-2024-55591
January 15, 2025
Microsoft Exposure Assessments
October 29, 2024