National Bank Minimizes Security Risk and Supports New Business with McAfee Security Solutions

Similar documents
Cisco ACI Helps Integra Compete in Next-Generation Telecom Services Market

Analytics-as-a-Service Firm Chooses Cisco Hyperconverged Infrastructure as a More Cost-Effective Agile Development Platform Compared with Public Cloud

Empowering Systems of Engagement: Business Value of Couchbase NoSQL Engagement Database. An IDC White Paper, Sponsored by Couchbase and Intel

Optimizing Infrastructure Management with Predictive Analytics: The Red Hat Insights Approach

Text Messaging Helps Your Small Business Perform Big

Cisco Preparing Its Datacenters for the Next Generation of Virtualization and Hybrid Cloud with Its Application Centric Infrastructure

Predictive Insight, Automation and Expertise Drive Added Value for Managed Services

Astrium Accelerates Research and Design with IHS Goldfire

The Emerging Role of a CDN in Facilitating Secure Cloud Deployments

Assessing the Business Value of the Secured Datacenter

Business Value Enabled by HPE Datacenter Care Service

Red Hat Virtualization Increases Efficiency And Cost Effectiveness Of Virtualization

The Business Value of Modernizing Infrastructure with Hyper-Converged Systems

BUSINESS VALUE SPOTLIGHT

Global Headquarters: 5 Speen Street Framingham, MA USA P F

Innovating with Real-Time Data and Insights with SAP HANA for Better Business Outcomes and More Efficient Operations

Automated Infrastructure Management Powers Future-Ready Enterprise Clouds

SYMANTEC: SECURITY ADVISORY SERVICES. Symantec Security Advisory Services The World Leader in Information Security

Thin Clients as Attractive Solutions for Cost Effective, Secure Endpoint Management

Cyber Resiliency: A Recipe for Digital Trust?

Windows 7 Done Right: From Migration to Implementation

Oracle Autonomous Transaction Processing: Foolproofing the Database

DATA SHEET RISK & CYBERSECURITY PRACTICE EMPOWERING CUSTOMERS TO TAKE COMMAND OF THEIR EVOLVING RISK & CYBERSECURITY POSTURE

RSA INCIDENT RESPONSE SERVICES

ROI CASE STUDIES. Case Study Forum. Credit Union Reduces Network Congestion, Improves Productivity, and Gains More than $800,000 in Benefits with

IBM Global Technology Services Provide around-the-clock expertise and protect against Internet threats.

NEXT GENERATION SECURITY OPERATIONS CENTER

United Automotive Electronic Systems Co., Ltd Relies on McAfee for Comprehensive Security

W H I T E P A P E R I B M P u r e F l e x a n d F l e x S y s t e m : I n f r a s t r u c t u r e f o r I T E f f i c i e n c y

IDC MarketScape: Worldwide Datacenter Transformation Consulting and Implementation Services 2016 Vendor Assessment

IDC MarketScape: Worldwide Cloud Professional Services 2018 Vendor Assessment

IDC MarketScape: Worldwide Network Consulting Services 2017 Vendor Assessment

Building a Threat Intelligence Program

AKAMAI CLOUD SECURITY SOLUTIONS

DATA SHEET RSA NETWITNESS PLATFORM PROFESSIONAL SERVICES ACCELERATE TIME-TO-VALUE & MAXIMIZE ROI

R O I C a s e S t u d i e s

Vendor Snapshot 2017: HP Inc. on Print and Document Security Services

2018 GLOBAL CHANNEL PARTNER SURVEY THYCOTIC CHANNEL PARTNER SURVEY REPORT

RSA INCIDENT RESPONSE SERVICES

W H I T E P A P E R I B M P u r e S y s t e m s : D e l i v e r i n g I T E f f i c i e n c y

Building Resilience in a Digital Enterprise

IDC Business Value Analysis of Cisco Services

INTRODUCTION. We would like to thank HelpSystems for supporting this unique research. We hope you will enjoy the report.

SOLUTION BRIEF RSA ARCHER IT & SECURITY RISK MANAGEMENT

Hybrid Cloud for the Enterprise

Service. Sentry Cyber Security Gain protection against sophisticated and persistent security threats through our layered cyber defense solution

Cisco Start. IT solutions designed to propel your business

Flexible Network-Based, Enterprise-Class Software-Defined Solutions for Hybrid Public/Private Network Connectivity

A Mission Critical Protection Investment That Pays You Back

THE EFFECTIVE APPROACH TO CYBER SECURITY VALIDATION BREACH & ATTACK SIMULATION

A Forrester Total Economic Impact Study Commissioned by ServiceNow January 2018

Imperva Incapsula Survey: What DDoS Attacks Really Cost Businesses

in collaboration with

SIEM: Five Requirements that Solve the Bigger Business Issues

Global Headquarters: 5 Speen Street Framingham, MA USA P F

Services solutions for Managed Service Providers (MSPs)

What is Penetration Testing?

eguide: Designing a Continuous Response Architecture 5 Steps to Reduce the Complexity of PCI Security Assessments

IDC MarketScape: Worldwide Mobile Threat Management Software Vendor Assessment

Worldwide Datacenter Automation Software 2013 Vendor Shares

Six Weeks to Security Operations The AMP Story. Mike Byrne Cyber Security AMP

IDC MarketScape: Worldwide Datacenter Transformation Consulting and Implementation Services 2014 Vendor Assessment

The Business Value of Optimizing Datacenter Deployments

I D C T E C H N O L O G Y S P O T L I G H T. S e r ve r S e c u rity: V i r t u a l ization and Cloud C h a n g e s E ve r yt h i n g

Global Headquarters: 5 Speen Street Framingham, MA USA P F

RSA Solution Brief. Managing Risk Within Advanced Security Operations. RSA Solution Brief

5 Trends That Will Impact Your IT Planning in Layered Security. Executive Brief

Turkcell Selected SECURRENT for Its User Segmentation Project

Gain Control Over Your Cloud Use with Cisco Cloud Consumption Professional Services

Mastering The Endpoint

PONEMON INSTITUTE RESEARCH REPORT 2018 STUDY ON GLOBAL MEGATRENDS IN CYBERSECURITY

Six Sigma in the datacenter drives a zero-defects culture

Backup and Recovery: New Strategies Drive Disk-Based Solutions

MOBILE SECURITY 2017 SPOTLIGHT REPORT. Information Security PRESENTED BY. Group Partner

Top 10 most important IT priorities over the next 12 months. (Percent of respondents, N=633, ten responses accepted)

Traditional Security Solutions Have Reached Their Limit

Vulnerability Management Trends In APAC

Global Headquarters: 5 Speen Street Framingham, MA USA P F

HOW TO HANDLE A RANSOM- DRIVEN DDOS ATTACK

AUTOMATED PENETRATION TESTING PRODUCTS Justification and Return on Investment (ROI)

Defend Against the Unknown

The 2017 State of Endpoint Security Risk

CYBER RESILIENCE & INCIDENT RESPONSE

MIS5206-Section Protecting Information Assets-Exam 1

New Economics of Datacenter Interconnect

SIEMLESS THREAT DETECTION FOR AWS

Quantifying the Value of Firewall Management

FOR FINANCIAL SERVICES ORGANIZATIONS

Assessing the Business Value of Network Virtualization

Continuous protection to reduce risk and maintain production availability

GDPR: Get Prepared! A Checklist for Implementing a Security and Event Management Tool. Contact. Ashley House, Ashley Road London N17 9LZ

SIEM Solutions from McAfee

Next Generation Backup: Better ways to deal with rapid data growth and aging tape infrastructures

THE CYBER SECURITY PLAYBOOKECTOR SHOULD KNOW BEFPRE, DURING & AFTER WHAT EVERY DIRECTOR SHOULD KNOW BEFORE, DURING AND AFTER AN ATTACK

Perimeter Defenses T R U E N E T W O R K S E C U R I T Y DEPENDS ON MORE THAN

WITH ACTIVEWATCH EXPERT BACKED, DETECTION AND THREAT RESPONSE BENEFITS HOW THREAT MANAGER WORKS SOLUTION OVERVIEW:

IDC MarketScape: Worldwide Security Solutions and Services Hardcopy 2017 Vendor Assessment

Integrated Access Management Solutions. Access Televentures

Intent-Based Networking in the Limelight with Cisco's Launch of Catalyst 9000 Series Ethernet Switches

The Business Value of HPE ConvergedSystem for SAP HANA

Transcription:

IDC ExpertROI SPOTLIGHT National Bank Minimizes Security Risk and Supports New Business with McAfee Security Solutions Sponsored by: McAfee Matthew Marden February 2017 Overview Robert Ayoub As cyberattacks become more frequent and security threats become more evasive, pernicious, and costly, organizations must take ever more powerful countermeasures. A U.S. bank that serves a growing clientele of companies and other business customers recognized the threat posed to its competitive position by security-related incidents. To ensure business continuity and prevent financial and reputational loss that could result from a successful attack, the bank has deployed the McAfee suite of security products. The bank, which ranks as one of the nation's top 100 FDIC banks by asset size, prides itself on helping its clients achieve their business-related objectives. As a leading financial services organization, the bank can ill afford to even have its name associated with security or data incidents that could cause substantial reputational or financial damage. As a result, the information security officer of the bank explained that it views maintaining a robust security environment that ensures business continuity as a top IT and business priority. The bank first realized that it needed to take a more proactive stance toward network security after suffering an impactful security incident about seven years ago. At that time, it deployed McAfee Antivirus software as well as the McAfee Security Information and Event Management (SIEM) solution. Several years later, it added McAfee Threat Intelligence Exchange and McAfee Advanced Threat Defense, in addition to McAfee Endpoint Security and McAfee Data Loss Prevention. Business Value Highlights Organization: National U.S. bank Challenge: Ensure business continuity by minimizing the impact of network-related security incidents Solution: McAfee Security solutions, including McAfee Antivirus software, McAfee Security Information and Event Management, McAfee Threat Intelligence Exchange, McAfee Endpoint Security, McAfee Data Loss Prevention, and McAfee Advanced Threat Defense Four-Year Cumulative Benefits: Four-year benefits worth $8.68 million Return on investment (ROI) of 208% Payback in 20 months Other Benefits: 90% faster resolution of security events 77% fewer impactful security events per year 98% less productive time lost because of impactful security events Support generation of $5 10 million in additional revenue per year According to the information security officer, these McAfee products have been instrumental in significantly improving the bank's network security. The information security officer indicated that the bank has largely avoided impactful networkrelated security events since deploying McAfee, in part because of how the various McAfee products February 2017, IDC #US42210917

complement each other. In particular, the bank can now rapidly identify and contain any potential threats and take prompt remedial steps, thereby limiting the potential consequences of the threats. Endpoint security with McAfee is an important component of this for the bank by providing local malware protection and enabling communication between endpoints and the rest of the organization, allowing key threat information to be exchanged and minimizing the likelihood of unauthorized behavior. This capability has proven especially valuable as the bank has doubled the number of employees working on its network in recent years. The bank's improved security posture with McAfee has meant significantly fewer user-impacting security events and faster resolution of such events when they do occur. As a result, these events exert a substantially lower toll in terms of lost employee productivity and potential revenue losses. In addition, the bank has been able to avoid larger-scale security events that can substantially affect users and cause reputational and financial harm. According to the information security officer, some of the client prospects of the bank proactively seek out information about the bank's security measures when making their banking decisions, and he believes that the bank's robust security environment with McAfee in place has contributed to winning a substantial amount of new business. Based on several interviews with the information security officer of the bank, IDC found that the bank's use of the McAfee solutions has reduced infrastructure costs, improved both user and security staff productivity, and increased business revenue. IDC analysis shows that the bank will achieve benefits worth an average of $3.02 million per year over four years, resulting in a four-year return on investment (ROI) of 208% and a payback period of 20 months. Implementation The bank first looked into deploying the McAfee SIEM solution in 2010 after suffering a cyberattack that required restricting internet service to its employees for a number of days. After evaluating products from four vendors, the bank chose the McAfee solution based on its performance and user-friendly interface. According to the information security officer, McAfee's approach also impressed the bank: "McAfee flew in six experts from all over the country to demonstrate its solution. They explained what the solution could do and why it was a good fit for us and never said a negative word about rival products. After the sale, McAfee brought a training person onsite, and within the first hour, we recognized some network problems and were able to fix them." With McAfee SIEM in place, the bank significantly reduced its security exposure but still perceived a need to make its security position more pervasive and effective to support its business operations and meet evolving security challenges and expectations of its clientele. As a result, in 2013, when the bank decided to upgrade its security infrastructure, it again chose products McAfee Threat Intelligence Exchange, McAfee Advanced Threat Defense, McAfee Endpoint Security, and McAfee Data Loss Prevention from the McAfee suite, in large part because of the McAfee Global Threat Intelligence service. "We recognized that all of McAfee's tools were good, but we asked ourselves if there was extra value from having the tools work together with the threat intelligence service," said the information security officer. "We found there was." This service unifies the McAfee security products and equips them to work in concert to thwart the most evasive security threats. The service draws on data collected from millions of McAfee products around the world, which act as sensors for the latest types of threats, including never-before-seen techniques and payloads. The McAfee suite of products can query this data via the cloud to obtain the intelligence needed to block threats, identify compromises, and expedite remediation. 2017 IDC #US42210917 2

The bank now uses the SIEM solution in concert with the McAfee Data Loss Prevention and Advanced Threat Defense products, using McAfee Threat Intelligence Exchange to communicate what new threats are emerging so that necessary action can be taken. According to the information security officer: "The McAfee tools have been working together for the past two years and have shown that the unified solution is greater than the sum of the individual parts." Benefits With the deployment of the McAfee suite of security products and the Global Threat Intelligence service, the bank has considerably reduced its exposure to operational and reputational loss because of networkrelated security threats. It has achieved this benefit by substantially limiting the frequency of user-impacting security events and resolving them far faster, even as it has more than doubled the number of employees using applications on its network. As a result, it has minimized the impact of outages on its employees and business, which is especially beneficial given this growth. Further, it has avoided having its name tied to a major security-related event and positioned itself to compete more strongly for the business of security-conscious clients and businesses. The information security officer explained that the McAfee suite of products his organization is using enables these benefits by integrating dynamic endpoint protection with intelligent analytics and a centralized management platform. This adaptive, open system reduces the number of threats that get through firewalls and helps the bank's incident response teams find incidents in much less time. Security and threat insights trigger automated action to expedite cleanup and quickly adapt current security policies, further reducing the likelihood of events becoming user impacting and meaning that less IT staff time is needed to take these actions. Further, by learning from security incidents never seen before, the system evolves continually, providing better protection going forward. "We can now do more valuable analyses and data correlations much faster. We can quickly identify events at different parts of the network, see if they're related, and track back to the first instance to determine when, where, and how the incident occurred." The net result is that the McAfee products have better secured the bank's employees, work devices, and servers. "We can now do more valuable analyses and data correlations much faster," said the bank's information security officer. "We can quickly identify events at different parts of the network, see if they're related, and track back to the first instance to determine when, where, and how the incident occurred. We can also monitor our environment through just one or two panes of glass, which makes it easier to figure out how to contain the problem and retain control of the environment." He explained that before deploying McAfee, the bank experienced more frequent user-impacting security events that generally took substantially longer to resolve. Most importantly for the bank, it has now minimized the risk of infrequent but damaging security events that can affect its entire business operations for days at a time. Further, these events required the time of up to six to eight members of the bank's security and IT teams for up to a week to achieve full resolution. More commonly, events impacting individual users can require confiscation of the infected workstations, which limits productivity for the several days it would take to provide replacements or fully resolve the problem. Events affecting remote users were particularly disruptive; they might be without their workstations for three or four days. Medium-impact attacks affecting groups of 30 or 40 users would limit user productivity even more because of the importance of the workstations in their work. 2017 IDC #US42210917 3

The information security officer reported that with McAfee in place, the frequency of user-impacting events has declined by almost 80% from about one per week to one per month, even as the bank's employee user base has more than doubled. Moreover, McAfee helps identify and resolve potential issues in far less time: "Now we can detect an attack within 60 seconds and complete the analysis to contain it within five minutes," said the information security officer. "Removing the virus and cleaning up afterward might take one or two minutes." He compared this with the hours or even days it took to identify and remove security-related issues before using McAfee (>99% faster). Once security-related issues are identified, McAfee also helps the bank move to full resolution in far less time; the information security officer said that it now takes about four hours in total per security event compared with a full workweek previously (90% faster). For the bank, this means that McAfee has limited the disruption caused by network-related security events. Most importantly, the bank has confidence that it will not experience more significant security events that can affect its business. This has contributed to better positioning the bank to hold onto its clients and even win new business. Because of its track record of blocking attacks, the bank has avoided the unfavorable publicity suffered by other institutions. As the information security officer said, "McAfee has helped us stay out of the news, which is invaluable for us." In addition, he noted that the prospective customers of the bank increasingly view its security capabilities as core to its value proposition. He said that he has been involved in many presentations with potential customers where security was a key topic, and he believes that improved security has contributed to winning a number of new clients worth millions of dollars of new revenue per year. He explained: "McAfee has allowed us to fundamentally tackle security, which has given us more comfort in handling customers and presenting our strong security posture in sales meetings." Quantifying the Benefits "McAfee has allowed us to fundamentally tackle security, which has given us more comfort in handling customers and presenting our strong security posture in sales meetings." By interviewing the bank's information security officer and asking questions about operations before and after deploying the McAfee suite of security products, IDC was able to quantify the benefits the bank is achieving. IDC calculates that when projected over four years, the benefits will average $3.02 million per year (see Figure 1). IDC used a four-year analysis because the bank required about one year to deploy the McAfee solutions and targets three-year refresh cycles. 2017 IDC #US42210917 4

FIGURE 1 Average Annual Benefits 3,500,000 3,000,000 2,500,000 $878,900 $370,300 $39,100 ($ per year) 2,000,000 1,500,000 $1,728,500 1,000,000 500,000 0 Risk mitigation user productivity benefits Business enablement higher revenue IT staff productivity benefits Security-related cost reductions Average annual benefits: $3.02 million Source: IDC, 2017 Risk Mitigation User Productivity Benefits Security events have the potential to exert a significant cost to the bank by limiting employee productivity and even causing lost revenue as these events are identified and resolved. With McAfee in place, the bank has significantly limited the frequency and duration of these types of events as well as their impact on its business operations. The value of this benefit is even more significant given growth to the bank's employee base accessing applications and services on the bank's network since deploying McAfee. IDC projects that in total, the bank will achieve benefits worth an annual average of $1.73 million in value by limiting the business and operational effect of security events over four years by: Experiencing fewer events that impact the broader organization, up to and including shutting down internet access, and enabling much faster resolution of larger-scale problems Limiting the frequency of more isolated security events that affect one or several employees and may require taking their workstations to be repaired Avoiding relatively minimal revenue losses associated with these events Business Enablement Higher Revenue The bank's record of avoiding major cyberattacks has positioned the bank to win new business. The bank's clients, which are aware of the criticality of network security, have increasingly focused on security as a driver of their choice of banking services. Since deploying the McAfee suite, the bank not only has avoided potentially reputation-tarnishing news reports of security events impacting its business but also is able to support its sales efforts with its track record. Assuming the security record was only one factor involved in winning additional business, IDC puts the value of increased revenue at an average of $878,900 annually over four years. 2017 IDC #US42210917 5

IT Staff Productivity Benefits Decreased frequency of user-impacting security events and the ability to resolve events much faster mean that the bank devotes less security team and IT staff time to identifying, containing, and resolving such events. In addition, automated monitoring with the McAfee security solutions means that these teams can handle such day-to-day activities more efficiently. IDC calculates that in total, the bank will save IT staff time worth an average of $370,300 per year over four years. Security-Related Cost Reductions The bank has realized savings by discontinuing its use of other security products even as it has improved its security posture with McAfee. On average, the annual savings in licensing costs for the displaced software amounts to $39,100 when projected over four years. Return-on-Investment Analysis IDC projects that the bank will realize a four-year ROI of 208% from its deployment of the McAfee solutions. Payback on the investment occurred within 20 months (see Table 1). TABLE 1 Four-Year ROI Analysis Benefit (discounted) Investment (discounted) Net present value (NPV) $8.68 million $2.81 million $5.87 million Return on investment (ROI) 208% Payback period 20 months Discount rate 12% Source: IDC, 2017 IDC conducted several interviews with the bank's information security officer to understand the impact of the investment in the McAfee suite of security products from McAfee on the bank's operations and business. IDC used these interviews to gather the information needed to quantify the benefits and investment associated with the bank's use of the products as outlined in this study and created an ROI analysis from the results. IDC calculates the ROI and payback period in a three-step process: 1. Measure the financial benefits directly resulting from the solution, including higher user productivity, revenue gains, and reduced security-related costs since deployment. 2. Ascertain the total investment. 3. Project the investment and benefit over four years and calculate the ROI and payback period. The ROI is the four-year net present value (NPV) divided by the investment. Payback period (expressed in months) is the time required to pay back the initial investment and establish a positive cash flow. To account for the time value of money, IDC bases the ROI and payback period calculations on a 12% discounted cash flow. 2017 IDC #US42210917 6

About IDC International Data Corporation (IDC) is the premier global provider of market intelligence, advisory services, and events for the information technology, telecommunications and consumer technology markets. IDC helps IT professionals, business executives, and the investment community make factbased decisions on technology purchases and business strategy. More than 1,100 IDC analysts provide global, regional, and local expertise on technology and industry opportunities and trends in over 110 countries worldwide. For 50 years, IDC has provided strategic insights to help our clients achieve their key business objectives. IDC is a subsidiary of IDG, the world's leading technology media, research, and events company. Global Headquarters 5 Speen Street Framingham, MA 01701 USA 508.872.8200 Twitter: @IDC idc-insights-community.com www.idc.com Copyright Notice External Publication of IDC Information and Data Any IDC information that is to be used in advertising, press releases, or promotional materials requires prior written approval from the appropriate IDC Vice President or Country Manager. A draft of the proposed document should accompany any such request. IDC reserves the right to deny approval of external usage for any reason. Copyright 2017 IDC. Reproduction without written permission is completely forbidden.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback