Tasked with collecting and processing data for the country’s census and other sociodemographic surveys, one South American government agency needed to be a well-oiled machine. Instead, they were caught in the past, stuck with an IT ecosystem of mixed solutions and an outdated anti-virus protection, ridden with highly publicized malware attacks.
That was until 2012, at least, when their government mandated a modernization of all federal resources, including their security infrastructure. The statistics agency quickly realized this mandate was the perfect opportunity to identify existing gaps in their current processes and create a more integrated security system.
To achieve this system, the agency started by evaluating their current problems and needs, as their network security manager stated, “we were looking for much more than antivirus; we also needed to address policy enforcement, security of servers and storage, and a lack of visibility into our overall security posture”. In order to both address these issues and attain a more desired security posture, “we needed a security partner that could sustain and support us proactively as our needs evolved,” he added.
That partner ended up being Mcafee, as the agency felt like they could not only depend on McAfee products for support, but also to create an integrated suite that would help the agency achieve their dreams of modernization.
To begin achieving this dream, the agency started by selecting a group of McAfee products that would plug holes and protect all areas. These solutions included: McAfee Endpoint Protection — Enterprise, McAfee Network Security Platform, McAfee Vulnerability Manager, McAfee Enterprise Security Manager, McAfee Data Center Security Suite for Databases, and McAfee Asset Manager. And to the organize all of these solutions, the agency deployed the McAfee ePolicy Orchestrator as well.
All tied together underneath the McAfee ePO console, this newly connected system operates by sharing data and feeding information throughout tools to create a comprehensive threat resolution. Because of these interconnected capabilities, all of the agency’s bases are covered. For instance, the McAfee Enterprise Security Manager (SIEM tool) continually gathers data at highly sensitive information points, so that the agency can then use it to fine-tune monitoring and therefore proactively stop threats. And since the agency has a mixed data environment with many databases varying in degree of vulnerability, the McAfee Data Center Security Suite works well for their system since it stops all exploits no matter where they are and without the need to apply large patches.
Since deploying this integrated system, the agency has not only experienced a decrease in malware attacks, but also an increase in effectiveness due to visibility. “Now, with McAfee, we know what’s happening on the network, and where and when,” the systems director says, “with the heightened visibility of McAfee tools, we can be proactive and shut down threats immediately before they have a chance to do damage.” In addition to visibility comes adaptability as well, as the automation of processes and integration of tools gives the South American agency the control to adapt their process to the ever-changing security landscape. Being adaptable has also had a positive effect on the agency’s long term confidence, as the systems director states, “with McAfee as our long-term security partner, we have the confidence we need to ensure business continuity and deliver a security platform that we can continue to build on into the future.”