ED&F Man transforms threat detection and investigation with the Cognito platform from Vectra

Sorry, this news release has not been published yet, check back later!

November 26, 2019

Commodities trader finds the sweet spot to expose hidden attackers, spot privilege misuse and perform conclusive incident investigations

Vectra today announced that ED&F Man selected the Cognito network detection and response platform from Vectra to expose attackers hidden inside its network, spot privilege misuse and perform conclusive incident investigations. A $10 billion company, ED&F Man trades sugar, coffee, molasses, and animal feed and helps customers and suppliers hedge commodity pricing risk.

When a non-data loss security incident served as a wake-up call to the ferocity of today’s cyberattacks, ED&F Man undertook a complete security transformation. It created a security operations center (SOC) triad to gain broad visibility into threat history and significantly reduce the chance that attackers could operate on its network long enough to accomplish their goals. The SOC visibility triad consists of integrated network detection and response, endpoint detection and response, and security information and event management (SIEM) systems.

“Cognito was key in our journey,” says Carmello Gallo, cybersecurity manager at ED&F Man. “We started with the network because Cognito is easy to install and we get immediate visibility into attacker behaviors that hide in traffic.”

The Cognito platform collects and stores the right network metadata and enriches it with unique security insights. A cornerstone of the Cognito platform, Cognito Detect uses that security-enriched metadata and sophisticated machine learning techniques to detect and prioritize attacks in real time. ED&F also uses Cognito Recall for AI-assisted threat hunting.

With privileged accounts a common entry point for cyberattackers, ED&F Man uses the Cognito suite of Privileged Access Analytics (PAA) detection models to monitor the interactions between user accounts, services and hosts.

“Privileged Access Analytics gives me continuous visibility into the accounts, services and hosts that are most valuable to me,” continued Gallo. “We can easily scrutinize the behaviors on each to see if they represent a significant risk to our organisation.”

With the ability to quickly detect threats and protect the global enterprise, the security team has turned the perception of IT security as a business obstacle into that of a business enabler. “The business has faith that we’re delivering against our objectives,” says Gallo.

For more information, please read the ED&F Man case study on the Vectra website.

Media contact

press@vectra.ai

Most recent news releases

Vectra Honored With a 5-Star Rating in the 2021 CRN Partner Program Guide

March 29, 2021
Read news release

Global Survey Finds 71% of Cloud Users Suffered up to Seven Malicious Account Takeovers in Last Year

March 17, 2021
Read news release

Vectra Achieves SOC 2 Type 2 Compliance, Recognized for Continued Commitment to Customer Confidentiality and Data Protection

March 11, 2021
Read news release

ED&F Man transforms threat detection and investigation with the Cognito platform from Vectra

Sorry, this news release has not been published yet, check back later!

November 26, 2019

Commodities trader finds the sweet spot to expose hidden attackers, spot privilege misuse and perform conclusive incident investigations

Vectra today announced that ED&F Man selected the Cognito network detection and response platform from Vectra to expose attackers hidden inside its network, spot privilege misuse and perform conclusive incident investigations. A $10 billion company, ED&F Man trades sugar, coffee, molasses, and animal feed and helps customers and suppliers hedge commodity pricing risk.

When a non-data loss security incident served as a wake-up call to the ferocity of today’s cyberattacks, ED&F Man undertook a complete security transformation. It created a security operations center (SOC) triad to gain broad visibility into threat history and significantly reduce the chance that attackers could operate on its network long enough to accomplish their goals. The SOC visibility triad consists of integrated network detection and response, endpoint detection and response, and security information and event management (SIEM) systems.

“Cognito was key in our journey,” says Carmello Gallo, cybersecurity manager at ED&F Man. “We started with the network because Cognito is easy to install and we get immediate visibility into attacker behaviors that hide in traffic.”

The Cognito platform collects and stores the right network metadata and enriches it with unique security insights. A cornerstone of the Cognito platform, Cognito Detect uses that security-enriched metadata and sophisticated machine learning techniques to detect and prioritize attacks in real time. ED&F also uses Cognito Recall for AI-assisted threat hunting.

With privileged accounts a common entry point for cyberattackers, ED&F Man uses the Cognito suite of Privileged Access Analytics (PAA) detection models to monitor the interactions between user accounts, services and hosts.

“Privileged Access Analytics gives me continuous visibility into the accounts, services and hosts that are most valuable to me,” continued Gallo. “We can easily scrutinize the behaviors on each to see if they represent a significant risk to our organisation.”

With the ability to quickly detect threats and protect the global enterprise, the security team has turned the perception of IT security as a business obstacle into that of a business enabler. “The business has faith that we’re delivering against our objectives,” says Gallo.

For more information, please read the ED&F Man case study on the Vectra website.

Media contact

press@vectra.ai