Challenge: Empower NBH's internal security team to detect sophisticated, unknown threats in real time
Why IronNet: NBH chose IronDefense for its ability to detect malicious behaviors for DNS Tunneling, Domain Generation Algorithm (DGA), and Periodic Beaconing HTTP.
Of note: NBH VP of Enterprise Technology Kevin Yeamans sees IronNet’s Collective Defense as the "next big thing in cyber.”
There is no question that if financial institutions want to sharpen their competitive edge, they must embrace digital transformation now. Given that financial institutions are 300 times more likely to be hit by a cyber attack (Boston Consulting Group), however, cybersecurity and digital transformation must go hand in hand.
Like many companies in the midst of going digital to adapt to customer-centric ways of doing business, as well as digitizing operational systems, National Bank Holdings needed a way to detect unknown threats. Monitoring only known threats, or “signatures” such as compromised domain names, IP addresses, or file hashes, misses a huge swath of threats that evade traditional signature-based threat detection. What’s more, NBH needed a tool that could alert the security team of advanced threats across the cyber kill chain, in real time, in turn empowering the team to take action before the threat could affect operations.
The behavioral analytics that form the basis of IronNet’s Network Detection and Response solution, IronDefense, allow NBH to see beyond signature-based anomalies. As part of an IronDome, NBH has strengthened its ability to take proactive action against emerging threats detected by machine learning and further qualified by anonymized knowledge-sharing in the Collective Defense ecosystem.
Collective Defense is particularly critical for protecting not just individual companies, but sectors at large given that adversaries often move laterally to unravel their attacks or find weak spots from which to infiltrate a larger ecosystem. This is especially true for the financial sector. "Even an attack against a midsize bank could have a spillover effect, causing a threat to the solvency of a top-five institution.”
NBH uses IronDefense for its precise analytics; proactive hunt team support; partnership with IronNet’s Customer Success team; and the capability to crowdsource tools, resources, and expertise across their peers through IronDome's Collective Defense capabilities.
When evaluating platforms, including DarkTrace, NBH chose IronDefense for its ability to successfully detect malicious behaviors for DNS Tunneling, Domain Generation Algorithm (DGA), and Periodic Beaconing HTTP.
The industry analyst Omdia has pointed out in its recent On the Radar report that IronNet’s analytics can “discern needle-moving insights from encrypted network traffic flows” without heavy proprietary hardware. This differentiator, which Omdia calls a “potential game changer,” raises the bar on the industry’s threat detection capabilities, which typically have been limited to signature-based detection.
Drawn to IronNet’s behavioral analytics, NBH’s VP of Enterprise Technology Kevin Yeamans shares that sentiment; in fact, he believes that IronNet’s Collective Defense is the "next big thing in cyber.” Together, IronNet and the financial services sector can change the name of the cybersecurity game at large as we work together as a unified front to defend against adversaries.