The Customer
A commercial bank serving the ASEAN countries, with capital assets over $1B in USD and over one million clients had an IT infrastructure consisting of mainly Window® Servers in a virtualized environment, hosting several external websites that they secured with an Intrusion Prevention Solution (IPS) and firewalls in High Availability (HA) mode. As with all organizations in the financial sector, the Bank must comply with specific regulations: PCI DSS, ISO 270001. The Bank’s current security team is small but mighty, consisting of five administrators, organized as such: one individual on a red team, two on a blue team, and the remaining two admins handling general issues.
Challenge
The Bank’s security strategy included running quarterly pen-testing, primarily since they were under-resourced, and pen-testing can typically be a cumbersome, manual task.
Their IT infrastructure included Windows® 2008 Servers, as well as other outdated systems and therefore was increasingly vulnerable to external threats. The fact that one ransomware attack had already targeted them prompted the IT team to seek a testing platform that provided continuous testing, risk-based vulnerability findings and ransomware simulation to augment their existing infrastructure solution, as they built out and implemented a more robust security strategy.