CLIENT SUCCESS

Huboo

Managed Microsoft Sentinel

In today’s rapidly evolving digital landscape, where data breaches and cyber threats are more complex than ever, organisations are increasingly opting to outsource their expanding list of cyber security needs to managed security service providers. Outsourcing cyber security offers a compelling advantage for businesses, particularly as threats grow in both sophistication and frequency. By engaging with specialised providers, organisations gain access to a breadth of expertise that might be too complex or resource-heavy to develop in-house. For our client, a fast-growing fulfilment specialist, the focus was on scaling. Between 2021 and 2022, their team grew by 400, and with further growth expected, they knew they needed a managed cyber security solution that was secure, flexible and able to keep pace with demand. With an existing user base already operating within Microsoft 365, the client recognised that Microsoft technology would be key to supporting future plans, and decided a Microsoft Security Solutions Partner would be a crucial part of their security roadmap.

Solution

Managed Microsoft Sentinel

The Requirement.

Huboo is an e-commerce fulfilment partner using people and technology to help every size and type of business grow. From start-ups to global enterprises, they help customers unlock their full potential with third-party logistics (3PL) e-commerce fulfilment services.

Established in 2017, Huboo now employs more than 750 people across 10 European fulfilment centres. Following rapid growth during 2022, they needed a security partner to support several key requirements:

➡️ Integration with existing tools: Utilising a wide range of technologies in-house, Huboo wanted a solution that would connect to both their Microsoft 365 estate and additional third-party services. They knew the right solution would enable them to integrate existing tools and data sources, creating a unified security management system.

➡️ Scalability for growing threats: Recognising the escalating complexity and frequency of cyber threats, and handling vast amounts of sensitive customer data, Huboo wanted a solution capable of managing large volumes of data and adapting to changing requirements without significant infrastructure changes.

➡️Future-proof scalability: As the business continues to grow, Huboo required a cloud-based security solution that could scale and flex to meet increasing data loads, without necessitating large capital investments.

The Solution.

Using SIEM, SOAR and XDR technologies to strengthen Huboo’s security posture

Utilising an array of Microsoft security technologies, the cornerstone of this project was integrating Microsoft SIEM, SOAR and XDR technologies to bolster Huboo’s existing estate.

SIEM (Security Information and Event Management), SOAR (Security Orchestration, Automation and Response) and XDR (Extended Detection and Response) together offer a comprehensive and integrated approach to managing an organisation’s cyber security posture.

This combination is particularly effective because of the following capabilities:

Using SIEM to Gain Oversight of Their Data: Microsoft’s SIEM solution, Microsoft Sentinel, provides a centralised platform for monitoring and analysing security data across an organisation. This comprehensive view helps in detecting, analysing and responding to security incidents more effectively by aggregating data from sources including network devices, servers and applications.

Enhancing Automation and Response Capabilities with SOAR: Microsoft’s SOAR features, also available within Microsoft Sentinel, automate common security tasks and orchestrate complex workflows. This reduces the time and effort required for incident response and enables security teams to focus on more strategic tasks. Automation ensures faster and more consistent responses to threats, minimising potential damage from security incidents.

With its SOAR capabilities, Sentinel automates responses to common threats, reducing response times significantly. According to recent data, Sentinel has improved threat response times by an average of 60%, allowing security teams to focus on more critical tasks.

Microsoft was named a Leader in the October 2022 Gartner® Magic Quadrant™ for Security Information and Event Management

Enhancing Automation and Response Capabilities with SOAR: Microsoft’s SOAR capabilities, also available within Microsoft Sentinel, allow for the automation of common security tasks and orchestration of complex workflows. This reduces the time and effort required for incident response and enables security teams to focus on more strategic tasks. Automation also ensures faster and more consistent responses to threats, minimising the potential damage from security incidents.

With its SOAR capabilities, Sentinel automates responses to common threats, reducing response times significantly. According to recent data, Sentinel has improved threat response times by an average of 60%, allowing security teams to focus on more critical tasks.

Enabling advanced threat protection with XDR

Microsoft Defender XDR is a unified pre and post-breach enterprise defence suite that coordinates detection, prevention, investigation and response across endpoints, identities, email and applications to provide integrated protection against sophisticated attacks.

XDR is integrated in vital products such as Microsoft Defender for Endpoint, Microsoft Defender for Identity, Microsoft Defender for Office 365 and Microsoft Defender for Cloud Apps.

By utilising integrated Microsoft Defender XDR technologies, Stripe OLT security analysts can stitch together threat signals across a wide range of Microsoft products to determine the full scope and impact of potential threats.

Key functionalities within Microsoft Defender XDR technologies

Managing Endpoints with Defender for Endpoint: Defender for Endpoint is a unified endpoint platform for preventative protection, post-breach detection, automated investigation and response.

Monitoring Assets with Microsoft Defender Vulnerability Management: Provides continuous asset visibility, intelligent risk-based assessments and built-in remediation tools to help security analysts prioritise and address critical vulnerabilities and misconfigurations across Huboo’s environment.

Overseeing Email and collaboration tools with Defender for Office 365: Safeguards Huboo against malicious threats posed by email messages, links (URLs) and collaboration tools.

Controlling Identities with Defender for Identity and Microsoft Entra ID Protection: Microsoft Defender for Identity is a cloud-based security solution that leverages on-premises Active Directory signals to identify, detect and investigate advanced threats, compromised identities and malicious insider actions. Microsoft Entra ID Protection applies Microsoft’s intelligence and insights to identify and mitigate identity-related risks.

Gaining Visibility Over Applications with Microsoft Defender for Cloud Apps: A comprehensive cross-SaaS solution that provides deep visibility, strong data controls and enhanced threat protection across Huboo’s cloud apps.

With any potential threat, security analysts need to understand how a malicious actor could enter an environment, what it has affected and how it is currently impacting the organisation. For Huboo, this is made possible with Microsoft Defender XDR technologies.

The Experts.

Utilising Stripe OLT analysts to enhance Huboo capabilities

For many organisations, maintaining an in-house security team with the requisite expertise and resources to manage all of the above requirements can be challenging. This is where the value of an outsourced security team becomes evident.

✅ Expertise and Specialisation: Our security team empowers Huboo with specialist knowledge and experience in Microsoft security technologies. Accredited under a range of Microsoft security certifications, from SC-900 to SC-100, our analysts stay abreast of the latest developments and best practices, ensuring that the security infrastructure is managed by experts. This expertise often leads to faster deployment and optimisation of security tools compared with in-house management.

✅ Cost-Effectiveness: Outsourcing eliminates the overhead costs Huboo would face from hiring, training and maintaining an in-house cyber security team. Organisations can save up to 70% of their cyber security budget by outsourcing, paying only for the services they require without the additional expense of full-time staff.

✅ 24/7 Monitoring and Response: Our SOC team provides round-the-clock monitoring and rapid response to security incidents. With an average mean time to respond (MTTR) of just four minutes, this constant vigilance ensures that threats are identified and mitigated swiftly, reducing the potential damage from cyber attacks.

For organisations that want to know more about our Managed Microsoft Sentinel Services or our wider range of cyber security services, get in touch with our team today.

"We have experimented with several service providers, and none have succeeded in delivering a quarter of the value that Stripe OLT provides. They consistently exhibit a high level of responsiveness, always making time to address any inquiries."

Huboo

John Brannan - Director of Infrastructure and Information Security

Learn more about our Microsoft Sentinel Services