Case Studies
A Legal Firm's Journey to Protecting Critical Data


Legal Firms - A Growing Target For Cyberattacks
"Pay the ransom, or deploy prevention?" That question between the CIO and CFO of the firm kicked off a series of discussions around how vulnerable the organization was to a ransomware attack. The increased risk of remote working and recognition that sensitive client data was at stake made the team take action. A security audit uncovered firewall policy flaws, and a lack of visibility to devices on the network that were not covered by EDR. With limited resources, no ability to operate a SOC, and no budget for new headcount, coverage was the team turned to CyGlass Hybrid Network Defense.
Read the Case Study
Requirements
- >
24X7 monitoring of network and VPN environments
- >
Network device discovery and tagging including IoT devices
- >
Low operating costs, must support existing headcount
- >
No hardware deployment
- >
Capable of expanding to Azure/M365
Achievements
- >
Rollout completed in 2 hours, no new headcount, no hardware
- >
AI immediately surfaced two security issues related to port security
- >
18 unknown devices discovered operating on network
- >
24X7 Monitoring of 40 Ransomware defense controls implemented
- >
Project deployed under budget, time to value was less than 24 hrs.
"We were hesitant that a Network Detection and Response (NDR) tool could be affordable and effective. CyGlass took all of 20 minutes to eliminate our fears as we rolled out across every location. The simplicity of operations and accuracy of detection exceeded our expectation. The service is less expensive to operate than our firewalls or EDR tool!”
Dir IT Services
Mid-Sized Law Firm
The Solution
CyGlass Hybrid Network Defense for small teams
CyGlass provides 24X7 monitoring of the company’s network traffic. As a SaaS service, there is no maintenance work, patching, etc. CyGlass alerts are ranked by risk score, so the team focuses on what is essential, and include immediate remediation so that threats can be stopped before damage is done. CyGlass extends threat surface coverage to Azure, AD, and M365, adding a unique ability to correlate devices, IPs, and use identities to more accurately surface risks and threats.

