Modernizing Security for a Prominent Regional Bank

A prominent regional bank with over 80 branches across Southern California, headquartered in Los Angeles and backed by more than 2,000 employees recently merged with another financial institution.The bank partnered with Google SecOps and Netenrich to modernize security operations, consolidate SIEM tools, and enhance threat detection and response. By shifting from a reactive to a proactive security model, the bank optimized security operations, reduced costs, and improved resilience, setting a new benchmark for financial sector cybersecurity.

This case study highlights how the customer successfully aligned its security strategies to safeguard its diverse customer base while driving innovation and growth.

Customer Requirements

The customer aimed to replace Trellix with the modern Google SecOps Enterprise solution. The transition needed to be seamless, ensuring continuity in business and security operations while consolidating SIEM tools and preparing for the merger.

To achieve this, they partnered with Google and Netenrich to expedite a seamless migration experience, collaborating with Mandiant Managed Defense and Customer Success Management (CSM) teams to enhance security posture, automation, and operational efficiency.

Challenges

• Merger Security Complexity: Integrating security operations for the merged financial institutions required scalable and adaptable security solutions.
• Security Tool Migration: A seamless transition from Trellix was necessary to ensure uninterrupted security monitoring.
• SIEM Consolidation: Preparing for the consolidation of multiple SIEM tools into a single, state of the art platform
• Threat Detection and Response Limitations: Existing data and detection engineering strategies resulted in inefficient threat identification and mitigation.

Google + Netenrich: A Seamless Security Partnership

The migration was executed in two phases:

1. Replace Trellix while ensuring data integrity and smooth ingestion.
2. Positioned the customer to upgrade to Google SecOps Enterprise Plus, consolidating four additional SIEM tools for optimized security management. LogRhythm was replaced by Helix after the merger. Helix was used as the interim solution before the transition to Google SecOps.
3. A fifth tool, SentinelOne, is in the process of being replaced.

Solution Components

• Google SecOps Enterprise – The foundation for next-gen threat detection and security automation.
• Netenrich Adaptive MDR, powered by Netenrich Resolution Intelligence Cloud – Designed to enhance threat detection, automate incident response, and provide proactive risk management and continuous optimization to realize the full potential of Google SecOps capabilities.
• Mandiant Managed Defense – Provides ongoing security insights, with Netenrich extending coverage beyond core telemetry.
• Google CSM – Ensures successful adoption and integration of security capabilities.

Outcomes and Impact

• Seamless Migration from Trellix – Smooth transition to Google SecOps with minimal disruption.
• Enhanced Threat Visibility – Custom detection engineering and risk analytic rulesets improved visibility and mitigation effectiveness.
• Operational Cost Reduction – Consolidating SIEM tools and increasing automation reduced security operational costs.
• Future-Proofed Security Posture – Security framework aligned with the PacWest Bank merger and long-term compliance needs.

Why This Matters for Google Sales

• Frictionless Experience: Netenrich integrated seamlessly within the Google ecosystem to ensure a smooth migration.
• Security Coverage Extension: Netenrich Adaptive MDR complemented Mandiant Managed Defense by enhancing detection and response capabilities.
• Google Pipeline Expansion: With upgrade to Google SecOps Enterprise Plus, consolidating SIEM tools, and increasing their security investment, Google stands to gain significant additional business.
• Scalable & Performance-Driven Security Operations: Google SecOps Enterprise + Netenrich Adaptive MDR now deliver an advanced, scalable security infrastructure.

Conclusion

By replacing Trellix and consolidating security operations with Google SecOps and Netenrich, this customer transformed its security operations from a reactive to a proactive model. This strategic transition resulted in improved security analytics, reduced operational costs, and enhanced threat detection capabilities, ensuring long-term resilience and compliance.

Eliminate security blind spots and safeguard financial transactions with proactive threat management