Vertical: Government
Customer Description: As the largest county in North Carolina by land area, this government entity oversees a vast infrastructure supporting public services and operations.
Customer Need: The customer needed to conduct a penetration test and implement a robust vulnerability management program. Two key factors drove their decision to pursue penetration testing: (1) It was a requirement from their cyber insurance provider as part of their due diligence process, and (2) they had recently deployed new infrastructure and needed to ensure there were no security gaps.
In terms of vulnerability management, they sought a continuous scanning solution to monitor both endpoints and network infrastructure. Additionally, asset management was a major concern—managing over 3,000 connected devices, they lacked visibility into their network and needed a better way to track, catalog, and inventory their assets.
Strategy: In our discussions, we discovered that North Carolina’s Department of IT provides services to counties across the state, but gaps remained in areas the customer wanted to address independently. By identifying these challenges, we were able to tailor a solution that met their specific security and compliance needs.
Solution: CIRRUS Engagement
- Pen Test (3,000+ Ips)
- Remediation Pen Test
- Vulnerability Management (1,050 endpoints)
- Dark Web Monitoring
- Vertical: Government
- Problem: The customer needed to conduct a penetration test and implement a continuous vulnerability management solution. They also struggled with asset management, lacking visibility into over 3,000 connected devices.
- Solution: We introduced CIRRUS Penetration Testing, Vulnerability Management, and Dark Web Monitoring to enhance security posture and compliance.
- Results: The customer successfully met cyber insurance requirements, secured their newly deployed infrastructure, gained continuous vulnerability insights, and improved asset tracking and management.
