The customer is a large American insurance company offering home, auto, life, and business insurance protection to policyholders. The company has embarked on a complete transformation of its IT applications, infrastructure, and service delivery, including a help desk.
Orion was awarded an Infrastructure Patch Management Services contract for one year. The project commenced in August 2021 with a steadily improved security and vulnerability posture.
Challenge
With more than 2700 servers and endpoints under management, the client was experiencing high demand for its infrastructure patch management function. The backlog of available patches was increasing, and there was growing concern that software and applications could be susceptible to cyber-attacks. In order to ensure the software and applications were kept up-to-date and running smoothly, the client engaged Orion as a managed service provider.
Solution
Orion provided a flexible solution that would ensure reduced security risks, reduced costs, as well as freeing up client resources to work on strategic transformational work.
Orion provided a professional team experienced in supporting both physical and virtual environments with patch management services. The team had experience with Microsoft Windows and Linux operating systems as well as risk-based technology that could quickly identify, assess, and prioritize vulnerabilities. Orion’s solution addressed the client’s key objectives:
- Orion’s resources utilized active scanning, agents, and passive monitoring to provide unified visibility of all assets.
- Orion combined vulnerability data, threat intelligence, and data science to understand risk scores and quickly assess risk and determine which vulnerabilities to fix first.
- Orion provided a proactive approach as a services provider so that we can prevent problems before they happen instead of racing to fix something after it’s broken.
- Orion has kept its customer’s systems secure, compliant, up-to-date, and running smoothly.
Impact
Since the commencement of its services, Orion has implemented a successful patching strategy that remediated vulnerabilities in the client’s software and applications that are susceptible to cyberattacks, reducing security risks and improving the overall security posture. Orion’s infrastructure patch management team is now accountable for identifying vulnerabilities and deploying patches quickly, guided by its risk-assessment framework.