top of page

Tel Aviv Stock Exchange Implements CardinalOps Platform to Strengthen Detection Capabilities

Detection posture management company, CardinalOps, has announced that the Tel Aviv Stock Exchange (TASE) has deployed its platform to bolster detection coverage in its Splunk Enterprise Security (ES) instance. By continuously auditing and remedying detection coverage gaps, TASE aims to minimize the risk of undetected attacks within its Security Operations Center (SOC).


As a key player in the Israeli economy since 1953, TASE provides a central market infrastructure that fosters economic growth. Its members include renowned international and Israeli banks, as well as investment firms. The CardinalOps platform offers strategic expertise and automation to optimize SOC operations at TASE, ensuring appropriate detection coverage for the MITRE ATT&CK techniques relevant to the organization.


Many organizations struggle with fully operationalizing MITRE ATT&CK due to staffing constraints and a lack of required skills in the SOC. Manual techniques like spreadsheets are error-prone and time-consuming. CardinalOps employs automation and MITRE ATT&CK to enable organizations like TASE to identify and address missing, broken, and noisy detections, thereby proactively fortifying defenses based on relevant risks.


Through the CardinalOps platform, TASE has already doubled its ATT&CK detection coverage in just three months and aims to increase the number of detections by nearly 10 times by year-end. This significant productivity gain not only drives cost savings but also addresses staffing and budgetary constraints. Moreover, the platform seamlessly integrates with TASE's existing Splunk workflows, allowing the automatic deployment of pre-customized and pre-validated detections.


Michael Mumcuoglu, CEO and Co-Founder of CardinalOps, emphasizes that effective breach prevention starts with having the right detections. However, many organizations rely on manual processes and specialized experts, leading to increased breach risks. CardinalOps is proud to help defend TASE against global threat actors.


CardinalOps will be showcasing its detection posture management platform at the upcoming Gartner Security & Risk Management Summit and the Splunk .conf23 User Conference. TASE's SOC team faces complexity challenges due to several thousand servers and over 50 security tools providing diverse monitoring telemetry to Splunk. With a constantly evolving attack surface and threat landscape, the team relies on custom detection rules and proper configuration to mitigate noise and enhance efficacy. The CardinalOps SaaS platform assists in analyzing TASE's Splunk-ES instance and delivering high-quality detections for maximum effectiveness.


###

Comments


bottom of page