Solutions by Design Security Operations Center Team

Promote this Nomination

Additional Info

Job title of nominated professional (or team name)SBD SOC
Company (where nominated professional or team is working)Solutions By Design II
Websitehttp://www.sbd.com
Company size (employees)100 to 499
Headquarters RegionNorth America

In 3 bullets, summarize why this professional or team deserves recognition:

Solutions By Design II (SBD) provides unparalleled service in the field of security operations. Driven by highly trained and experienced SBD leaders, engineers and analysts, our team is committed to delivering exceptional investigative analysis and solutions to support the customer’s defensive cyber operations while maintaining situational awareness. Our multi-faceted approach to cyber security operations includes (but is not limited to) monitoring and analysis, digital media analysis, cyber intelligence, vulnerability assessment, penetration testing, incident assessment and response, insider threat hunting, content/knowledge management, and endpoint/asset management.

SBD was an early adopter of Security Orchestration and Automation Response (SOAR) and has implemented an “automate everything” approach. This has resulted in SBD being an automated 90% of Tier 1 activities resulting on over 7.5 million dollars in cost savings for our clients. Beyond the cost savings this has improved response time and provided better situational awareness to our client’s decision makers.

SBD through Cyber Threat Intelligence has been able to automate IOC ingestion providing a feedback loop of internal to external, external to internal threat information that provides a more relevant and deeper understanding of the risks facing our clients. This has improved our understanding of risks, their overall impact to the mission and to take more informed mitigating actions quicker.

Brief Overview

Solutions by Design II (SBD) has extensive Security Operation Center (SOC) experience and expertise in Cyber Security and IT modernization leveraging cloud-based and open-source technologies to reduce operating costs and increase mission performance. SBD has been providing and maturing our SOC offering since 2013 utilizing an ITIL Service Portfolio approach that has allowed us to focus on the very specific needs of our clients while being able to innovate and adjust these services over time as technologies advance and client’s priorities change. This has also allowed us to focus diligently on improving and mature keys tasks and functionalities of a SOC, rather than maintaining the status quo. A breakdown of these services is provided below:
• Incident Response: SBD is currently performing incident response for over 35,000 users working at over 223 offices across the world. The key to our incident response solution has been the implementation of SOAR which has resulted in 7.5 million in cost savings.
• Vulnerability Management: SBD is currently performing 5 million+ weekly scans and 1 million monthly virus scans resulting in over 5,800 handled malware events.
• Big Data: Our Big Data approach ingests 400GB+/day monitoring cyber-security events across 55,000+ host devices. Leveraging this information provides a better threat picture and their security risks to our clients.
• Vulnerability Hunting: SBD has a targeted focused operations group that is specifically looking for anomalous events on the network.
• Insider Threat/Behavior Analytics: SBD has built out a user monitoring solution that targets high risk users while still meeting privacy considerations. This is focused on leveraging behavioral analytics instead of a “boil the ocean” approach.
• Cyber Threat Intelligence: SBD is performing Cyber Threat Intelligence reviewing a variety of intel sources to provide actionable threat intelligence to our Cyber Defense Teams.