Leading Bangladeshi Bank Achieves New Heights of Information Security with LogRhythm SIEM

As one of the largest banks in Bangladesh, BRAC Bank is committed to building a financial ecosystem that contributes to a more democratic and poverty-free country. They serve more than two million retail, corporate, and SME business customers through a variety of channels, including a growing portfolio of customer-centric digital products. BRAC Bank continues to undergo rapid digital transformation to meet customers’ needs of the day and is entrusted with an exponential amount of customer and corporate data. To establish their reputation as a trusted institution and secure operations across their entire network, BRAC Bank became the first bank in the country to implement the LogRhythm SIEM platform.

The Challenge

New Risks from Scaling Technology

The increased adoption of technology posed new threats for BRAC Bank. In the process of scaling their technology, underlying and unidentified system vulnerabilities emerged and were amplified. At the same time, the rising number of logs meant that the team could no longer afford to rely on manual processes, as it had always done, to collect and analyze log data. It was too time-consuming, difficult to manage, and ultimately, not effective enough to monitor their network in real-time.

BRAC Bank could not afford to leave any vulnerabilities unchecked. If exploited by opportunistic cybercriminals, this could lead to severe financial and regulatory impacts and an utter loss of customer confidence.

With that, the team realized the urgent need for a security information event management (SIEM) solution. This would offer an intuitive, automated solution that provided real-time monitoring across their entire network, and ensure a secure and compliant IT estate.

The Solution

Single Pane of Glass Visibility

Following an extensive evaluation process by multiple stakeholders, BRAC Bank selected the LogRhythm SIEM platform. They were sold on the LogRhythm SIEM  stellar track record for continuous innovation and laser-sharp focus on SIEM solutions and also took into consideration user feedback and existing market reviews. Some key determining factors included scalability, ease of implementation, and confidence in their security architecture.

From the very first day of adoption, the Information security team at BRAC Bank benefited from increased visibility across their entire network. There was little downtime required to integrate the LogRhythm SIEM platform with existing log sources, and users could organize and process information faster and more effectively than before.

Enhanced Incident Response

Since the implementation of the LogRhythm SIEM solution, BRAC Bank has seen a reduced mean time to detect (MTTD) and mean time to respond (MTTR) to threats. This is especially valuable given the bank’s extensive and unmatched network of branches, ATMs, offices, and delivery points. With end-to-end visibility across this entire IT infrastructure, the security team is now empowered to respond and investigate incidents with greater ease.

Beyond this, BRAC Bank has also seen a massive leap in its investigative capabilities. They leverage the LogRhythm SIEM security orchestration, automation, and response (SOAR) solution, SmartResponse™, to automate tasks and streamline efficiency across their security response workflow. This means tapping on prebuilt and customizable features like an AI engine, rules, alarms, and dashboards to help organize and funnel the relevant data to the right teams. In turn, they can respond more quickly and remediate threats like phishing, malware, or ransomware attacks.

The Next Level of Maturity

For financial institutions like BRAC Bank, ensuring the highest level of information security will always be a priority. Cybercriminals will always target these high-value organizations, and banks must be prepared with flexible solutions to defend against the next wave of cyberthreats.

With LogRhythm SIEM, BRAC Bank has introduced a new level of maturity into their security landscape with the help of OneWorld InfoTech. They are the first, and only Bangladeshi bank awarded with ISO 27001:2013 certification for Information Security function, as well as ISO 18788:2015 certification for Security Operations Management System. BRAC bank is also a PCI-DSS certified organization.

BRAC Bank Ltd website: https://www.bracbank.com/

“LogRhythm SIEM has been invaluable as we commit to deepening our digital capabilities and security infrastructure. The whole process, from onboarding to implementation, has been seamless for our team members from the start, and we continue to receive support and guidance whenever we need. Since using LogRhythm SIEM, we have experienced a dramatic reduction in mean time to detect (MTTD) and mean time to respond (MTTR), and are more agile in our incident response. As we scale our digital initiatives in line with our customers’ needs, we look forward to working more closely with the LogRhythm SIEM team to develop our security roadmap.”

• 

• B.M. Zahid-Ul Haque, Senior Vice President & Head of Information Security

  BRAC Bank Ltd