Multi-cloud Security Operations Center as a Service
FEDERAL TRADE COMMISSION (FTC): Protecting sensitive law enforcement, corporate competition filing, and consumer data
Challenge: Annually, the FTC collects data from millions of consumer fraud complaints and thousands of corporate merger filings, which it uses to fulfill its mission to promote competition and protect consumers. These data systems are under increasingly sophisticated attacks from adversaries. As the FTC transitions from on-premises data center infrastructure with manual approaches to a cloud-first strategy, it needs to enhance its security operations center capabilities.
Approach: FTC procured a Security Operations Center as a Service (SOCaaS) that:
- Allows for faster decision-making
- Reduces vulnerability attack surface
- Creates a repeatable foundation for future government-wide implementations of SOCaaS
With TMF support, the FTC expedited its SOCaaS implementation using security services and trusted cloud service providers to host sensitive FTC data. This approach has:
- Reduced the mean time to detect and respond to an incident by 97%
- Increased the number of identified security events/alerts by 900%, allowing for total visibility across the FTC network
- Reduced the risk of bad actors executing a ransomware or other cyber attack
- Reduced the number of person hours to respond to indicators of cyber incidents
- Investment start: 06/2022
- Project status: Inactive
- Transfer status: 100%
- Repayment status: 100%
- Schedule delay: No
- Cost overruns: No
- ARP funding: Yes
- Commercial product: Yes
- Total TMF investment amount: $3,990,000
- TMF spend to date (obligated): $3,990,000