Bupa A/NZ has undergone a major security transformation plan that touched all security domains and was aspect of a world-wide ability uplift pursued by the health insurance provider.
Head of cyber security Jonathan Milton informed ServiceNow’s Know-how 2021 meeting that the firm embarked on the transformation in 2019, and has had new techniques bedded down for concerning six and twelve months.
“Our security transformation was seriously searching to experienced our security posture throughout our ‘identify’, ‘protect’, ‘detect’, ‘recover’ and ‘respond’ security domains,” Milton reported.
“By investing in our folks, our method and our technological innovation capabilities, we sought to elevate the waterline of our capacity to take care of these threats in line with our risk urge for food.”
Milton was the director of the A/NZ transformation prior to his current role.
He reported the transformation impacted all aspects of IT security at Bupa, which includes risk management, knowledge loss prevention, intrusion detection and prevention, vulnerability management (which Bupa phone calls ‘cyber hygiene’), SIEM, fast response and forensics, restoration capabilities.
Alongside with the deployment of new technological innovation platforms, the transformation was accompanied by a sizeable adjust plan, specially all-around stakeholder engagement.
This aimed to understand the requires of diverse stakeholder groups, from the board and executives to business enterprise models, and to aid individuals groups in reducing their have risk profiles.
“That seriously assisted us get a seat at the desk when we are conversing about closing individuals front doors and having that cyber hygiene to a thing within risk urge for food,” Milton reported.
On the technological innovation front, Bupa deployed vulnerability response and security incident response modules from ServiceNow, as properly as Tenable merchandise.
Milton reported deploying ServiceNow modules was found as interesting since they could be integrated with and “talk to the relaxation of the technological innovation estate and security platforms” in the company’s natural environment.
It already applied Provider Now for IT assistance management and configuration management, and
“It was also [about] the merchandise that ServiceNow indicated that they would have integrations and APIs with throughout our security platform,” Milton reported.
Milton reported that the ServiceNow vulnerability response and incident response modules are also amassing “data factors for us to understand the process so that we can then constantly improve” it.
He included that the uplift had enabled Bupa to mitigate the danger of destructive or accidental compromise to buyer knowledge or disruption to assistance shipping.