Case Study: Rabobank improves threat detection and security compliance with OpenText ArcSight ESM

Rabobank outsmarts advanced persistent threats with ArcSight ESM. This international bank now uncovers cyber threats with enterprise security management

Rabobank, a major retail bank in the Netherlands, needed to improve the accuracy of its SIEM-based threat detection as advanced persistent threats became more frequent and sophisticated. Working with OpenText and its ArcSight Enterprise Security Manager (ESM), the bank also wanted stronger event correlation, better compliance reporting, and tighter integration with existing IT service tools.

OpenText implemented ArcSight ESM across Rabobank’s environment, including high-availability deployments in two data centers and a test/development instance. The solution now correlates about 1 million security logs per day from thousands of data sources, enabling Rabobank to build 30–40 advanced use cases, reduce false positives, detect rogue devices and abnormal behavior faster, and improve compliance reporting and security team productivity.

Rabobank

Mark Beerends

Head of Security Operations Center