Case Study: ING Bank achieves continuous security validation and reduced cyber risk with Picus Security

Large Financial Institution Embraced Continuous Security Validation to Boost Cyber Resilience

ING Bank, a global banking giant with tens of thousands of employees and millions of customers, needed to measure, improve and maintain the effectiveness of a large, multi-layered security estate and avoid any “false sense of security.” To gain continuous, threat-centric visibility and better utilize existing investments, ING Bank adopted Picus Security’s Complete Security Validation Platform (Breach and Attack Simulation) to assess how its controls perform against real-world attack scenarios.

Picus Security deployed its platform across ING’s networks, email and endpoints to run thousands of simulated attack scenarios, provide a threat and mitigation library, and feed detection signatures into existing firewalls and SIEMs. The continuous validation approach enabled ING to uncover gaps as they occurred, improve defensive configurations, better leverage existing tools, reduce operational effort and lower cyber risk—delivering measurable visibility, ongoing posture improvement and substantial man‑hour savings.

ING Bank

Muhammet Emin Başar

IT Platform Security Expert Lead