Case Study: Pandora improves incident response with ProtectWise Grid

Pandora Improves Incident Response By Harnessing Automation and The Power of PCAP

Pandora, a media and entertainment company with over 70 million monthly users, faced a challenge in securing complete threat visibility for its security team. Relying on the open-source Elastic stack instead of a traditional SIEM, the SecOps team needed a way to incorporate network traffic analysis to augment their log-based alerts. They sought a solution that could capture and analyze full-fidelity network traffic and integrate the results directly into the Elastic interface their analysts were already using.

To address this, Pandora implemented the ProtectWise Grid from ProtectWise. The cloud-based platform used sensors to capture network traffic, providing curated threat intelligence and data science-based analysis. The solution integrated seamlessly with Pandora's existing workflows through APIs, feeding detections and PCAP data into Elastic. This enabled automated retrospection, which successfully identified critical threats like the XcodeGhost malware early enough to prevent impact. ProtectWise provided a complete picture of alerts with a low false-positive rate, significantly reducing investigative time and alert fatigue for the security team.

Pandora