Case Study: Surescripts achieves real-time fraud detection and faster incident response with Splunk

Surescripts Protects Doctors and Patients With Improved Fraud Detection and Security

Surescripts, which runs the largest health information network in the U.S. connecting pharmacies, providers and payers and processing over six billion transactions annually, faced growing risks from fraudulent activity and lacked real-time visibility into its sprawling, multi-datacenter environment. Its legacy SIEM produced 24-hour investigation delays and required laborious manual analysis of disparate alerts and raw logs in Excel.

By deploying Splunk Enterprise (plus DB Connect and integrations) across its infrastructure, Surescripts automated fraud checks, centralized log data and replaced the slow SIEM, giving security teams immediate insights and the ability to run complex, historical fraud queries. The result: faster, more accurate fraud detection (including spotting self-prescribing and credential compromise), significantly reduced incident response times, instant customized reporting, and broader internal use across more than 200 staff.

Surescripts

Paul Calatayud

Chief Information Security Officer