Rapid7 > Case Studies > Pearl Data Direct Leverages Rapid7 Insight Platform for Enhanced Security and Compliance

Pearl Data Direct Leverages Rapid7 Insight Platform for Enhanced Security and Compliance

Rapid7 Logo
Technology Category
  • Cybersecurity & Privacy - Application Security
  • Platform as a Service (PaaS) - Application Development Platforms
Applicable Industries
  • Finance & Insurance
  • National Security & Defense
Applicable Functions
  • Quality Assurance
Use Cases
  • Cybersecurity
  • Tamper Detection
Services
  • Cloud Planning, Design & Implementation Services
  • System Integration
About The Customer
Pearl Data Direct LLC is a FinTech company and a fully owned subsidiary of LuLu Financial Holdings. The company offers end-to-end solutions to a wide range of businesses and operates in the Gulf Cooperation Council (GCC) states, Hong Kong, the Philippines, Malaysia, and Singapore. Pearl Data developed the LuLu Money mobile app, which consumers use to send and receive money transfers, and the software used for the LuLu ERP system. They also provide the IT infrastructure and security for LuLu’s portfolio of businesses. The company's IT staff encompasses 150 developers, engineers, and R&D specialists, with a core security team of 25 and local teams in each of the 12 countries LuLu operates in.
The Challenge
Pearl Data Direct LLC (PDD), a FinTech company and subsidiary of LuLu Financial Holdings, faced two major security challenges. Firstly, as a company managing millions of dollars through their application, they were an attractive target for cyber attackers. Secondly, their business operates in the heavily regulated financial sector, requiring strict compliance with central bank regulations. The company needed to ensure the security of thousands of transactions flowing through their system every second, while also complying with stringent cybersecurity regulations. They also had to protect the personal identifiable information (PII) of their customers, which they were required to collect for compliance purposes. Furthermore, their core banking system was connected to a variety of banks, adding to the complexity of their security challenges.
The Solution
To address these challenges, Pearl Data implemented Rapid7 InsightIDR, InsightConnect, and InsightAppSec. These solutions provided the critical visibility, detection, automation, and integration needed to protect the information and transactions of thousands of users on their payments platform. They also ensured compliance with their demanding central bank regulators. The Rapid7 Insight platform was quickly provisioned and implemented, providing real-time alerts and scalability. The security team was able to see alerts in real-time and investigate any issues promptly. InsightConnect was integrated with InsightIDR, allowing for automated responses to detected threats. For instance, if a malicious IP was detected, it could be blocked across all firewalls with a single click. InsightAppSec was integrated with Azure DevOps, automating the process of testing applications for vulnerabilities and ensuring compliance with central bank regulations.
Operational Impact
  • The implementation of Rapid7's solutions not only improved Pearl Data's security posture but also brought about significant operational benefits. The real-time alerts and automated responses to threats enabled the security team to respond promptly and effectively to any potential issues. The integration of InsightConnect with InsightIDR and InsightAppSec streamlined their security operations, reducing the workload on the security team and allowing them to focus on more strategic tasks. The automated testing of applications for vulnerabilities ensured compliance with central bank regulations, reducing the risk of non-compliance and potential penalties. Furthermore, the automation of routine tasks resulted in a happier and more relaxed team, improving employee satisfaction and work-life balance.
Quantitative Benefit
  • A single Rapid7 InsightConnect workflow saved the team 11 days of work within the past 30 days.
  • Real-time alerts and automated responses to threats improved efficiency and response times.
  • Automated testing of applications for vulnerabilities ensured compliance with central bank regulations.

Case Study missing?

Start adding your own!

Register with your work email and create a new case study profile for your business.

Add New Record

Related Case Studies.

Contact us

Let's talk!
* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.