Global Data Systems (GDS), an innovative MSP/MSSP that provides IT solutions such as maritime satellite services, voice, data and cybersecurity, has adopted the Security Orchestration, Automation and Response (SOAR) platform to enhance its security operations.
However, it didn't take long before the platform's limitations became apparent. As GDS's security posture matured, they realized they needed a more advanced solution to keep up with evolving threats and align with their unique key performance indicators (KPIs). This led them to Swimlane Turbine, an AI-powered security automation platform. Utilizing Turbine has dramatically improved GDS's SecOps efficiency and transformed threat response capabilities within the Security Operations Center (SOC).
In a recent interview, Tracy Webb, Director of Information Operations and Cybersecurity at GDS, shared how Turbine has revolutionized the SecOps team's ability to effectively manage a greater volume of cases.
Read on to discover how GDS went from failure to streamlined success by replacing a legacy SOAR vendor with AI-powered security automation from Swimlane.
Why traditional SOAR has never made it into the Global Distribution System (GDS).
With a small but highly skilled SOC team, GDS previously relied on the SOAR platform to handle the massive workload associated with supporting internal and client security. But their first SOAR platform couldn't keep up with their increasing demands. Webb explained that waiting for important updates and new features left them feeling stuck and unable to remain agile in the rapidly changing threat landscape. Ultimately, it became clear that replacing their original SOAR was critical to the success of their security operations. “We couldn't get the development or feature additions we needed as quickly as we needed to to stay agile and keep up with the threats we were facing,” Webb said.
That's when GDS realized it had outgrown its SOAR tool, and it wasn't good enough.
Early adopters of SwimlaneHero AI
Turbine's Hero AI is a suite of AI-powered innovations that combine human and machine intelligence to improve SecOps workflows and increase ROI. This allows SecOps teams to start making AI-assisted decisions with Swimlane's Private LLM to level up their security organization.
For GDS, this was a game-changing capability. As an early adopter of Swimlane's Hero AI, GDS is excited about the possibilities AI brings to their SOC. From simplifying the data retrieval process to enhancing decision-making processes, AI has already proven invaluable. Webb explained that Hero AI has given its analysts the game-changing ability to ask for exactly what they need and get it back to an easily digestible format. He envisions further improvements in the future as the team continues to explore the potential of artificial intelligence.
“The excitement for my engineers is that this makes them stronger analysts and engineers,” Webb said. “For me, all I see is increased productivity and that we are becoming more lethal in terms of what we can deliver to our customers and protecting the global distribution system.”
Automation and artificial intelligence…the deadly combination in cybersecurity
For GDS, adopting the Swimlane Turbine wasn't just about creating a more robust SOAR platform – it was also about elevating their entire safety program. By focusing on its unique KPIs and leveraging advanced automation and artificial intelligence, GDS has transformed the way it operates, setting a new standard for what is possible in cybersecurity. With the right tools and a well-trained team, they accomplished more than they thought possible, Webb said.
“I would recommend Turbine to my colleagues because in the COO role,
You simply cannot manage the level of caseload and threats presented to SOC teams without it. I would argue that it is impossible for any SOC team to not have Swimlane in their environment and be effective for a very long time.
Tracy Webb, Director of Information Operations and Cybersecurity at GDS
Results that speak for themselves
Swimlane vs. legacy SOAR has enabled GDS to track important KPIs through standard case management and dashboards. “The only way you can measure your operational effectiveness is to use a platform like Swimlane, where you can predictively design your rules of the game and measure human costs,” Webb stressed. “Swimlane is the only platform I have used today that does this effectively.”
Since converting to the Swimlane Turbine, GDS has seen a significant transformation in its operations. Their SOC team, consisting of just seven engineers, has completed over 5,000 cases, a feat they never reached with their previous SOAR platform. Webb estimates that without Swimlane's AI-powered security automation, they would need 20 more analysts to keep up with the workload. Additionally, the time saved in detecting and responding to threats is amazing. Tasks that used to take hours, like preparing to hunt down threats, now take 30 minutes. This allows the team to handle more cases and provide better support to both internal users and customers.
In the end, Swimlan not only met GDS's expectations, but exceeded them. As security threats continue to evolve, so will GDS capabilities, thanks to the time-saving, AI-powered automation engine that Swimlane Turbine provides.
Request a demo
If you haven't had a chance to explore the Swimlane Turbine yet, request a demo.
Request a demo
