Case Studies

Norfolk Suffolk NHS Customer Story

Issue link: https://learn-umbrella.cisco.com/i/1122865

Contents of this Issue

Navigation

Page 4 of 4

Case study Norfolk and Suffolk NHS Foundation Trust © 2019 Cisco and/or its affiliates. All rights reserved. Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1110R) Use case: Umbrella in action During a phishing attack targeting budget holders, around 100 staff members received a bogus email that appeared to be completely credible. 40 people clicked on the link contained in the email and one user's credentials were compromised. As soon as the Trust were aware of the incident, they sought to remediate the problem, and were pleasantly surprised to discover that within 10 minutes, Umbrella had detected unusual activity on the site URL and blocked it, preventing 80 users from accessing the link. At the same time, the accounts of every staff member who had clicked on the link was temporarily manually blocked by IT Services, using Umbrella to obtain a list of these users. "No sensitive data was compromised, no users were adversely affected, and we received no negative feedback regarding any interruption to service," says Green. "Cisco Umbrella had proven itself by doing its job." Importantly, remote workers affected by the breach were also spotted immediately, proving Umbrella's consistency across all sites and locations. What Else The Trust uses several Cisco products in addition to Umbrella including Cisco Firepower and ASA firewalls, plus AMP for Networks. "It can sometimes be difficult to define which solution has done exactly what for us," says Green. "However, we know that Umbrella plays a central role in strengthening our security defences, particularly when dealing with the 'unknowns' , making visible and remediating threats that we would not even have aware of previously." "We do a daily check of the Umbrella console, so we can see the volume activity that it is clearly preventing and protecting us from all the time." says Jones. "We have also gained further visibility into activity by user, device, and group by deploying Active Directory (AD) integration." As for any lessons learned: "We wish we could have deployed Cisco Umbrella 12-18 months earlier," says Green. Buy it, deploy it, it works What would Norfolk and Suffolk NHS Foundation Trust say to other health and care organizations considering Cisco Umbrella? "It is incredibly easy to deploy, and it does exactly what it says it does – without compromise or disruption to end users," says Green. "Quite simply, it's a matter of "buy it, deploy it, it works." "And Umbrella continues to demonstrate its reliability." "We've gained a more comprehensive layer of protection with Cisco Umbrella and it gives us no concerns, just reassurance," he concludes.

Articles in this issue

Links on this page

view archives of Case Studies - Norfolk Suffolk NHS Customer Story