Case Study
In brief
KHIPU Networks
Network and security solutions, technologies, and services.
Technology
Offices in the UK, Mauritius, and South Africa
Fleet, UK
Standardised on the single, connected Palo Alto Networks portfolio, with ML-Powered Next-Generation Firewalls, Cortex XDR, Cortex XSOAR, Panorama, and GlobalProtect.
CHALLENGE
KHIPU Networks burst onto the UK data security scene in 2005, with a mission to reimagine the way organisations protect and secure their data. Scroll forward 17 years, and the company is an award-winning international cybersecurity company delivering a wide range of network and security solutions, technologies, and services to customers in multiple sectors and geographies. It even holds a Royal Warrant.
KHIPU is both a customer and a technology partner to Palo Alto Networks. Together, as partners, they offer customers complete, proven cybersecurity solutions, such as a 24/7 XMDR service, powered by KHIPU Networks’ SOC and underpinned by the Palo Alto Networks portfolio. Instant, complete SOC security visibility enables customers to cost-effectively safeguard their critical infrastructures, adapt to rapidly changing threats, and outpace adversaries.
In 2005, all of that was in the future. As business flourished in those formative years, KHIPU was challenged to protect its own indigenous technology infrastructure, spanning systems, people, and processes. The challenges included:
KHIPU experienced several disappointing false starts with different security vendors. In each case, the technology was promising, but the quality of support was disappointing.
It was time to look elsewhere.
REQUIREMENTS
“We didn’t want the biggest security vendor in the market; we wanted the best. Even back then—almost two decades ago—it was apparent that Palo Alto Networks was ahead of other vendors,” says Matt Ashman, Co-Founder and Chief Commercial Officer at KHIPU Networks. “Yes, it was a risk back then to partner with a company that had only just entered the UK market, but it’s a decision we have never looked back on.”
When it came to choosing a partner for its security infrastructure, KHIPU’s requirements included:
SOLUTION
The Palo Alto Networks portfolio now powers almost the entire KHIPU infrastructure, with seamlessly connected security solutions bridging all KHIPU’s security needs. These include:
“We are a customer of ourselves in the SOC,” says Guy Jermany, CIO, KHIPU Networks. “We have similar escalation paths to our SOC customers. With the Palo Alto Networks portfolio, we can consistently execute on the SOC mission to identify, investigate, and mitigate threats. Plus, we can quickly triage potential incidents through automation and streamlined processes.”
All of this is wrapped within a proactive and highly effective Palo Alto Networks support umbrella. Jermany adds, “The Palo Alto Networks team is always at our side. In our experience as a customer, their team understands our infrastructure and goals; they are extremely professional and agile in their response.”
BENEFITS
Armed with intelligent, timely security insights, KHIPU is eliminating the alert volumes associated with traditional security systems, only seeing alerts when it’s necessary.
Reduced mean time to respond (MTTR) also enables KHIPU to offer customers an agile and rewarding sales, marketing, and services experience. As a client of its own SOC, for example, 26GB of logs are typically ingested every day. During the past six months, some 7,382 alerts were generated (equivalent to an average of 40 per day), resulting in the creation of 354 incidences (an average of two per day), with the MTTR at 0.4 hours.
KHIPU has 360-degree, unified visibility into its security situation. With immediate insight into vulnerabilities, the organisation can take prompt, proactive action to identify and remediate threats, ensuring uninterrupted global business service.
KHIPU’s ML-Powered NGFW-managed service, for example, currently has 122 NGFW devices under management. KHIPU support currently has 680 NGFW devices under support.
The firewalls log approximately 3,000 threats per day, which in the past would have been reviewed manually. Cortex XDR AI and ML now analyse these threats automatically, combining the data with insights from the endpoints. As a result, 3,000 potential threats per day have now been filtered down to just two daily incidents to review.
Using one connected portfolio from one best-in-class vendor, KHIPU is uniquely positioned to reduce the total cost of operation. The Cortex consolidated cybersecurity platform, for example, leverages KHIPU’s existing investments in perimeter security, log collectors, and more. It also provides a complete solution for the XMDR service, managed firewalls, cloud security, and vulnerability assessments.
Since KHIPU is a customer of its own SOC, the total cost of operation is also amortised across all users.
The new security insights generated by the Palo Alto Networks portfolio are shared across all KHIPU customers, thereby reinforcing collective protection. The more customers that join the community, the better protected KHIPU’s own infrastructure and those of its customers will be.
“We use the portfolio to improve our customers’ environments as well as our own,” says Ashman. “For example, we run the Palo Alto Networks Best Practice Assessment (BPA) tool to optimise our customers’ security configurations, validate new installations, and conduct health checks. Likewise, we use this same toolset to assess our own configurations. What’s good for our customers is good for KHIPU too.”
“As both a Palo Alto Networks customer and a technology partner, the relationship can sometimes be blurred,” says Jermany. “What stands out, though, is the deep-rooted trust between both organisations. No other security organisation offers such a depth and breadth of capability. Their support is also first-class. They jump when we ask them to jump.”