at a glance

CHALLENGE
Improve endpoint information security to combat malware and provide increased threat visibility.

SOLUTION
Palo Alto Networks® Traps™ advanced endpoint protection creates a single dashboard for the rapid identification and elimination of threats that originate on endpoints.

RESULTS

  • More than 3,000 workstations and 650 servers secured with Traps.
  • Approximately a 15 percent increase in detection rate – thereby reducing vulnerabilities and increasing endpoint security.
  • Increased assets visibility achieved through use of a centralized dashboard.
  • Improved availability and productivity through faster threat detection.

Background

KMG Rompetrol conducts major operations in refining and petrochemicals, retail, trading, upstream, and industrial services in 11 main markets in Europe and Central Asia. In Romania, the group operates Petromidia Năvodari Refinery, with a processing capacity of more than 5 million tons per year; Vega Ploiesti Refinery, the oldest unit of its kind, in operation since 1905; a fuel distribution network of more than 716 distribution points under the Rompetrol brand; and 10 warehouses, 230 LPG supply stations, and 9,000 distribution points for gas tanks.

Diversifying its operations, the company has found itself relying more and more on tightly integrated business applications. A pioneer in adopting virtualization and using state-of-the-art technology to propel business, it recently created a dedicated cybersecurity division. The mandate of this division is to secure the operation of a reliable cyber protection platform while also focusing on prevention and organizational alignment practice.

In 2016, the company underwent a significant transformation in how it handled cybersecurity tasks at a group level, which saw IT security brought together under the umbrella of a new group function closer to the core business management. It also gave KMG the opportunity to re-evaluate its approach to information security.

“It was of paramount importance to shift the paradigm from IT security, which is limited to the technological side, and extend it to cover the CIA triad,” explains Victor Ciurus, group information security lead for KMG Rompetrol, referring to the three core goals of InfoSec: confidentiality, integrity and availability. “We have many different platforms, technologies and services within a heterogeneous landscape spread out across the country and abroad, which opens us up to a large number and variety of threats.”

One of the key objectives behind introducing a new layer of security was to provide centralized threat visibility to end-user devices, thus enabling the quick resolution of any possible incident.

“The management of endpoint protection was just these two solutions, but we couldn’t properly manage them in a centralized manner, which made it difficult to manage infections at source. At times, I was stunned to see malware getting by,” adds Ciurus. “There was no integration between the antivirus solutions we operated and our event management processes, which is why we went looking for a new solution to take us to the next level.”

Over the course of six months, Palo Alto Networks Traps Advanced Endpoint Protection has been deployed on over 650 servers and 3,000 workstations on a five-year contract with Premium Support for the duration. There are also plans to further extend the coverage of Traps advanced endpoint protection within Rompetrol’s infrastructure.

Centralized Visibility Improves Efficiency

Traps provides a single pane of glass through which to view the computing infrastructure in its entirety and extract information at a far more granular level. This allows companies to detect and remove threats more quickly, improving availability and user productivity.

“The level of information is much more detailed, making the interception of malware much simpler,” explains Ciurus. “It also allows us greater visibility over what files users are running and block them if need be. Palo Alto Networks Traps also integrates seamlessly with McAfee and Defender, so we get a clear view of every endpoint.”

“There should be a human resource load balance in checking incidents, and Palo Alto Networks Traps lets us flexibly split responsibilities and monitor them across a central dashboard,” says Ciurus.


 

Traps Datasheet

Palo Alto Networks Traps replaces traditional antivirus with a multi-method prevention approach that secures endpoints against known and unknown malware and exploits before they can compromise a system. Traps prevents security breaches and successful ransomware attacks, in contrast to detection and response after critical assets have been compromised. Traps Advanced Endpoint Protection: • Prevents cyberbreaches and successful ransomware attacks by preemptively blocking known and unknown malware, exploits and zero-day threats. • Protects and enables users to conduct their daily activities and use web-based technologies without concerns for known or unknown cyberthreats. • Automates prevention by autonomously reprogramming itself using threat intelligence gained from WildFire.
Santa Clara, CA
  • 30
  • 64050

AV-Comparatives 

AV-Comparatives, the independent organization that tests and assesses antivirus (AV) software, announced the completion of its 2017 “Comparison of Next-Generation Security Products” and presented Traps advanced endpoint protection with its “Approved” award. The firm conducted a series of malware protection and exploit prevention tests on Traps during September and October 2017. Download the report to view the results of this test.
  • 4
  • 12911

2018 NSS Labs Advanced Endpoint Protection Report

Palo Alto Networks advanced endpoint protect Traps achieved the rating of “Recommend” in the 2018 NSS Labs Advanced Endpoint Protection (AEP) Test. This test aims to determine how effectively the AEP product can protect against a threat, regardless of the infection vector or method of obfuscation. The AEP test evaluated several vendors ability to detect, prevent, continuously monitor and take action against malware, exploits, evasions and blended threats.
  • 5
  • 6510

Traps Technical Overview

Most organizations deploy a number of security products to protect their endpoints, including one or more traditional antivirus solutions. Nevertheless, cyber breaches continue to increase in frequency, variety and sophistication. Faced with the rapidly changing threat landscape, current endpoint security solutions and antivirus can no longer prevent security breaches on the endpoint. Palo Alto Networks® Traps™ advanced endpoint protection replaces traditional antivirus with a unique combination of the most effective, purpose-built, malware and exploit prevention methods that pre-emptively block known and unknown threats from compromising a system.
Santa Clara, CA
  • 10
  • 41639

Expedition Transformation & Best Practices Adoption Tool

The Expedition Transformation and Best Practices Adoption Tool helps to improve your security posture by comparing your device and policy configurations against Palo Alto Networks best practices, and then automatically identifying and providing remediation recommendations.
  • 4
  • 5702

How to Secure Your Business in a Multi-Cloud World

This paper highlights an innovative security approach that eliminates the wide range of cloud risks that can cause breaches, while enabling organizations to achieve consistent and frictionless cloud protections for multi-cloud environments.
  • 2
  • 2673