Examine our research from the last year in the ReliaQuest 2024 Annual Cyber-Threat Report
Reduce Alert Noise and False Positives
Boost your team's productivity by cutting down alert noise and false positives.
Automate Security Operations
Boost efficiency, reduce burnout, and better manage risk through automation.
Dark Web Monitoring
Online protection tuned to the need of your business.
Maximize Existing Security Investments
Improve efficiencies from existing investments in security tools.
Beyond MDR
Move your security operations beyond the limitations of MDR.
Secure with Microsoft 365 E5
Boost the power of Microsoft 365 E5 security.
Secure Multi-Cloud Environments
Improve cloud security and overcome complexity across multi-cloud environments.
Secure Mergers and Acquisitions
Control cyber risk for business acquisitions and dispersed business units.
Operational Technology
Solve security operations challenges affecting critical operational technology (OT) infrastructure.
Force-Multiply Your Security Operations
Whether you’re just starting your security journey, need to up your game, or you’re not happy with an existing service, we can help you to achieve your security goals.
Detection Investigation Response
Modernize Detection, Investigation, Response with a Security Operations Platform.
Threat Hunting
Locate and eliminate lurking threats with ReliaQuest GreyMatter
Threat Intelligence
Find cyber threats that have evaded your defenses.
Model Index
Security metrics to manage and improve security operations.
Breach and Attack Simulation
GreyMatter Verify is ReliaQuest’s automated breach and attack simulation capability.
Digital Risk Protection
Continuous monitoring of open, deep, and dark web sources to identify threats.
Phishing Analyzer
GreyMatter Phishing Analyzer removes the abuse mailbox management by automating the DIR process for you.
Integration Partners
The GreyMatter cloud-native Open XDR platform integrates with a fast-growing number of market-leading technologies.
Unify and Optimize Your Security Operations
ReliaQuest GreyMatter is a security operations platform built on an open XDR architecture and designed to help security teams increase visibility, reduce complexity, and manage risk across their security tools, including on-premises, clouds, networks, and endpoints.
Blog
Company Blog
Case Studies
Brands of the world trust ReliaQuest to achieve their security goals.
Data Sheets
Learn how to achieve your security outcomes faster with ReliaQuest GreyMatter.
eBooks
The latest security trends and perspectives to help inform your security operations.
Industry Guides and Reports
The latest security research and industry reports.
Podcasts
Catch up on the latest cybersecurity podcasts, and mindset moments from our very own mental performance coaches.
Solution Briefs
A deep dive on how ReliaQuest GreyMatter addresses security challenges.
White Papers
The latest white papers focused on security operations strategy, technology & insight.
Videos
Current and future SOC trends presented by our security experts.
Events & Webinars
Explore all upcoming company events, in-person and on-demand webinars
ReliaQuest ResourceCenter
From prevention techniques to emerging security trends, our comprehensive library can arm you with the tools you need to improve your security posture.
Threat Research
Get the latest threat analysis from the ReliaQuest Threat Research Team. ReliaQuest ShadowTalk Weekly podcast featuring discussions on the latest cybersecurity news and threat research.
Shadow Talk
ReliaQuest's ShadowTalk is a weekly podcast featuring discussions on the latest cybersecurity news and threat research. ShadowTalk's hosts come from threat intelligence, threat hunting, security research, and leadership backgrounds providing practical perspectives on the week's top cybersecurity stories.
March 26, 2024
About ReliaQuest
We bring our best attitude, energy and effort to everything we do, every day, to make security possible.
Leadership
Security is a team sport.
No Show Dogs Podcast
Mental Performance Coaches Derin McMains and Dr. Nicole Detling interview world-class performers across multiple industries.
Make It Possible
Make It Possible reflects our focus on bringing cybersecurity awareness to our communities and enabling the next generation of cybersecurity professionals.
Careers
Join our world-class team.
Press and Media Coverage
ReliaQuest newsroom covering the latest press release and media coverage.
Become a Channel Partner
When you partner with ReliaQuest, you help deliver world-class cybersecurity solutions.
Contact Us
How can we help you?
A Mindset Like No Other in the Industry
Many companies tout their cultures; at ReliaQuest, we share a mindset. We focus on four values every day to make security possible: being accountable, helpful, adaptable, and focused. These values drive development of our platform, relationships with our customers and partners, and further the ReliaQuest promise of security confidence across our customers and our own teams.
More results...
When Kevin Anderson, Cyber Security Manager, joined Associated Bank in 2014, security consisted of a team of engineers who were responsible for multiple duties. With evolving security threats increasing, Associated Bank took the initiative and grew the department significantly, adding additional functions and skills. Associated Bank has built a model for attracting and retaining top security talent and is continually working on better retention and growth.
In this edition of our Customer Spotlight Series, we explore the concept of intentional growth and how leaders can invest more in team development to prevent burnout.
Kevin acknowledges that one of the hardest things a leader faces when trying to grow a team is limited resources. Kevin knew he needed to break the “jack-of-all-trades, master of none” approach. Prior to joining Associated Bank, Kevin spent 11 years honing his craft at an insurance business. There, he worked closely with someone who helped him develop his career. After going through the process himself, Kevin realized the importance of training and nurturing people, especially in cybersecurity. “If it weren’t for my mentor believing in me and pushing me, I don’t think I’d be where I am today with the knowledge and experience that I have.”
Early on at the bank, Kevin had the opportunity to assess how security operations was being managed and to establish a formal Cyber Defense Center. In contrast to the traditional model where everyone does everything, it allowed him to guide the company toward a new approach, one that focused on protection, response, and defense, and that enabled a true career path for staff.
Joining Associated Bank also marked a significant change for Kevin as he transitioned from engineer to manager, when his experiences as a high school football player and fitness manager – watching people grow and make an impact – started to pay off. His focus shifted from his successes to the successes of the team and from day-to-day issues to the bigger picture.
Hiring the right person for a job takes time and lots of patience, but Kevin is a firm believer that when you hire someone who fits into your model, it makes your job as a leader much easier. “I’ve gone months waiting to hire the right individual with the right skillset and team fit,” Kevin said. “But if you put the wrong personality into the mix, it causes a lot of friction and challenges dynamics.”
So how do you know who’s right for your team?
Kevin quotes Patrick Lencioni’s The Ideal Team Player, listing the ideal qualities of a team member as humble, hungry, and smart. He explains, “You want them to be able to grow, be humble, and have emotional intelligence when they work with people. Because then, your job as a leader is to take them, empower them, equip them, and remove the roadblocks.”
Kevin’s team is living proof of this concept. He says that even though some started with very little information security knowledge, he’s pushed them and empowered them to grow, train, and learn more so that they could become integral parts of the bank’s Cyber Defense Center.
Kevin tells new hires, whether they’re fresh out of college or have years of experience, that he expects everyone to be a leader. Whether it’s meetings, projects, or teams, Kevin emphasizes the impact individuals can have from day one regardless of their role. “When we talk about security monitoring, the analysts can’t just be viewed as tier one—they are leaders. They’re the ones in the SOC we’re counting on to identify baselines—and when they see a shift, I encourage them to use the opportunity to learn and grow, not just go back to look at another ticket.”
That said, it’s also crucial that individuals have the desire to grow. To create a future best analyst or engineer or leader, those individuals need to have the hunger to want to grow themselves.
Kevin emphasizes the importance of being vulnerable to establish trust with a team. Being open about past failures or flaws can have a significant impact. He recognizes that failure is difficult, but also knows that if no one fails, no one ever grows.
“Any conversation, any chance you have to impact someone—ask questions, spark a new thought, listen to a podcast, read a book—may inspire them to take the next step. Some of your biggest impacts are from things you never even realized you did that help someone create that movement to a new thought,” says Kevin.
Kevin sees ReliaQuest not as a supplier, but as a part of the team that helps his people develop and mature. “ReliaQuest isn’t just another third party—they’re part of our team,” says Kevin. “This partnership strengthens us and enables our team to move dynamically between proactive and reactive security. We know that if we ever have an issue or need help immediately, we can always call on ReliaQuest.”
It is a relationship that has evolved over time. “When we first started working with ReliaQuest, it was responsible for managing the SIEM,” Kevin explains. “But as we increased the scope of our relationship, we were able to collaborate more, and ReliaQuest helped us to become a 24/7 operation with better workflows.”
But the value of ReliaQuest goes further by adding a deeper level of protection: spotting issues, reporting back, and keeping an overview of the security environment. Kevin says that one of the ways he highlights value to his CISO is by communicating ReliaQuest’s proactive threat advisories and the emergency rules it has helped to establish. “It’s being able to say, hey this is a threat we heard about from ReliaQuest—it gave us the heads-up and now we are ready to act.”
ReliaQuest has been particularly helpful in developing the bank’s security teams. Kevin encourages his team to build relationships that enable them to gain knowledge, plug in to current events, and provide the support to perform at their best.
With a solid strategy, structure, and team in place, Kevin is now looking to the future. “Next we need to get deeper into data analytics and view our findings from a response perspective. This will save resources so we can be more productive. So far, we’ve relied on a SIEM approach. Now we need to dig into things that are heuristic: the idea of user-behavior analytics and why a system acted abnormally. This is exciting and it’s something I’ve anticipated for a long time.”
Kevin concludes by outlining his vision: “The premise of our Cyber Defense Center is to be proactive and respond rapidly. The challenge is to move dynamically between proactive and reactive without burning people out. If you can do that, then it raises the maturity of everyone.”