May 30 Webinar | SOC Talk: Automating Threat Response
Reduce Alert Noise and False Positives
Boost your team's productivity by cutting down alert noise and false positives.
Automate Security Operations
Boost efficiency, reduce burnout, and better manage risk through automation.
Dark Web Monitoring
Online protection tuned to the need of your business.
Maximize Existing Security Investments
Improve efficiencies from existing investments in security tools.
Beyond MDR
Move your security operations beyond the limitations of MDR.
Secure with Microsoft 365 E5
Boost the power of Microsoft 365 E5 security.
Secure Multi-Cloud Environments
Improve cloud security and overcome complexity across multi-cloud environments.
Secure Mergers and Acquisitions
Control cyber risk for business acquisitions and dispersed business units.
Operational Technology
Solve security operations challenges affecting critical operational technology (OT) infrastructure.
Force-Multiply Your Security Operations
Whether you’re just starting your security journey, need to up your game, or you’re not happy with an existing service, we can help you to achieve your security goals.
Detection Investigation Response
Modernize Detection, Investigation, Response with a Security Operations Platform.
Threat Hunting
Locate and eliminate lurking threats with ReliaQuest GreyMatter
Threat Intelligence
Find cyber threats that have evaded your defenses.
Model Index
Security metrics to manage and improve security operations.
Breach and Attack Simulation
GreyMatter Verify is ReliaQuest’s automated breach and attack simulation capability.
Digital Risk Protection
Continuous monitoring of open, deep, and dark web sources to identify threats.
Phishing Analyzer
GreyMatter Phishing Analyzer removes the abuse mailbox management by automating the DIR process for you.
Integration Partners
The GreyMatter cloud-native Open XDR platform integrates with a fast-growing number of market-leading technologies.
Unify and Optimize Your Security Operations
ReliaQuest GreyMatter is a security operations platform built on an open XDR architecture and designed to help security teams increase visibility, reduce complexity, and manage risk across their security tools, including on-premises, clouds, networks, and endpoints.
Blog
Company Blog
Case Studies
Brands of the world trust ReliaQuest to achieve their security goals.
Data Sheets
Learn how to achieve your security outcomes faster with ReliaQuest GreyMatter.
eBooks
The latest security trends and perspectives to help inform your security operations.
Industry Guides and Reports
The latest security research and industry reports.
Podcasts
Catch up on the latest cybersecurity podcasts, and mindset moments from our very own mental performance coaches.
Solution Briefs
A deep dive on how ReliaQuest GreyMatter addresses security challenges.
White Papers
The latest white papers focused on security operations strategy, technology & insight.
Videos
Current and future SOC trends presented by our security experts.
Events & Webinars
Explore all upcoming company events, in-person and on-demand webinars
ReliaQuest ResourceCenter
From prevention techniques to emerging security trends, our comprehensive library can arm you with the tools you need to improve your security posture.
Threat Research
Get the latest threat analysis from the ReliaQuest Threat Research Team. ReliaQuest ShadowTalk Weekly podcast featuring discussions on the latest cybersecurity news and threat research.
Shadow Talk
ReliaQuest's ShadowTalk is a weekly podcast featuring discussions on the latest cybersecurity news and threat research. ShadowTalk's hosts come from threat intelligence, threat hunting, security research, and leadership backgrounds providing practical perspectives on the week's top cybersecurity stories.
May 01, 2024
About ReliaQuest
We bring our best attitude, energy and effort to everything we do, every day, to make security possible.
Leadership
Security is a team sport.
No Show Dogs Podcast
Mental Performance Coaches Derin McMains and Dr. Nicole Detling interview world-class performers across multiple industries.
Make It Possible
Make It Possible reflects our focus on bringing cybersecurity awareness to our communities and enabling the next generation of cybersecurity professionals.
Careers
Join our world-class team.
Press and Media Coverage
ReliaQuest newsroom covering the latest press release and media coverage.
Become a Channel Partner
When you partner with ReliaQuest, you help deliver world-class cybersecurity solutions.
Contact Us
How can we help you?
A Mindset Like No Other in the Industry
Many companies tout their cultures; at ReliaQuest, we share a mindset. We focus on four values every day to make security possible: being accountable, helpful, adaptable, and focused. These values drive development of our platform, relationships with our customers and partners, and further the ReliaQuest promise of security confidence across our customers and our own teams.
More results...
Food safety innovator FoodChain ID improves security operations efficiency and avoids alert noise, reducing false-positive alerts by 84%.
Reduction in False-Positive Alerts
Reduction in Security IncidentResolution Time
Increase in ExpandedMITRE ATT&CK Coverage
FoodChain ID is one of the world’s leading food safety, testing, and sustainability organizations. Its offerings provide the data, technologies, and tools necessary to meet the growing demand for higher transparency, accountability, safety, and sustainability across the supply chain. FoodChain ID’s focus areas include food safety, organic and non-GMO verification and testing, and regulatory compliance.
FoodChain ID has grown organically as well as through targeted acquisitions. With over 500 employees in offices around the globe and applications handling sensitive information located both on-premises and in the cloud, the FoodChain ID security team needs to stay alert to cyber risk.
Improving and Modernizing their Security Program
Integrating and Managing Cyber Risk for Acquired Business Units
Obtaining Security Visibility Across an Expanding Attack Surface
Erik Battle, FoodChain ID’s CIO, described the company’s security operations goals. “We have a multi-faceted business, and our IT environment is distributed across multiple clouds and geographies,” he said. “We need to continually improve visibility across the environment while managing the risk of potential cyber threats, particularly around phishing and ransomware.”
Consolidated Visibility Allows Efficient Integration Across Business Acquisitions
While the core FoodChain ID business grows, the company has regularly acquired companies to expand its technology base or add customers. The FoodChain ID security team is responsible for managing risk and integrating an acquired firm after a deal closes.
Efficiently and effectively integrating a new business with a different security technology stack can pose challenges to any security team. According to Battle, “We want to get a single security view across our environment, and the GreyMatter platform helps to achieve that with its technology-agnostic approach. With acquisitions, we have to integrate IT security stacks with combinations of different endpoint protection, different firewalls, and multiple clouds. We need to quickly ingest new business units to maintain applications and our previous approach could not tie things together. GreyMatter helps us to quickly gain security visibility to new units and infrastructure, and then facilitate swapping out security technologies over time to standardize and gain efficiencies.”
84% Reduction in False-Positive Alerts Enables Proactive Security Initiatives
Before engaging with ReliaQuest, the FoodChain ID security team had to sift through alert noise, a task that distracted from delivering on more impactful security projects. As Battle described, “Working through false-positive alerts was a drain on the team. You can’t spend time on projects adding more business value when much of your time is spent triaging false-positive alerts.”
ReliaQuest GreyMatter, a cloud-native security operations platform built on an Open XDR architecture, has enabled the FoodChain ID security team to reduce false positives by 84%. Rather than spending a disproportionate amount of time on manual tasks and basic investigation of every security alarm, they can now focus on initiatives such as improving identity management, consolidating security tools, and supporting the business as the organization changes and grows.
Streamlining Security Operations Results in 81% Improved Response Times
External threat actors regularly attempt to compromise sensitive data, and Battle knows that the ability to quickly respond to threats is critical for his team. The FoodChain ID team has worked with ReliaQuest and the GreyMatter platform to drive down resolution times so they can stop threats earlier in the kill chain. Contextual threat intelligence, and expert threat and alert investigation performed by ReliaQuest experts, has helped the team continually drive down the mean time to resolve (MTTR) security incidents. In the latest quarter, the FoodChain ID team reduced resolution time by 81%, so MTTR is just over a day—despite an overall increase in alert volume.
The FoodChain ID team can investigate threats and quickly take action leveraging the automations and playbooks inside GreyMatter. As Battle described, “We use a variety of tools in our security program, including QRadar and CrowdStrike. With GreyMatter, investigations auto-populate relevant artifacts from across the environment so we avoid pivoting between security tools, and we can use playbooks to launch remediation actions in response to threats. The end result is that we can identify and respond to threats more quickly.”
Gaining Visibility and Insight to Better Manage Risk Leads to 15% Expansion in MITRE ATT&CK Coverage
Utilizing security metrics from GreyMatter has enabled Battle and the FoodChain ID security team to consistently communicate security goals, status, and the security operations roadmap with the company’s executive team and employees. The GreyMatter Security Model Index provides board-level metrics and reporting that the FoodChain ID team uses to understand its current statusand how the ReliaQuest–FoodChain ID partnership is performing. The Model Index also helps FoodChain ID develop a more accurate sense of its coverage and ability to identify, detect, and respond to the threats facing its business. This has enabled the company to understand and expand its threat detection coverage mapped to the MITRE ATT&CK framework by 15%.
In summarizing the relationship, Battle highlighted, “ReliaQuest’s approach to security provides us with strategic flexibility. As FoodChain ID grows and our security strategy evolves, ReliaQuest and GreyMatter can support that strategy no matter what security tools we may decide to deploy or the cloud infrastructure we use. ReliaQuest and GreyMatter’s flexible approach allow and enable the FoodChain ID to design our security model that fits our business, and the collaboration keeps things secure.”
GreyMatter gives visibility into our entire environment – from endpoints to mulitple cloud environments and critical services. Understanding gap areas focuses us on those areas needing additional buildout of detection mechanisms, areas where we feel sufficiently enabled to respond, and where we could automate or build efficiency. The comprehensive process and flexibility delivered by ReliaQuest has been essential to our ongoing improvement. Erik Battle Chief Information Officer, FoodChain ID
GreyMatter gives visibility into our entire environment – from endpoints to mulitple cloud environments and critical services. Understanding gap areas focuses us on those areas needing additional buildout of detection mechanisms, areas where we feel sufficiently enabled to respond, and where we could automate or build efficiency. The comprehensive process and flexibility delivered by ReliaQuest has been essential to our ongoing improvement.