Every organization wants the best cyber defenses available, but few have the budget and resources needed to deliver them. That’s why Sophos, an AWS Partner, has developed an offering using Amazon Web Services (AWS) called Cybersecurity as a Service, which combines excellent modern cybersecurity technologies with 24/7 managed detection and response service teams.
With Cybersecurity as a Service, customers can protect their AWS Cloud using solutions such as Cloud Edge Next Gen Firewalls, Windows and Linux host protection agents to guard against malware and ransomware, and a cloud security posture management solution that uses AWS security services. Each solution not only provides near-real-time protection against attacks but also delivers near-real-time data to the Sophos customer data lake, where it can be further analyzed for indicators of compromises or breaches. This analysis can be done by the customer or its partner, the Sophos managed detection and response team, or a combination of both teams.
Calibration management software company CyberMetrics recognized that its small team needed the support of dedicated cybersecurity experts to provide optimal security for itself and its customers. CyberMetrics turned to AWS and used Sophos to get the around-the-clock coverage that it needed to better identify and mitigate cyber threats.
Opportunity | Using AWS Partner Sophos to Improve Security Visibility for CyberMetrics
Founded in 1988, CyberMetrics is a 25-person software company headquartered in Phoenix, Arizona, that helps more than 15,000 facilities worldwide save time and money. CyberMetrics primarily serves the manufacturing industry, developing software to improve quality, reduce costs, and maximize productivity. Some functions of its software include implementing inventory control, optimizing calibration intervals, tracking gauges, and assuring standards compliance. In addition to these services, CyberMetrics provides technical support, training, and client solutions.
CyberMetrics uses AWS servers to host its software-as-a-service products. To power its applications, CyberMetrics engages Amazon Elastic Compute Cloud (Amazon EC2), which offers secure and resizable compute capacity. The company also uses Amazon Simple Email Service (Amazon SES), a cloud email service provider that can integrate into nearly any application for bulk email sending.
Whereas AWS provides security for its infrastructure services and related functionality, AWS customers like CyberMetrics are responsible for securing their own applications and data on the servers. Devin Ellis, chief technology officer at CyberMetrics, alongside Brian Hertenstein, systems operations manager, were measuring, managing, and mitigating threats by themselves. They had set up a compliant environment, but they needed a security event plan and adequate coverage for dealing with active threats. With the small team already spread too thin and the cyber-threat landscape growing more dangerous by the day, CyberMetrics looked for a security solution that could save time and provide greater visibility into the cloud environment.
After a demonstration of Sophos’s capabilities and products, the CyberMetrics team knew that Sophos, found in both the AWS Solutions Library and AWS Marketplace, could provide the solution that it needed. “Sophos gave us a real workforce that we didn’t have to hire and could use to analyze and review everything for both on premises and AWS,” says Ellis. “That was a huge decision-maker for us.”
Sophos gave us a real workforce that we didn’t have to hire and could use to analyze and review everything for both on premises and AWS.”
Chief Technology Officer, CyberMetrics
Solution | Reducing Security Risks with a Small Team Using Sophos Cybersecurity as a Service for AWS
CyberMetrics replaced legacy antivirus software with Sophos Intercept X Endpoint, which combines multiple techniques to prevent cyber events before they can damage the system. The deployment was straightforward, and Hertenstein did most of the work himself, with the Sophos Professional Services team on standby to answer questions and double-check his work. In addition to this security solution, the team also implemented Sophos Cybersecurity as a Service for AWS and Sophos Cloud Optix, which provides cloud security posture management, cloud workload protection, and cloud infrastructure entitlements management functionality.
By working alongside the Sophos team, CyberMetrics instantly gained a full cybersecurity team. Cybersecurity as a Service for AWS provides continuous monitoring of the CyberMetrics environment. “Cybersecurity as a Service for AWS saves me from having to go down the rabbit hole of something that is not my area of expertise,” says Hertenstein. If the Sophos team detects a threat, it sends out swift notifications and acts to block the threat, identify the source, and create a strategy to block similar threats in the future. The service tremendously reduced Hertenstein’s workload and freed up team members to focus more on strategic projects and other important tasks.
In addition, Cybersecurity as a Service for AWS offered the team greater peace of mind. The alerting system was an invaluable resource while Hertenstein was away on paternity leave—during his time away, he received threat detection notifications, but the Sophos team isolated and solved the problems before they could do damage. Hertenstein felt reassured throughout his leave that security at CyberMetrics was under control.
Sophos Cloud Optix provided greater visibility into the AWS Cloud environment, including its cloud storage management on Amazon Relational Database Service (Amazon RDS), a collection of managed services that make it simple to set up, operate, and scale databases in the cloud. Previously, Hertenstein would have to painstakingly navigate through software to find what he wanted. Now, the CyberMetrics team can easily access the information that it needs to identify compliance risks and fill gaps in security with a few clicks. In addition, Cloud Optix offers insight and actionable guidance that previous software didn’t.
Outcome | Focusing on the Work That Matters at CyberMetrics
Working alongside Sophos improved the security at CyberMetrics, and it significantly reduced the team’s workload. With greater access to the AWS environment, CyberMetrics is better equipped to manage and remediate security risks. Now, the CyberMetrics team can more fully focus on the work of developing and maintaining software for its clients.
“As technical as we are, we’re not security experts,” says Ellis. “It’s really awesome having the Sophos team behind us.”
Founded in 1988, CyberMetrics is a software company primarily serving the manufacturing industry. CyberMetrics helps over 15,000 facilities worldwide save time and money by making it effortless to manage their assets and by offering technical support.
AWS Services Used
AWS Solutions Library
Vetted solutions and guidance for business and technical use cases.
Learn more »
Amazon Elastic Compute Cloud (Amazon EC2) offers the broadest and deepest compute platform, with over 700 instances and choice of the latest processor, storage, networking, operating system, and purchase model to help you best match the needs of your workload.
Amazon Relational Database Service (Amazon RDS)
Amazon RDS is a collection of managed services that makes it simple to set up, operate, and scale databases in the cloud.
Amazon Simple Email Service (Amazon SES)
Amazon Simple Email Service (Amazon SES) lets you reach customers confidently without an on-premises Simple Mail Transfer Protocol (SMTP) system.
Learn more »
Organizations of all sizes across all industries are transforming their businesses and delivering on their missions every day using AWS. Contact our experts and start your own AWS journey today.