Skip to main content
InsuranceSecurity

Insurer Secures Multi-Cloud Environment

Life Insurance Provider
Hartford, CT
450 employees
4 months
500+
issues remediated
Started:Jan 2024
Duration:4 months
Completed:May 2024

The Challenge

LifeSecure Insurance had migrated to cloud aggressively over 3 years, with different teams adopting AWS and Azure independently. The result: 40+ accounts/subscriptions, no centralized visibility, and discovered (via penetration test) that 15 S3 buckets with policyholder data were publicly accessible.

The CISO knew there were problems but couldn't quantify them. Security tools were siloed by cloud, creating gaps. A regulatory examination was scheduled in 6 months, and the current state would likely result in material findings.

The challenge: gain control of a sprawling multi-cloud environment without disrupting business operations.

Our Approach

1

Cloud Asset Discovery

Week 1-3

Deployed CSPM across all AWS and Azure environments. Discovered 500+ resources unknown to IT, including 23 with critical misconfigurations.

2

Critical Remediation

Week 3-7

Immediately addressed public S3 buckets, overly permissive IAM roles, and unencrypted datastores. Reduced critical findings 90% in 30 days.

3

Unified Security Operations

Week 7-12

Integrated cloud security monitoring with existing SOC. Established alerting thresholds and response procedures.

4

Continuous Compliance

Week 12-18

Implemented continuous compliance scanning against regulatory requirements. Prepared documentation for examination.

Solution Overview

Cloud Security Posture Management (CSPM), unified security monitoring, automated remediation, identity governance, and continuous compliance scanning.

The Results

Identified and remediated 500+ misconfigurations
Achieved unified visibility across both clouds
Reduced mean time to detect threats by 75%
Passed regulatory examination with no findings

Business Impact

Cost Savings
Avoided regulatory penalties
Productivity Gain
Unified operations reduced context switching
Risk Reduction
500+ misconfigurations remediated, 75% faster threat detection

"We had no idea how exposed we were. PlatOps gave us visibility and control we never had before."

G
Gregory Thompson, VP of IT Security
Life Insurance Provider

"The examiner said our cloud security documentation was the best they'd seen from an insurer. Worth the investment."

L
Linda Martinez, Chief Compliance Officer
Life Insurance Provider

Key Takeaways

  • Multi-cloud creates visibility challenges that compound over time
  • Shadow cloud resources are common and often misconfigured
  • CSPM provides essential baseline for cloud security
  • Unified visibility is prerequisite for effective security operations

Key Outcome

500+
issues remediated

Technologies Used

WizMicrosoft Defender for CloudAWS Security HubSplunkCyberArk

Compliance Frameworks

NAIC Model LawSOC 2 Type IIState Regulations

Want Similar Results?

Let's discuss how we can help your organization achieve its goals.

Get Free Assessment

Industry Solutions

Insurance
View industry solutions

More Insurance Success Stories

Security

Insurance Broker Strengthens Policyholder Data Protection

90%fewer data incidents
Regional Insurance Brokerage
Minneapolis, MN

Ready to Write Your Success Story?

Join the organizations that have transformed their security and infrastructure with PlatOps.

Book Strategy CallView All Case Studies
Get Free Assessment