Rosselkhozbank automated response to cyberthreats using the R-Vision system

2020: Implementation of R-Vision Incident Response Platform

In JSC Rosselkhozbank the large-scale project on system implementation of management of incidents of information security of R-Vision Incident Response Platform (IRP) is implemented. On February 5, 2020 the R-Vision company reported about it.

The R-Vision platform allowed to integrate in the uniform automated Information Security Center and responses to the cyberthreats applied in Bank of means to identification of cyber attacks, the system of counteraction to leaks of confidential information and means of protecting.

R-Vision IRP on a centralized basis collects and processes data on all incidents of information security from all connected sources, providing the automated reaction including a full range of necessary actions for processing of an incident: from automatic data acquisition from internal and external systems before operations on investigation of an incident and deployment of measures of protection.

With development of modern information technologies and increase in risk of implementation of cyber attacks Rosselkhozbank actively improves the work in information security field. Automation of processing of incidents using the R-Vision platform became an important step in development of a system of cyber security of Bank. Risk minimization of cyberthreats and implementation of modern developments provide the necessary level of protection of information resources, noted the Director of the department of security Victor Solovets

So, considerably it was succeeded to reduce time of response to the incidents connected with leak of confidential information due to automation of organizational and technical stages.

In turn heads of groups of reaction had an opportunity of monitoring and coordination of actions of specialists due to visualization of metrics of incidents, including reaction time, the number of incidents in work, existence of critical incidents on critical objects of information infrastructure and others.

Also in a system function of visualization of metrics of groups of reaction, a branch network, assets, types of incidents for objective understanding of an overall picture of a status of information security of Bank is implemented.