Arctic Wolf Networks is a leading company within the cybersecurity industry. Their mission is to help organizations end cyber risk by providing security operations as a concierge service. 

Arctic Wolf offers 24/7 monitoring, detection and response along with ongoing risk management to protect organizations from cyber-attacks.

The Security Dashboard is an internal platform used by security engineers at Arctic Wolf to investigate incoming activity in a customer's network. Through this platform, security engineers can identify malicious events and alert customers before it's too late.

The Security Dashboard receives 200,000 + potentially malicious events that need to be manually investigated by security engineers. 

Security engineers receive hundreds of thousands of potentially malicious security events that need to be triaged and alerted upon. With the high volume of events, security engineers leverage suppressions to temporarily remove known events off the board so they can focus on what matters most. The current suppression workflow was slow, restrictive, and lacked automation. With the end goal of alerting customers on potential threats as fast as possible, the workflow needed to be more efficient.

The challenge was to redesign a workflow within the Security Dashboard to allow security engineers to triage events quicker.

Due to an NDA, designs and process work cannot be disclosed. Please reach out to me or refer to the password on my resume to gain access to this case study!

Unlock Full Case Study