How Did Aflac Enhance Cybersecurity with CrowdStrike Falcon?

Nov 27, 2024
How Did Aflac Enhance Cybersecurity with CrowdStrike Falcon?

Aflac, one of the world’s largest supplemental insurance providers, has always prioritized the security of its digital assets in order to fulfill its mission of supporting customers during times of need, such as accidents, critical illnesses, or mounting medical bills. With a rapidly evolving cyber threat landscape, Aflac recognized the necessity of a comprehensive and unified security solution to ensure operational continuity and the protection of sensitive information. In a move to bolster its cybersecurity measures, Aflac made strategic decisions that have transformed its approach to digital security and fundamentally strengthened its defenses, setting an example for the industry.

Consolidation Strategy

In 2018, Aflac made a decisive shift from relying on a variety of point security solutions to consolidating its cybersecurity efforts on the CrowdStrike Falcon Platform. The company previously depended on an array of fragmented tools that made managing and integrating these solutions both complex and time-consuming. The need for a faster, more innovative approach to stay ahead of expanding threats fueled this transition toward a unified security strategy.

By consolidating its security measures, Aflac sought to streamline operations and reduce the complexity of managing multiple security tools. This move was not merely about simplifying processes but took into account the larger goal of fortifying the organization’s ability to respond to threats efficiently and cohesively. The integrated approach meant better coordination across the security infrastructure, bolstering the overall resilience of Aflac’s defenses.

The decision to centralize on the CrowdStrike Falcon Platform was driven by the platform’s ability to provide advanced threat detection, comprehensive threat intelligence, and the capability to support a wide range of security functions within one cohesive ecosystem. This integration facilitated a more synchronized response to security incidents, improving Aflac’s capacity to preempt and mitigate risks effectively. As a result, the company experienced an enhanced security posture that was not only robust but also adaptable to the ever-changing cyber threat landscape.

Managed Endpoint and Identity Threat Protection

One of the primary challenges Aflac faced was securing its endpoints and identities. Initially, the company relied on a legacy managed security service provider (MSSP). While this approach aimed to protect Aflac’s digital environment, it fell short as the SOC was inundated with alerts, 99% of which were false positives. This overwhelming flood of irrelevant alerts hindered Aflac’s ability to manage and respond to genuine threats effectively, necessitating a more efficient solution.

In 2019, Aflac deployed the AI-native CrowdStrike Falcon® cybersecurity platform, starting with CrowdStrike Falcon® Insight XDR for endpoint detection and response. This deployment was managed by CrowdStrike Falcon® Complete Next-Gen MDR, transforming the Falcon Complete team into an integral extension of Aflac’s internal security team. This partnership offered 24/7 expert monitoring, proactive threat hunting, integrated threat intelligence, and full-cycle remediation, thereby enhancing Aflac’s security capacity.

The transition to Falcon Complete Next-Gen MDR had a transformative impact, resulting in a 20-fold reduction in alerts and enabling the SOC to become leaner and more efficient. Half of the security team was able to refocus on strategic projects such as engineering, vulnerability management, automation, and AI, which significantly strengthened Aflac’s overall security posture. This effective blend of human expertise and advanced technology exemplified a modern and intelligent approach to cybersecurity management, allowing Aflac to tackle sophisticated threats with precision and agility.

Revolutionizing Cloud Security

Amidst its continual modernization of the tech stack, Aflac acknowledged that securing cloud environments needed to be a top priority. The dynamic nature of cloud applications and infrastructure demanded real-time, robust security solutions that could adapt and respond swiftly to potential risks. To address these needs, Aflac turned to CrowdStrike Falcon® Cloud Security and Falcon Application Security Posture Management (ASPM), which offered comprehensive visibility into cloud applications and environments.

Falcon ASPM provided Aflac with a dynamic map of its application environments, enabling the detection of previously invisible misconfigurations and vulnerabilities. This real-time visibility into applications allowed the security team to identify risks before they became critical issues. By leveraging these advanced tools, Aflac fundamentally changed its approach to application security, implementing effective risk-mitigation strategies and accelerating both penetration testing and incident response.

This revolutionized approach to cloud security also fostered improved interactions with development teams by providing them with the necessary context for security discussions. Additionally, this integration contributed to optimized AWS expenditures by identifying and eliminating unused resources, further streamlining Aflac’s cloud security strategy. The use of Falcon ASPM ensured that Aflac’s cloud environments remained secure, resilient, and cost-effective, aligning with the organization’s overarching objective of maintaining robust digital security while embracing technological advancements.

Unified Cybersecurity Approach

Prior to adopting CrowdStrike, Aflac’s security stack was disjointed, requiring substantial effort to integrate and maintain various security tools. The fragmented nature of these tools posed challenges in ensuring cohesive security operations. By consolidating on the Falcon platform, Aflac was able to eliminate 15 point security tools over the course of three years, streamlining its security measures significantly.

The transition to the CrowdStrike Falcon Platform allowed Aflac to benefit from native integrations within CrowdStrike, which combined various security functions into a single, seamless solution. This unification of tools and processes not only saved time and reduced complexity but also enhanced Aflac’s ability to respond to threats more effectively. The streamlined approach facilitated a more robust and resilient defense strategy, enabling the organization to address both current threats and anticipate future challenges with confidence.

Through this unified approach, Aflac’s security operations became more efficient, reducing the workload on the SOC and allowing the security team to focus on strategic initiatives that further strengthened the organization’s defenses. The comprehensive capabilities of the Falcon platform empowered Aflac to build a security infrastructure that was not only stronger but also more adaptable to emerging threats, ensuring that its mission of supporting customers in times of need remained steadfast and secure.

Flexible Licensing with Falcon Flex

Reflecting its commitment to consolidation, Aflac leveraged CrowdStrike Falcon® Flex, a flexible licensing agreement that allowed for the deployment of additional CrowdStrike solutions as needed. Falcon Flex maximized Aflac’s security investments by providing a customizable licensing arrangement, adjustable over time, and applicable to new releases, ensuring that the organization’s security needs were met dynamically.

Through Falcon Flex, Aflac licensed several CrowdStrike solutions, including CrowdStrike® Charlotte AI™, Falcon® for IT, Falcon® Data Protection, and CrowdStrike Counter Adversary Operations. These solutions enhanced Aflac’s defense capabilities, equipping the company with the tools necessary to stay ahead of sophisticated cyber threats. The flexible licensing structure meant that Aflac could adapt its security measures in response to the evolving threat landscape, ensuring continuous protection and optimal use of its security resources.

This flexibility allowed Aflac to remain agile and responsive, integrating new technologies and solutions without overhauling existing systems. By taking advantage of Falcon Flex, Aflac demonstrated its proactive stance in cybersecurity, ready to meet future challenges with a well-equipped and adaptable security arsenal.

Future Security Strategy with AI

Aflac, one of the leading supplemental insurance providers globally, has consistently prioritized the safety and security of its digital assets to uphold its mission of supporting customers during critical times. These times include dealing with accidents, severe illnesses, or overwhelming medical expenses. In today’s rapidly evolving cyber threat landscape, Aflac understood the pressing need for a robust and cohesive security solution to maintain operational continuity and safeguard sensitive information.

Recognizing this necessity, Aflac made several strategic decisions that significantly transformed its approach to cybersecurity. By modernizing and fortifying its digital defenses, the company has not only enhanced its own security measures but also set a high standard for the industry. These improvements ensure that Aflac is better equipped to protect its clients’ data against increasingly sophisticated cyber threats, reinforcing its commitment to providing reliable support when customers need it the most.

Aflac’s proactive stance on digital security highlights its dedication to adapting to emerging threats and underscores the importance of comprehensive cybersecurity in today’s digital age. The company’s efforts demonstrate a clear commitment to safeguarding sensitive information, ensuring business continuity, and serving as a model for other organizations striving to enhance their cybersecurity frameworks.

Trending

Subscribe to Newsletter

Stay informed about the latest news, developments, and solutions in data security and management.

Invalid Email Address
Invalid Email Address

We'll Be Sending You Our Best Soon

You’re all set to receive our content directly in your inbox.

Something went wrong, please try again later

Subscribe to Newsletter

Stay informed about the latest news, developments, and solutions in data security and management.

Invalid Email Address
Invalid Email Address

We'll Be Sending You Our Best Soon

You’re all set to receive our content directly in your inbox.

Something went wrong, please try again later