Managed Security Solution Helps Large Consulting Company Win Over Top Banking Client Through Robust Security & Compliance Practices

CASE STUDY

Table of Contents

Scope

A professional services firm specializing in consulting for industrial, infrastructure, real estate, and government institutions engaged with our Bulletproof team to help them improve their security posture and to reach NIST security compliance.  

The firm was losing revenue opportunities from high-profile clients who had specific security requirements. This combined with staffing risks and a small internal IT team meant they were looking for a Microsoft Partner that could provide an integrated security solution that would layer seamlessly with their technology and team.  

Additionally, the firm had won the business of a top banking client which required them to reduce the risk of cybersecurity threats, including becoming NIST compliant within a one-year time frame.  

 

Bulletproof Solutions

At Bulletproof, we develop deep working relationships by gaining a full understanding of our clients’ needs before jumping into execution. While larger-scale security service operators can treat clients as a commodity, Bulletproof believes strong relationships, communication, and deep insights make all the difference. Our team of experts worked closely with the firm to identify their specific requirements and become an integral part of their team in three steps: 

Microsoft Security Workshop hosted by Bulletproof in 2019

The firm developed a customized strategic plan based on the recommendations of cloud cybersecurity and gained visibility into immediate threats across email, identity, and data. As well as, gained clarity and support on how to upgrade long-term security posture. 

2-Aug-04-2021-12-22-29-82-AM

Bulletproof Selected as Preferred Vendor to Improve Security Posture

Bulletproof was selected as the preferred vendor because our Microsoft B365E and Microsoft Compliance offerings were the fastest and most effective solutions for the firm to improve their security and place them on the path to compliance with required certifications within the desired timeframe.  

Developed a Security Roadmap to Obtain NIST Compliance

Bulletproof identified multiple cybersecurity gaps and projects to prioritize, including an Exchange Review, Managed Application Service, Customer Portal and DevOps, Application Architecture Assessment and RoadMap, and Bulletproof 365E.

Our Approach

Bulletproof identified multiple cyber security issues and projects which we would subsequently work with the firm to solve. These included: An Exchange Review, Managed Application Service, Customer Portal and DevOps, Application Architecture Assessment and Roadmap, and Bulletproof 365 Enterprise.

Exchange Review

The firm’s endpoint solution was not meeting their needs. They requested that Bulletproof provide them with assistance with the implementation of Microsoft Defender for Endpoint and Defender for Office as a replacement for their exchange environment to operate efficiently.

Bulletproof formalized the process of reviewing the current Exchange environment and made recommendations to remediate issues currently being experienced since Defender was turned on and mail directed through it.

 

Managed Application Service

The firm required assistance with a variety of application-related services with an objective to package all application-related services into a single Managed Application Service that will provide ongoing services and support. Bulletproof’s Application Service provides services as needed by the appropriate subject matter experts.

Work packages are defined and prioritized by the firm with assistance from Bulletproof. Bulletproof manages the development and execution of the work packages, and the amount of work completed per month is governed by the chosen level of service. 

 

Customer Portal + DevOps

 

The firm was utilizing a customer portal to collect data. This portal did not meet CIS controls as it had many security gaps. Bulletproof built a modernized, secure, scalable web application in Microsoft Azure with two-way document sharing and self-registration. Now that their portal is fully functional in the cloud, the outcome of the project is a model for how to manage and implement future application-related projects. 

 

 

Application Architecture Assessment and Roadmap

Bulletproof performed an initial Application Architecture Assessment and Roadmap of the firm’s internal application to minimize investment, streamline next steps, and modernize the application so that it could be shared with customers in a safely and confidentially. This involved understanding the current state, application roadmap (new functionality), and architecture requirements so that a Target State Architecture may be proposed with an architecture roadmap that defines the steps. The key outcome was an architecture roadmap (high-level plan) to move the internal application to the cloud so that the firm can advise their customers more accurately and efficiently regarding the data gathering and analytics that it generates.  

Bulletproof 365 Enterprise

BPB365EBadgeEnterprise_FR-01

Bulletproof 365 Enterprise is an end-to-end managed security service for Microsoft-powered organizations that bridges the gaps in cybersecurity tools, skills and capacity, providing enterprises with a seamless and fully integrated cybersecurity platform in one cost-effective package. Bulletproof 365 Enterprise provided:


  • End-to-end managed security, freeing your team to focus on other business functions. 
  • Microsoft Sentinel, Cloud Native SIEM
  • Microsoft 365 E3 Feature Set and Microsoft 365 E5 Security Feature Set
  • Defender for Endpoint, Defender for Office 365, and Defender for Identity
  • Cloud App Security
  • Azure AD Identity Protection, Azure Security Center, and Azure Defender for Servers
  • 24 x 7 Security Incident Triage, Investigation and Response
  • Assigned Bulletproof Security Technical Account Manager
  • Ongoing Automated Vulnerability Assessments
  • Advanced Threat Hunting
  • Critical Security Incident Response Coordination
  • Security Aware Service empowering employees through education and simulated cyber attacks

Value Delivered

  • Obtaining the necessary security certifications has positioned the firm to pursue lucrative high-profile clients that have strict security requirements.
  • The firm can expand into new industries and increase their areas of specialization now that they are NIST certified. For example, the finance and banking industry.  
  • Their NIST certification increases their reach to other major clients within the banking industry and helps to boost the organization’s credibility.  
  • Bulletproof’s services and solutions have improved their security framework and substantially decreased cybersecurity risks that could threaten the firm’s reputation within industry.  

Discover More

CTA_Defend against threats Workshop Image

Microsoft Defend Against Threats with SIEM + XDR Workshop

Gain visibility into immediate threats across email, identity, and data and demonstrate how Microsoft Sentinel and Microsoft 365 Defender help organizations use intelligent security analytics and threat intelligence to detect and quickly stop active threats.

EXPLORE THE WORKSHOP

BoB

Experiencing unnecessary overlap, confusion, and inconsistencies with your systems in response to cyber threats? You're not alone.

Security experts have concluded that the best-of-breed model is no longer the best approach when it comes to protection, leaving gaps and vulnerabilities that could be detrimental for your organization. Read our whitepaper to learn the true value of automated response, the best defense against complex human-operated attacks.
 
READ THE ARTICLE

Share This

Call Us

1.866.328.5538

© 2025 BULLETPROOF, a GLI Company Headquarters