Skip to main content
Dataminr to Acquire ThreatConnect
Joining Forces with Dataminr to Accelerate Threat and Risk‑Informed Defense
Request a Demo

Wyndham Improves Threat Detection and Response While Scaling Security Operations

Industry

Hospitality

Company Type

Hotels & Resorts

Company Size

130,000+ employees

Wyndham is a global hospitality company with 25 brands in 95 countries and over 9,100 hotels and resorts.

Challenge

Before implementing ThreatConnect and Polarity, the Wyndham security team faced a variety of challenges that limited their response times and efficiency. For example, analysts had to deal with too much context switching and manual data collection to gain context when investigating and triaging alerts. Searching for indicators of compromise (IOCs) was manual and time consuming, and memorializing new intel was labor-intensive. Finally, analysts were challenged to work consistently and efficiently.

Solution

Wyndham implemented ThreatConnect’s TI Ops Platform and Polarity across their security teams to centralize threat intelligence in a single solution, and make it more accessible and actionable. The combination of ThreatConnect and Polarity allows security operators to leverage threat intelligence in-line with context from a wide-range of security tools and internal and external knowledge sources where analysts do their threat prevention, detection, and response work.

Outcome

Wyndham’s security teams reduce the complexity of alert triage and response using intelligence in-line with context from a wide range of security tools and knowledge sources at the point of analysis, decision, and action, all while freeing up hours of analyst time each day.

Read Next:

Financial Services

Establishing a Strong Partnership to Ensure Continued Success

Challenge

This was the first time this organization was deploying a security operations platform and they needed a trusted partner to help them mature their program and their usage of ThreatConnect along with it.

Solution

ThreatConnect provided a Customer Success Engineer to assist with implementation, delivered custom training tailored to the customer, and set up multiple avenues for continued communication.

Aerospace & Defense

Global Aerospace and Defense Company – Consolidating Threat Intelligence & Automating Processes With Playbooks

Challenge

This Aerospace & Defense organization collaborates with various business units, each with their own unique use cases for threat intelligence SOPs. From specific tags to intelligence ingest and tailored remediation criteria, they handle it all.

Previously, manual processes and scarce resources posed challenges. Open source platforms and Excel were used to consolidate and organize threat intelligence. Characterization consumed the organization's time daily.

Solution

ThreatConnect revolutionized security operations for this organization by hosting sessions with business units and developing automated Playbooks. They streamlined manual processes, saving time and money. With efficient documentation and valuable metrics, they proved the ROI and value of ThreatConnect.
Technology

Large Enterprise Needed Centralized Threat Intelligence Management

Challenge

This large technology client sought a centralized repository of threat intelligence to unify contextualized data, facilitate collaboration, and drive prioritization. The only viable solution to these challenges had to collect, normalize, and disseminate data while enabling analysis for actionable threat intelligence.

Solution

ThreatConnect automates the aggregation of internal and external threat intelligence, freeing up teams to focus on analysis and response. With in-platform analytics providing context and relevance, actions can be performed automatically or manually. Seamless integration with security tools and customization of workflows helps optimize SOC team processes. ThreatConnect became this company's system of record for threat intelligence processes and collaboration.