Wintrust successfully integrated ThousandEyes across various access points, enabling comprehensive monitoring of the cloud and network. This implementation allowed the team to preemptively address issues before they impacted customers, showcasing the platform’s value in providing visibility into external networks critical to daily operations. Through synthetic tests, ThousandEyes uncovered latency spikes at a third-party API provider, emphasizing the importance of monitoring tools in identifying and resolving performance issues proactively.
Monitor the IT Environment From End to End
Upon implementing ThousandEyes across multiple entry points, such as branch offices and VPN gateways, Wintrust gained valuable insights into networks outside their ownership but integral to their operations. This proactive approach enabled the team to identify and escalate issues before they caused disruptions for customers.
CDW’s Jesse Nixon highlighted the significance of leveraging data from various sources to inform decision-making and policy-setting within enterprises, emphasizing the importance of monitoring tools in facilitating informed actions.
Reviewing Logs and Detecting Threats at Scale
Following the establishment of visibility across the organization, the focus shifted towards leveraging data to detect security threats effectively. Splunk Enterprise Security was instrumental in aggregating data from multiple sources, including firewall and endpoint logs, to identify and address potential security risks.
By correlating anomalous login behavior with DNS tunneling activity, Splunk helped Wintrust thwart an attempted exfiltration event, showcasing the platform’s role in proactive threat hunting and incident response.
Creating a Unified Observability Ecosystem
While ThousandEyes and Splunk provided essential monitoring and security capabilities, CDW’s managed services played a crucial role in integrating these tools into a unified observability ecosystem. This framework enabled Wintrust to transition from siloed monitoring approaches to a comprehensive observability posture, ensuring visibility into all critical aspects of their IT environment.
Through collaboration with CDW’s engineers, Wintrust was able to design and deploy a robust architecture that encompassed ThousandEyes and Splunk, streamline data workflows, and establish round-the-clock support for enhanced operational efficiency.
