GWI

Date Posted:

22/01/2025

Client Name:

GWI

Introduction

SEP2 partnered with GWI to enhance their security setup using Google SecOps. This case study delves into the initial challenges faced by GWI, the reasons behind choosing SEP2, and the significant improvements achieved through this collaboration.

GWI (Global Web Index) is a global consumer insights platform that provides instant access to data representative of the views, behaviours, and interests of 3 billion consumers across 50+ countries. GWI has become the go-to for agencies, brands and media companies that want to know what really drives their audience to action.

How the partnership started

When the Head of Information Security John Denham joined GWI, there was a need to build a security setup in Google Cloud Platform (GCP) as well as a need to enhance governance and security measures. Challenges included vulnerability management in the cloud, visibility of logs, and intrusion detection and prevention. Logging was disabled by default in GCP, and there was no log aggregation from their workspace to support incident investigation.

Since GWI is predominantly a Google House, Google SecOps was the logical solution. Integration with their existing tools aside, Google’s SIEM tool also has a relatively low cost for entry compared to other legacy solutions.

John engaged with Google and received a strong recommendation endorsing SEP2 as experts. Besides finding the best technical partner, another key factor was finding one that would fit with GWI’s culture.

The on-boarding process with SEP2 was remarkably simple and streamlined, with the set-up and integration with GCP almost instantaneous. Adding API rules and some troubleshooting issues were resolved within hours, making the process in John’s words “as painless as I could have ever hoped for.”

“If you know that you’re working with good people, they’re passionate about what they do and they speak in plain English when describing the concepts – that makes it a lot easier for people to come on board and understand what you’re trying to accomplish.”

John Denham, Head of Infosec – GWI

Working with SEP2

As the manager of a small team, John was keen to ensure that their chosen solution would be easy to manage. Log fatigue was also a concern when looking at SIEM solutions. This guided his choice of Google SecOps, combining SIEM and SOAR capabilities, but was also helped by SEP2’s set up: “They’ve allowed us to actually implement it in a very practical way where we’re not overloaded with unnecessary information.”

Another benefit for John’s team has been the validation provided by SEP2. They’ve found that their IT and DevOps teams are becoming a lot more proactive, because it’s “coming through an automated system, reinforced and triaged by a third party in SEP2. They’re taking it more seriously than us just saying, ‘Can you go and look at this thing that we found in the logs?’” As John says, “sometimes it’s nice to have a third party that just provides some validation that what you’ve done is appropriate for the business.”

As a practitioner, John is passionate about security, viewing it not just as a box-ticking exercise: “If we put a SIEM in, it’s not for the sake of telling our customers, ‘We’ve got a SIEM!’ It’s about having a functional tool that we can actually use.” Unfortunately, he hasn’t always found partners to be on the same page, with many treating him and his organisation as little more than a paycheque. “They just want to get the tool in, then they abandon us after deployment. In contrast, SEP2’s engagement has improved since the onboarding because they’re constantly learning from us, as well as us learning from them.”

Finding a security partner with the same level of passion has been a welcome change. Reflecting on the SEP2 engineers assigned to GWI, John says:

“They are phenomenal: both personable and very knowledgeable. Our main contact is like a fountain of knowledge. If you ask him a question, he always comes back with ten answers – all the shades of grey, not just a ‘Yes’ or ‘No.’ To me that shows the level of passion he has, and that he really wants to do things properly.”

John Denham, Head of Infosec – GWI

Looking to the future

GWI’s collaboration with SEP2 has bolstered their cyber security, without overwhelming the team with unnecessary noise and information. Using Google SecOps, SEP2 ensured full coverage and smooth integration with existing tools, giving the GWI team peace of mind.

Looking ahead, John is confident that GWI’s relationship with SEP2 will continue and grow. “It is a pleasure working with good people and I definitely think it’s worth singing those praises.”

Related Case Studies

Want to read about other businesses that we have helped with our services and solutions? Click here to view more case studies or click one of the related case studies below.

Syrenis

article date:

14/11/2024

SEP2’s hybrid workforce, collaboration with contractors, and investment from numerous stakeholders necessitates a comprehensive email security solution. Harmony Email’s solution guards against the number one attack vector for threat actors, phishing. The most targeted departments for phishing include Finance and HR, according to TechTarget, due to their many possible points of failure, starting with their inbox. With phishing attacks becoming more complex, SEP2 needed a solution that would ensure reliable protection, minimize any disruptions, and alert users to potential threats.

Check Point Harmony Email and Collaboration

article date:

16/07/2024

Concern Worldwide

article date:

02/04/2024

SEP2 have been providing and managing Check Point firewalls for Concern Worldwide for the past eighteen months. This case study explores the origins of this relationship, what pushed the charity to change from their previous provider, and how working with SEP2 has made a world of difference to their experience.

Why Choose Us

Our values inspire and guide us towards cyber security excellence

SEP2 are cyber-security specialists whose success is built on five values:

Honesty

We have always worked hard to ensure that we are offering an honest and transparent set of solutions to our clients. This means always prioritising the right solutions to our customers.

Committed to Good

SEP2 is an honourable organisation guided by a strong moral compass. We live this value with authenticity; it is not about simply ticking a social responsibility box. We understand that we are on the side of ‘good’ in a continuing war against cyber criminality, and that we have a purpose and duty to perform.

Passion

No matter who you talk to at SEP2, you will find someone truly passionate about the sector that they are working in. We are fanatical about the sector – working in cyber security really means something to each and every one of us.

Tech Driven

Cyber Security is by nature a tech-heavy sector. It is fast-moving and complex. This is why we only partner with vendors that truly understand the sector and have solutions that are tried and tested. We fundamentally believe in our portfolio of vendor solutions.

People Powered

We understand that the tech alone is not going to provide you with the security you need. It is our job to know these solutions inside-out to ensure they are right for your requirements. We understand that we need to listen and be proactive. We live our ‘people powered’ value and have a proud history of investing in apprentices to help us grow.

Every SEP2 colleague lives these values every day. We have a culture of passionate people who work as a team that will never leave a job incomplete.

Tech Driven. People Powered.

Protect your business today

To find out more about how we can secure your organisation against all forms of cyber security attack, get in touch with SEP2 now or sign up to our newsletter.

Cookie	Duration	Description
__cfruid	session	Cloudflare sets this cookie to identify trusted web traffic.
_GRECAPTCHA	5 months 27 days	This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.
_lfa	2 years	This cookie is set by the provider Leadfeeder to identify the IP address of devices visiting the website, in order to retarget multiple users routing from the same IP address.
AWSALBCORS	7 days	This cookie is managed by Amazon Web Services and is used for load balancing.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Analytics" category .
cookielawinfo-checkbox-functional	1 year	The cookie is set by the GDPR Cookie Consent plugin to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Necessary" category .
cookielawinfo-checkbox-others	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to store the user consent for cookies in the category "Others".
cookielawinfo-checkbox-performance	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to store the user consent for cookies in the category "Performance".
CookieLawInfoConsent	1 year	Records the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie.
elementor	never	This cookie is used by the website's WordPress theme. It allows the website owner to implement or change the website's content in real-time.
JSESSIONID	session	The JSESSIONID cookie is used by New Relic to store a session identifier so that New Relic can monitor session counts for an application.
PHPSESSID	session	This cookie is native to PHP applications. The cookie is used to store and identify a users' unique session ID for the purpose of managing user session on the website. The cookie is a session cookies and is deleted when all the browser windows are closed.

Cookie	Duration	Description
__cf_bm	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
aka_debug	session	Vimeo sets this cookie which is essential for the website to play video functionality.
bcookie	1 year	LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID.
bscookie	1 year	LinkedIn sets this cookie to store performed actions on the website.
lang	session	LinkedIn sets this cookie to remember a user's language setting.
lidc	1 day	LinkedIn sets the lidc cookie to facilitate data center selection.
UserMatchHistory	1 month	LinkedIn sets this cookie for LinkedIn Ads ID syncing.

Cookie	Duration	Description
_calendly_session	21 days	Calendly, a Meeting Schedulers, sets this cookie to allow the meeting scheduler to function within the website and to add events into the visitor’s calendar.
AWSALB	7 days	AWSALB is an application load balancer cookie set by Amazon Web Services to map the session to the target.

Cookie	Duration	Description
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_ga_LSE9RP433S	2 years	This cookie is installed by Google Analytics.
_gat_UA-89994160-1	1 minute	A variation of the _gat cookie set by Google Analytics and Google Tag Manager to allow website owners to track visitor behaviour and measure site performance. The pattern element in the name contains the unique identity number of the account or website it relates to.
_gcl_au	3 months	Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.
mf_user	3 months	Mouseflow sets this cookie to identify whether a visitor is new or returning.
vuid	2 years	Vimeo installs this cookie to collect tracking information by setting a unique ID to embed videos to the website.

Cookie	Duration	Description
_fbp	3 months	This cookie is set by Facebook to display advertisements when either on Facebook or on a digital platform powered by Facebook advertising, after visiting the website.
fr	3 months	Facebook sets this cookie to show relevant advertisements to users by tracking user behaviour across the web, on sites that have Facebook pixel or Facebook social plugin.
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.

Security Intelligence Services

Technical Services

Security Audit Services

GWI

Date Posted:

22/01/2025

Client Name:

GWI

Tags:

Introduction

Read more

How the partnership started

Read more

Read more

Working with SEP2

Read more

Looking to the future

Related Case Studies

Syrenis

article date:

14/11/2024

READ MORE

Check Point Harmony Email and Collaboration

article date:

16/07/2024

READ MORE

Concern Worldwide

article date:

02/04/2024

READ MORE

Why Choose Us

Honesty

Committed to Good

Passion

Tech Driven

People Powered

Tech Driven. People Powered.

Protect your business today

Sign Up

join our newsletter today

Kieron

Central Response Team Manager

Connect with Kieron on LinkedIn