How one organization secured its hybrid work and online services.

As with any financial institution, security threats risking reputation and financial future are inherent in Lake Trust Credit Union’s business. “Financial institutions, to some extent, live and die by their reputation,” comments Jack Martin, senior vice president information services at Lake Trust Credit Union.

But just as it is ingrained in its name, trust—implying security—is a top success factor and value pillar for this credit union. “As a financial institution, we must keep our members’ finances private and secure at all times,” remarks Steven Cruse, network security architect at Lake Trust Credit Union, “and that’s the biggest challenge that we face.”

Lake Trust has a distributed network architecture connecting its branches, ATMs, and data centers across 23 locations in addition to its headquarters in Brighton, Michigan. The pandemic caused much of its mostly onsite workforce to start working remotely. Most of Lake Trust’s member services and transactions shifted online as well. This blurred the credit union’s network perimeter. “Your edge isn’t your edge anymore,” explains Cruse. “As people are now working remotely from anywhere, we need to recognize that we don’t necessarily have a central control point to secure our people, customers, and assets.”

Like most organizations, Lake Trust now has a hybrid work environment. With a remote workforce and distributed branch locations, Lake Trust must have holistic visibility. “Visibility is extremely important. You can’t investigate what you can’t see,” says Cruse.

Having gone through multiple mergers, the company used many point security solutions, thus lacking a cohesive security infrastructure and mindset. The disparate security products failed to provide a holistic view of Lake Trust’s security posture, infrastructure, and endpoints. “There was no way for us to know if there were security gaps, and not knowing sometimes is worse than knowing,” Cruse explains.

To troubleshoot any security event, the small security team had to hop across the point products, each with a different interface and reporting format, making security investigations time-consuming and ineffective. “Increasing our security, resiliency, and business continuity in the event of an attack are collectively a strategic directive for our organization,” Cruse adds.

SecureX simplifies how we treat remote workers versus those working on site. Regardless of their location, all our employees are protected the same, and the visibility we have is the same.” – Steven Cruse, Network Security Architect, Lake Trust Credit Union

Lake Trust’s security objectives demanded a cohesive system that provided unified visibility and defense at all layers. “When we started exploring security solutions, integration was the most important criteria,” says Cruse. “We wanted to approach security as one integrated ecosystem to ensure defense-in-depth. And the vendor with the most cohesive security platform was Cisco.”

Integrated security

With Cisco Secure, Lake Trust implemented an integrated security approach. “Cisco Secure stands out as a complete ecosystem built into the network, compute platform, storage, and applications,” remarks Cruse. As a Cisco network and compute customer, Lake Trust’s existing infrastructure integrated Cisco Secure seamlessly.

During the pandemic, when the number of Lake Trust’s remote employees quickly spiked from around 10 to hundreds, the credit union could absorb the sudden transition securely without disrupting its high standards of financial services to its members—thanks to Cisco Secure.

Lake Trust was using SecureX integrated with Cisco Secure Endpoint and Cisco Umbrella even before the surge in remote work. The integrated solution offered complete visibility into endpoints regardless of location. “While investigating an alert or an event, SecureX doesn’t make it much different for remote and on-site employees,” continues Cruse. “Although remote work caused VPN traffic to increase 20 times, Cisco SecureX provided complete, comprehensive visibility into the remote endpoints and the VPN traffic to determine bandwidth consumption, allocation of resources, and so on.”

Lake Trust’s distributed and complex ecosystem needed full visibility and layered protection to mitigate advanced threats. “Cisco SecureX has a defense-in-depth capability that enables us to monitor what’s happening throughout our ecosystem,” Martin adds. “The integrated environment of SecureX provides the defenses we need to improve prevention and detection in our extended network.”

SecureX is also a key component of Lake Trust’s extended detection and response (XDR) strategy. “As our extended response tool, SecureX is a lifesaver in many ways. We use the tool several times daily to evaluate alerts and investigate threats,” Cruse says. “SecureX simplifies how we treat remote workers versus those working on site. Regardless of their location, all our employees are protected the same, and the visibility we have is the same.”

To read the entire case study, click here