Trace Id is missing
April 23, 2024

Pacífico Seguros implements Microsoft Copilot for Security with focus on Zero Trust and XDR

This story originally published in Spanish on March 28, 2024.

In collaboration with Microsoft partner, TC1 Labs, Pacifico-Peruano Suiza (Pacifico Seguros) deployed a comprehensive approach to Zero Trust security and XDR by leveraging Microsoft solutions. This model complies with the stringent controls established by the Federal Financial Institutions Examination Council (FFIEC), which provides guidance and tools to improve threat protection. By kicking off the modernization of its CyberSOC capabilities with the adoption of Microsoft Copilot for Security generative AI, Pacífico Seguros has become a case study in the prevention of cyberattacks in Latin America.

Pacfico Seguros

About Pacifico Seguros

Pacífico Seguros is one of Peru’s leading insurance companies and part of the Credicorp group, one of the largest financial corporations across the nation and Latin America, with more than 30,000 employees and assets exceeding 45 billion dollars. The insurer is characterized by its drive to constantly modernize and innovate its products, which is rooted in a strong commitment to protecting people's happiness.

Post-pandemic security landscape

The unstoppable growth of the cybercrime economy, coupled with the speed, scope, and sophistication of attacks, has created a challenge for security practitioners. This asymmetrical disadvantage is worsened by a shortage of security talent and increasing operational complexity: while attackers only need to succeed once, defenders need to get it right 100% of the time.

This scenario has led to a dramatic increase in cyber risk policy costs and an unprecedented demand for security controls in the region's financial services industry. Faced with this situation, Pacífico Seguros understood that cybersecurity was a priority requiring a radical paradigm shift.

Choosing the right partners for the project

Pacífico Seguros recognized the importance of having strategic allies to advise it in an efficient and agile manner. Microsoft was chosen for its unified XDR security operations platform with a Zero Trust approach, its industry leadership, and its extensive presence in both the cloud and on-premises environments. In addition, the Zero Trust model complies with the demanding controls established by the FFIEC. Meanwhile, TC1 Labs, with its deep security expertise and strong reputation for its agility, innovation, and commitment, emerged as the ideal partner.

Preparing for the journey

Guided by recommendations from Microsoft and TC1 Labs, the Pacifico Seguros team designed a comprehensive security architecture, encompassing the six core pillars of Zero Trust: identities, devices, applications and APIs, data, infrastructure, and networks. In addition, aware of the need to consolidate dispersed and disconnected technologies, Pacifico Seguros adopted a “Unified Platform” approach, where all security components are integrated and operate together.

“With support from Microsoft and TC1 Labs, we found that most controls are covered by Microsoft 365 and Microsoft Azure across those six pillars,” explains José Carlos Vargas, IT Security Manager at Pacífico Seguros. The mindset shift was instrumental in this process, as it enabled Pacífico Seguros to adapt its security approach, now working with a focus on collaboration and solution integration.

Taking the journey while building the path

The journey towards strong digital security began by deploying Microsoft Entra ID as a new standard for access to applications and services, with a risk-based approach and Multi-Factor Authentication (MFA). “I remember sitting with our team as we looked at the maps of the architectures published by Microsoft and saying, 'That's the way to go.’,” Vargas recalls.

Automation through Microsoft Windows Autopilot and Microsoft Intune streamlined processes, and the behavioral analytics capabilities of Microsoft Defender, along with Microsoft Purview and Microsoft Defender for Cloud Apps, protected sensitive data.

Threats were addressed through Microsoft Defender for Cloud, while Azure Update Management, Microsoft Defender for Endpoint, and Intune were used to mitigate risks. In addition, Microsoft Azure Backup and Microsoft Azure Site Recovery were essential for disaster recovery.

Finally, secure access was ensured with Microsoft Azure Front Door, Microsoft Azure Firewall, Microsoft Azure Web Application Firewall (WAF), Microsoft Azure Bastion, and Microsoft Windows 365 Cloud PC. With Microsoft Sentinel, Pacifico Seguros achieved comprehensive visibility and the ability to agilely respond to threats. 

Copilot joins the journey

Pacifico Seguros adopted Microsoft Copilot for Security to enhance its digital transformation journey. Copilot for Security optimizes security operations by offering the advanced capabilities of generative AI to anticipate and neutralize threats more efficiently and effectively. By deploying the solution, Pacifico Seguros has become a case study for cybersecurity in the region.

“This isn’t a journey with a beginning and an end, but a radical mindset change,” adds the IT Security leader.

Whoever finds the path, finds the reward

Through this journey, Pacifico Seguros has not only managed to reduce 95% of low latency incidents related to the security technology but also reduced operational activities, such as installing agents, by moving to an agentless scheme.

The upgrade from on-premises EDR technology to cloud-based advanced protection capabilities with XDR (Xtend Detect and Respond) has provided the company with robust threat defense, while significantly reducing the maintenance OPEX.

Another goal was the implementation of native telemetry that connects to Microsoft 365 endpoints as well as other web applications. This has increased the insurer's visibility and reduced the time spent on triage and response to cyber-attack-related security alerts by 40%.

Learnings that lead to excellence

This journey has taught Pacifico Seguros to think big but also how to move at a more rapid pace. By leaning on the cybersecurity reference architectures of Microsoft and expertise of TC1 Labs, the company made strong progress toward its goals.

With Microsoft Copilot for Security, Pacífico Seguros aims to meet the golden rule in cybersecurity known as “1-10-60,” which sets target times for incident detection, investigation, and response. This showcases the company’s commitment to agile and effective responses to cyber threats and ongoing protection of critical systems and data.

“With support from Microsoft and TC1 Labs, we found that most controls are covered by Microsoft 365 and Microsoft Azure across those six pillars.”

José Carlos Vargas, IT Security Manager, Pacífico Seguros

Take the next step

Fuel innovation with Microsoft

Talk to an expert about custom solutions

Let us help you create customized solutions and achieve your unique business goals.

Drive results with proven solutions

Achieve more with the products and solutions that helped our customers reach their goals.

Follow Microsoft