BACKGROUND

Prior to the COVID-19 pandemic, NSK had experienced a security incident with cyber attackers impersonating NSK employees and distributing emails on their behalf. However, when COVID-19 hit and employees started to work from home, the security incidents increased with significantly more spam and phishing emails arriving in employees’ inboxes.

Unfortunately, NSK was victim to a second security attack where an email from a cyber attacker, masquerading as an NSK member of staff, was distributed to the company’s network of dealers requesting payment for false invoices. The potential damage to NSK’s reputation as a result of this breach served as a trigger for NSK to approach Correct Solutions to address its cyber security and provide an appropriate solution..

We’ve been with Correct Solutions since 2007 so it was a no-brainer that we would work with them to improve our security. We trust that Correct Solutions has the expertise and competency to deliver a solution that will meet our needs, said Sonya Jeon, Operations Manager at NSK.

THE PROCESS

While Correct Solutions had supported NSK’s IT systems for some time, it had not previously been engaged to proactively address security. As a result, the first step was security awareness training with the NSK team to understand the breadth of the cybersecurity problem.

Following the training, Correct Solutions developed an approach for NSK based on hardening identity and access management to directly address the breaches that had occurred previously.

The solution involved rolling out multi-factor authentication to all employees across the business and preventing access to the network from any IP address outside of Australia or New Zealand.

As NSK’s IT environment is based on Microsoft 365, it was vital to encrypt business communications, not just to address cyber security but also to ensure compliance when storing and handling customer data.

We’ve been with Correct Solutions since 2007 so it was a no-brainer that we would work with them to improve our security. We trust that Correct Solutions has the expertise and competency to deliver a solution that will meet our needs, said Sonya Jeon, Operations Manager at NSK.

“The transition went really smoothly and the only couple of hiccups we had were related to users not following instructions correctly. Correct Solutions were so helpful and although getting all employees through the rollout was my main concern initially, it turned out to not be a problem at all and we were all done in 2-3 weeks,” said Sonya.

OUTCOME AND BENEFITS

As part of the Microsoft 365 platform, a business is able to view the current state of its security solution as well as the average status of a similar organisation. Before engaging Correct Solutions to address security, NSK scored 17% (below the industry average of 28%) but having proactively addressed the situation, it now sits at 87%. Whilst Correct Solutions continue to monitor and improve the score, this represents peace of mind for NSK.

Following the implementation of multi-factor authentication, NSK has a robust solution in place to prevent further attacks and preserve the integrity of the business both internally and with customers and partners.

“The biggest outcome for us is having peace of mind knowing that we’ve done and are doing everything we can to protect the integrity of our business. We know Correct Solutions has the best solution in place for us and there is a lot of work happening in the background to prevent any further issue from occurring,” said Sonya.

No news is good news when it comes to IT security and NSK has had no incidents or breaches since hardening its security. It has also led to a reduction in the amount of spam and phishing emails employees are receiving.

Read the full case study here.