The Challenge
- Fragmented Information System: The company’s system for tracking employees and vendors was disjointed, leading to operational inefficiencies and increased insider threat risks.
- Reduced Productivity: Employees spent excessive time navigating multiple systems to verify candidates or vendors, impacting daily productivity, especially given the volume of 100-500 verifications processed daily.
- Data Blind Spots: Fragmented data storage and manual processes created gaps in employee and vendor histories, complicating data sharing and comprehensive background checks.
Unnoticed Red Flags: The disjointed approach allowed misconduct or problematic histories to go undetected across different departments, increasing the risk of exploitation by bad actors.
The Solution
Tender:
- The national JSC’s security department identified the need for a comprehensive OSINT solution and issued an RFP. FS Group won the tender and collaborated closely with the JSC’s security team.
Web Application Development:
- Unified Data Accumulation: Centralized data collection on vendors and employees from all enterprises in a readable, accessible format.
- Automated Data Enrichment: System automatically enhances company and employee data using open sources and FS Group Big Data.
Two Separate Modules:
- Vendor Verification:
- Data Retrieval: Employees can enter a vendor’s identification number to retrieve data from open sources and FS Group Big Data, including:
- CEO and founder connections with Russia.
- Debt history and lawsuit history.
- Beneficiaries and potential bankruptcy notifications.
- Approval Process: Once reviewed, the information is automatically routed to stakeholders for approval.
- Data Retrieval: Employees can enter a vendor’s identification number to retrieve data from open sources and FS Group Big Data, including:
- Employee Background Verification:
- Data Verification: Provides verified information via tax numbers, such as owned property, vehicles, and sanctions lists. Additional data based on the full name requires manual verification.
- Profile Management: Prevents duplicate profiles and permanently records all changes. Cross-enterprise verification requires obtaining existing profiles from other enterprises.
Approval Process: Similar to vendor verification, the information is automatically routed to stakeholders for approval.
Result
- 70% improvement in verification efficiency across the JSC’s enterprises.
- Significant reduction in insider threat risk through a centralized database and minimized human error.
- Ongoing collaboration spanning over 11 years, with continuous solution development.
is the highest data breach cost caused by malicious insider attacks.
threat intelligence (OSINT included) reduces the cost of a data breach.