Belgian-headquartered private rail freight operator , Lineas , wanted to better identify threats and improve its ability to monitor its entire network and analyse attacks . Christophe Rome , Chief Information Security Officer at Lineas , tells us why having a robust cybersecurity culture is important for the company , and how SentinelOne ’ s solution allows it to futureproof operations . ineas is Europe ’ s

Rail services provide a crucial link in the supply chain for all kinds of companies , across all sectors . It is therefore imperative that Lineas is able to ensure the availability of its operations at all times . In order to achieve that goal , it implemented SentinelOne ’ s endpoint security platform .

Christophe Rome , Chief Information Security Officer at Lineas , said : “ We no longer believed in the effectiveness of signature-based antivirus . Attackers are not deterred by traditional antivirus tools . They easily find a way to get around that .”

Now that malicious code is much better hidden and is often only running in memory , it is increasingly difficult to identify threats . New technologies and methodologies must provide a solution for this , for example with behavioural analysis , AI and Machine Learning . In addition , Lineas wanted more options to better monitor the entire network , including endpoints , and to analyse attacks .

“ We wanted to focus on added-value tasks such as threat hunting , rather than having to check every single alert ,” said Rome . “ The whole approach had to be arranged in a smarter way .”

Security based on behavioural analysis

Lineas therefore went in search of a security platform that works on the basis of behavioural analysis in order to protect against known and unknown threats .

During the proof of concept , SentinelOne stood out , characterised by a highdegree of automation for the protection

Christophe Rome , Chief Information Security Officer at Lineas of endpoints thanks to the use of AI and Machine Learning .

“ We particularly liked the remote shell capability , which allows us to investigate incidents without granting elevated privileges to the engineer conducting the investigation ,” said Rome , commenting on the additional features of the SentinelOne platform .

“ In addition , the vulnerability management feature was a very big help because it allowed us to take a huge step forward in keeping our endpoints and servers up-to-date without having to purchase additional products . The properties of the platform ensure that our qualified people can actually do qualified work . SentinelOne has taken care of the tedious , time-consuming www . intelligentciso . com

51