Erste Group

Modernizing Security Monitoring with SIEM

The Challenge

Fragmented Tools, Complex Threats, and SOC Overload

As the largest bank in the Czech Republic, Česká spořitelna plays a critical role in the country’s financial ecosystem — serving over 5 million clients and being part of the Erste Group, which operates across Central and Eastern Europe with over 16 million customers.

Like many large enterprises, the bank was facing growing cybersecurity and operational risks driven by an increasingly complex ICT environment. One of the main challenges was the need to increase infrastructure resilience to better respond to modern cyber threats.

The security landscape included a variety of disconnected tools and a siloed environment, making it difficult for SOC teams to manage incidents effectively. Moreover, SOC capacity was limited, creating bottlenecks and increasing response times. The organization needed a solution that would unify security data, reduce tool sprawl, and enhance both detection and response capabilities.

The Solution

Splunk-Powered SIEM for Unified Security Operations

To address these challenges, we implemented a comprehensive Security Information and Event Management (SIEM) solution based on Splunk Enterprise and Splunk Enterprise Security.

This modern platform enabled centralized security monitoring, providing a single point of visibility for logs, alerts, and incident data across the bank’s entire ICT infrastructure. By consolidating diverse data sources and tools, the solution streamlined operations and empowered the SOC team with better insights and faster decision-making capabilities.

The SIEM implementation also laid the foundation for advanced use cases such as automation, SOAR (Security Orchestration, Automation and Response), and analytics-driven threat detection.

The Results

Higher Resilience and Long-Term Value Beyond Security

Thanks to the new SIEM platform, Česká spořitelna achieved:

  • Increased infrastructure resilience and security posture
  • Tool consolidation, leading to lower complexity and cost
  • Streamlined SOC operations with better capacity and visibility
  • Preparation for SOAR integration and future automation of security workflows
  • Scalable benefits beyond security, including:
    • Operational and performance monitoring
    • Regulatory compliance (e.g. AML)
    • Business analytics (e.g. customer behavior, personalized services)

The solution not only addressed today’s security needs but also unlocked new opportunities to extract business value from security data.

About Česká spořitelna

Česká spořitelna is the largest bank in the Czech Republic and part of the Austrian Erste Group. With over 5 million clients locally and 16 million across the region, it is a key player in delivering reliable and secure financial services across Central and Eastern Europe.

Implemented Services and Solutions

Implementation of Splunk Enterprise

Implementation of Splunk Enterprise Security (SIEM)

Foundation for SOAR, compliance monitoring, and security analytics

Meet us at events

F5 AppWorld Berlin
6. - 7. 5. 2025

Gitex Berlin
21. - 23. 5. 2025

Cyber Security & Cloud Expo Europe
24. - 25 .9. 2025

IT-SA
7. - 9. 10. 2025

Gitex Dubai
13. - 17. 10. 2025

Contact

Please contact us in case of any questions.

Contact us

 

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 

Meet us at events

F5 AppWorld Berlin
6. - 7. 5. 2025

Gitex Berlin
21. - 23. 5. 2025

Cyber Security & Cloud Expo Europe
24. - 25 .9. 2025

IT-SA
7. - 9. 10. 2025

Gitex Dubai
13. - 17. 10. 2025