Spinx is a privately held, South Carolina-based convenience store and fuel retailer. Spinx is passionate about fulfilling people's everyday needs by providing quality services and products in a clean, safe, and convenient environment. It strives to operate in a fun and respectful manner that balances profit, community involvement, and environmental awareness while valuing its on-the-go customers, partners, and team of employees. Spinx's motto is: "Making Life Easier!"
In 1972, Stewart Spinks formed Spinx and began operations with a home heating oil delivery service and one convenience store in Greenville, SC. Today, Spinx employs over 1,400 associates through its stores, food operations, and related businesses—including more than 80 convenience stores in South Carolina.
Spinx
Retail
USA
As an organization with over 80 convenience stores, Spinx engages with a great deal of customers on a daily basis, resulting in numerous financial transactions. Hence it is liable to comply with one of the most stringent compliance mandates, the Payment Card Industry Data Security Standard (PCI DSS)—which was the company's biggest challenge.
Convenience stores collect and store customer information, including personal details and payment card data. If not adequately protected, this sensitive information can be targeted and compromised, leading to significant reputational damage and legal consequences. Being PCI DSS compliant was important for Spinx as it ensured a secure environment for financial transactions, lowered the risk of data breaches, and in turn built customers' trust.
For certain services, such as payment processing or inventory management, Spinx frequently relied on third-party providers and contractors. Adversaries often target a security vulnerability or loophole in third-party networks to access their target's resources. Therefore, Spinx also had responsibility to check its third-party access to combat external security threats and ensure its network security. Further, Spinx had to tackle potential insider attacks too by monitoring its privileged users' activities to spot suspicious behaviors. It needed a solution that could ensure its network security by keeping both internal and external threats under check.
With Spinx's previous security information and event management (SIEM) deployment, it was hard to achieve what was wanted; Spinx's IT team found it rather difficult to navigate through the solution and found it to not be very comprehensive.
ManageEngine Log360's integrated compliance management system—which comes with audit-ready reports and violation alerts—helped Spinx meet its compliance requirements. The ready-built PCI DSS audit report made Spinx ready to demonstrate its adherence to the regulatory mandate simple and easy. Further, Log360's features—like seamless and central log collection and storage mechanisms, as well as a real-time log analysis capability to keep track of configuration changes, security policy and rule changes, registry changes, system events, and other important security events taking place in the network—helped Spinx be proactive by spotting any anomalous behaviors or threats to the security of cardholder data.
Spinx's Technology Systems Manager, Jayson Dowswell, found it easy to generate the compliance reports with Log360's simple UI, quick search, and filtering capabilities for device logs. Spinx could easily gain insights into its network events and plan automated responses to manage these events.
Spinx wanted to find a solution that would effectively identify unusual behavior and prevent potential threats from breaching its system; a cohesive SIEM solution. Spinx's IT team employed three different SIEM solutions over the last 10 years, all of which were largely focused on log management but fell behind in areas such as threat detection, IT compliance management, security analytics, and incident response.
However, Log360 was able to satisfy Spinx's log management needs and met its security objectives, at a reasonable cost. Now, Spinx's IT team is pleased with the decision to use ManageEngine Log360 as their SIEM solution, as they feel like it's the right fit and performs much better than all the other solutions that they have used in the past.
When asked about Log360, Dowswell said that Log360 meets all of their requirements.
Custom Onboarding is a ManageEngine service that provides solution implementation to clients upon request. This service includes the installation and customized configuration of ManageEngine solutions. It enables clients to seamlessly begin work without worrying about the complexities of installation, deployment, and product use. Every client environment is unique and requires additional support beyond the basic installation and standard features. With Custom Onboarding, clients have the option to engage a team of product experts to manage the installation, implementation, customization, and training based on business needs.
Log360 is a unified SIEM solution with integrated DLP and CASB capabilities that detects, prioritizes, investigates, and responds to security threats. It combines threat intelligence, machine learning-based anomaly detection, and rule-based attack detection techniques to detect sophisticated attacks, and offers an incident management console for effectively remediating detected threats. Log360 provides holistic security visibility across on-premises, cloud, and hybrid networks with its intuitive and advanced security analytics and monitoring capabilities.
For more information about Log360, visit manageengine.com/log-management.
Help us help others like you. Spread the word to the community as to how ADSolutions helped you and your business.
Thank you for sharing your comments.
Our product expert will contact you shortly for a detailed demo
