CASE STUDY

US Based Manufacturer Reduces Overhead and False Positives

How a U.S. manufacturer reduced false positives, improved visibility, and strengthened data and IP protection.

REQUEST A DEMO

Industry

Manufacturing

Company Size

60,000+ employees

Location

Global

Solution

Scalable IRM solution that supports GDPR compliance and high-quality behavior analytics.

Key Results
  • Reduced overhead and alert fatigue
  • Full visibility into workforce behavior and IP interaction
  • Privacy-first security that protects culture and compliance
  • Scalable insider risk management across a global environment

Company profile

A U.S. manufacturer, with dozens of operating companies around the world and more than 60,000 users, invests in research and unique manufacturing processes, making it a global leader in the industry. That has made the company a target for internal and external threats, including departing employees, competitors, and hostile nation states.

The company realized that, in the current threat environment, they lacked visibility into how employees used and interacted with IP. This included their use of applications and whether they were working within the mandated corporate security processes. The selection team’s goal was to gain this visibility and protect the company’s most valuable assets against insider exfiltration, espionage, and account compromise.

The need

The company required a solution that was easy to manage, provided workflow automation, and could integrate with their existing security solutions. The company has grown organically and through acquisition. The result was a requirement for integration with a broad array of security solutions, including multiple SIEMs, EDR, DLP solutions. The customer recognized that detecting insider and external threats using granular DLP rules required additional overhead, was difficult to scale, and could result in a high number of false positives and alert fatigue.

The company also had invested in insider threat surveillance solutions. While they required analytics on user activity and engagement with applications and devices, respecting the privacy of employees was an important part of the company’s culture. They recognized that rolling out keystroke logging, screen captures, and personal email scanning for all employees could have a negative impact on organizational culture and require special rules for data for business units subject to EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

The solution

The company brought in the DTEX Platform for an extensive pilot covering 2,000 users. The evaluation team quickly saw that their traditional approaches to protecting data and IP from misuse and exfiltration were outdated and insufficient. DTEX brought immediate visibility to all interactions with data, machines, and applications while protecting employee privacy through pseudonymization. 

Built on Amazon Web Services, DTEX scales to hundreds of thousands of endpoints, without process-heavy DLP-like rules the ability to scale DTEX quickly without granular DLP-like rules. DTEX’s enterprise telemetry collected and synthesized more than 500 unique elements of data, applications, machines, and people to deliver holistic, real-time awareness about workforce activities. It employed behavioral enrichment of workforce activity, data movement, application usage and device utilization against individual and peer group baselines using predictive models and advanced scoring algorithms that identify, score, and highlight deviations. At the end of the trial, the DTEX Platform was the clear choice.

The results

DTEX‘s insider risk management platform provides a better way to protect organizations while also respecting the privacy of employees. The DTEX Platform was built with a “privacy by design” approach, minimizing excess (and unnecessary) data collection, and using pseudonymization to mask data elements on individual employees by default, including username, email, IP address, domain name and device name. By protecting user privacy, DTEX helped the customer protect sensitive data, maintain organizational engagement, culture, and trust, and comply with privacy regulations, including GDPR and CCPA.

Benefits

  • Reduced overhead and alert fatigue: Replaced complex, hard-to-scale DLP rule management with behavior-based detection. This eliminated excessive tuning effort and reduced false positives by focusing analysts on high-confidence, context-driven signals instead of noisy alerts.
  • Full visibility into workforce behavior and IP interaction: Gained real-time insight into how users interact with data, applications, and devices. This helped the organization identify risky behavior, validate adherence to security processes, and close visibility gaps tied to insider threat, exfiltration, and account compromise.
  • Privacy-first security that protects culture and compliance: Delivered strong insider risk detection without invasive monitoring through pseudonymization of employee data. This approach enabled compliance with GDPR and CCPA while preserving workforce trust and avoiding the cultural impact of surveillance-heavy tools.
  • Scalable insider risk management across a complex global environment: Supported a large, distributed enterprise with diverse security tooling by integrating into existing SIEM, EDR, and DLP ecosystems. DTEX provided a scalable, unified approach to monitoring and risk detection without adding operational complexity.

Related Case Studies

Ready to Learn More?

For further insights on how the DTEX Platform secures critical infrastructure, request a demo.

Request a demo