Remediating
Misconfigurations & Vulnerabilities In 1 Click
15,000 employees
20,000 Devices
Phoenix, Arizona
Following a series of significant cyberattacks in 2020, the city recognized the need to enhance its cybersecurity posture.
Despite deploying vulnerability assessment (VA) and endpoint detection and response (EDR) solutions, blind spots persisted, particularly around device misconfigurations.
The Challenge
Following a series of significant cyberattacks in 2020, the city recognized the need to enhance its cybersecurity posture. Despite deploying vulnerability assessment (VA) and endpoint detection and response (EDR) solutions, blind spots persisted, particularly around device misconfigurations.
The possibility of adversaries exploiting unknown configuration errors was a constant concern,” noted Mitchell Kohlbecker, Chief Information Security Officer for the City of Phoenix
The city’s existing tools lacked the ability to systematically identify misconfigurations, leaving the security team to discover issues by chance during routine operations.
This reactive approach resulted in ad hoc remediations that could take weeks, increasing the risk of system downtime or data breaches. The city prioritized end-to-end visibility to establish clear goals, processes, and benchmarks for reducing cyber exposure.
The Solution
After encountering GYTPOL at a cybersecurity conference in Scottsdale, Arizona, the city adopted its configuration-focused endpoint posture management solution. GYTPOL delivers granular, real-time visibility into device configurations across the enterprise, identifying misconfigurations and enabling automated, non-disruptive remediation with a single click.
The platform’s quick deployment and user-friendly interface allowed the city to systematically address problematic configurations, enforce industry best practices (e.g., CIS, NIST), and establish a process for continuous improvement.
GYTPOL’s automated workflows and policy validation streamlined operations, reducing human error and ensuring consistent security baselines.
Further bolstering governance posture, the city’s change advisory board was given the mandate, alongside their cyber risk committee, to routinely review and approve configuration changes.
The Results
GYTPOL's automated detection and proactive hardening transformed the city’s cybersecurity operations and significantly reduced risk.
The solution was deployed in minutes without requiring any system downtime. And the initial scan revealed hundreds of critical attack vectors across thousands of devices, exposing previously undetected risks that expanded the city’s attack surface.
Empowered by GYTPOL’s insights, the security team was immediately authorized to remediate critical issues, addressing over 5,000 configuration risks within days. The force multiplier was profound, with six GYTPOL users outputting what would otherwise take a team of 30–40 to accomplish.
Over the first 30 days, the city achieved:
83
Reduction
In the attack surface, as measured by known risks.480
Increase
In IT and Security labor productivity.77
Decrease
In the mean time to remediationThe city’s partnership with GYTPOL revolutionized its approach to cybersecurity, uncovering hidden risks and enabling rapid, automated remediation.
This demonstrates how GYTPOL’s innovative solution empowers organizations to:
Reduce cyber exposure
Enhance operational efficiency
Maintain readiness & resilience in the face of evolving threats
By automating routine tasks and implementing robust processes, organizations can reduce the risk of human error, enhance operational consistency, and ensure that IT systems run smoothly and securely.
And by validating existing security policies and automatically detecting violations, GYTPOL empowered the City of Phoenix to implement a process of continuous improvement.
“Configurations are as critical as vulnerability and patch management. If budgets were cut, GYTPOL would be one of the last tools I’d let go.”
.png?width=860&height=860&name=mitch-min%20(1).png)
