OpenText brings decades of expertise to help you unlock data, connect people and processes, and fuel AI with trust
Unify data seamlessly across your enterprise to eliminate silos, improve collaboration, and reduce risks
Get AI-ready and transform your data into structured, accessible, optimized information
Meet regulatory and compliance requirements and protect your information throughout its lifecycle
OpenText helps people manage content, automate work, use AI, and collaborate to boost productivity
See how thousands of companies around the world are succeeding with innovative solutions from OpenText™
Our people are our greatest asset; they are the life of the OpenText brand and values
Learn how we aspire to advance societal goals and accelerate positive change
Find a highly skilled OpenText partner with the right solution to enable digital transformation
Explore scalable and flexible deployment options for global organizations of any size
Local control. Global scale. Trusted AI
Your cloud, your control
Free up resources, optimize performance and rapidly address issues
Run anywhere and scale globally in the public cloud of your choice
See information in new ways
AI that understands your business, your data, and your goals
Say hello to faster decisions. Your secure personal AI assistant is ready to get to work
Gain better insights with generative AI for supply chains
Power work with AI content management and an intelligent AI content assistant
Improve your security posture with AI cybersecurity and agile threat detection
Enable faster app delivery, development, and automated software testing
Elevate customer communications and experiences for customer success
Empower users, service agents, and IT staff to find the answers they need
See information in new ways
AI that understands your business, your data, and your goals
Say hello to faster decisions. Your secure personal AI assistant is ready to get to work
Gain better insights with generative AI for supply chains
Power work with AI content management and an intelligent AI content assistant
Improve your security posture with AI cybersecurity and agile threat detection
Enable faster app delivery, development, and automated software testing
Elevate customer communications and experiences for customer success
Empower users, service agents, and IT staff to find the answers they need
Predict, act, and win with real-time analytics on a smarter data platform
Give users access to the answers they need, faster and easier, with multi-repository AI-based search that lets you contextualize everything from clicks to conversations
Connect once, reach anything with a secure B2B integration platform
Reimagine knowledge with AI-ready content management solutions
Supercharge intelligent workspaces with AI to modernize work
Integrated cybersecurity solutions for enterprise protection
Purpose built data protection and security solutions
Reinvent threat hunting to improve security posture with the power of agile AI
Ship better software—faster—with AI-driven DevOps automation, testing, and quality
Reimagine conversations with unforgettable customer experiences
Get the clarity needed to cut the cost and complexity of IT operations
Redefine Tier 1 business support functions with self-service capabilities from private generative AI
Build custom applications using proven OpenText Information Management technology
Build it your way with OpenText Cloud APIs that create the real-time information flows that enable custom applications and workflows
Protect what matters, recover when it counts
Get greater visibility and sharper insights from AI-driven information management. Ready to see how?
Break free from silos, streamline processes, and improve customer experiences with secure information management for AI
Improve efficiency, security, and customer satisfaction with OpenText
Run processes faster and with less risk
Achieve digital transformation with guidance from certified experts
Modernize your information management with certified experts
Unlock the full potential of your information management solution
Turn support into your strategic advantage
Extend IT teams with certified OpenText application experts
Discover training options to help users of all skill levels effectively adopt and use OpenText products
Modernize your information management with certified experts
Unlock the full potential of your information management solution
Turn support into your strategic advantage
Extend IT teams with certified OpenText application experts
Discover training options to help users of all skill levels effectively adopt and use OpenText products
Information is the heartbeat of every organization. We build information management software so you can build the future
OpenText partners with leading cloud infrastructure providers to offer the flexibility to run OpenText solutions anywhere
OpenText partners with top enterprise app providers to unlock unstructured content for better business insights
Discover flexible and innovative offerings designed to add value to OpenText solutions
Discover the resources available to support and grow Partner capabilities
Get expert product and service support to accelerate issue resolution and keep business flows running efficiently
Explore detailed services and consulting presentations, briefs, documentation and other resources
Integrated technology group realizes 35% cost savings, enhances productivity, and improves cyber resilience with OpenText™ Enterprise Security Manager
The increasing frequency and intensity of conflicts and military disputes are leading to a growing need for security. Rheinmetall is a European systems supplier for armed forces technology. It has many years of experience and innovation in armored vehicles, weapon systems, and ammunition, as well as in the areas of air defense and electronics. This makes Rheinmetall an important partner in this field to the German armed forces, their allies, and friendly armies, along with civil national security forces.
When Vice President of Cyber Defense Markus Malewski joined Rheinmetall in 2021, one of his first priorities was to bring in-house Rheinmetall’s IT security monitoring. He explained, “The defense and automotive government agencies that we partner with recognized the growing concerns around cyberattacks in volatile global times. This, combined with a high media profile for Rheinmetall, warranted moving our infrastructure components, many of which were outsourced, in-house. Our in-house cyber defense division consists of a sophisticated security operations center (SOC), a penetration testing team, and a data analytics team responsible for open-source intelligence and threat intelligence. We felt we had the expertise to bolster our cybersecurity, while gaining deep insight from the intelligence sources available to us.”
The organization used a SIEM solution that is considered a market leader as its security suite. When it was time to implement in-house, the team faced several challenges with it. There was very little clear documentation, so the workflow of how to install the components and configure them was far more time-consuming than expected. The vendor referred Rheinmetall to a local partner for training and support, but there was still not enough guidance for the team to manage, operate, and maintain the security monitoring instance in-house.
Mr. Malewski also noticed missing functionality, “I, as well as other team members, had previous experience with OpenText Enterprise Security Manager. In terms of functionality, including managing data sources and correlation capability, we found the implemented solution lacking. In addition, whereas OpenText provided OpenText Security Orchestration, Automation, and Response (SOAR) as a native component of the platform, with the previous solution we were facing substantial additional license costs to add this.”
We saw a clear cost savings of 35 percent, thanks to the OpenText flexible licensing structure. We operate a test and production environment. Previously, we were charged for both environments, but with OpenText we did not need to acquire additional licenses for our test environment.
A comprehensive proof of concept (POC) highlighted OpenText’s user-friendly interface and single management console, its sophisticated reporting, and native SOAR capabilities. The solution easily used Rheinmetall’s investment in the MITRE ATT&CK framework.
Speed threat detection and response with real-time correlation and native SOAR
Accelerate threat detection with insightful, actionable security insights
The SIEM license was approaching a renewal date, and Mr. Malewski saw this as an opportunity to explore alternatives. Considering the previous experience with OpenText, an extensive POC began to compare functionality, automation opportunities, and ease of use. He commented, “Our priority was to determine if OpenText Enterprise Security Manager can follow our SOC analysts’ workflows and designs. We wanted to see a positive user experience, seamless SOAR and ecosystem integration, and one central system to manage all roles and their access to data sources.”
The Rheinmetall POC was deployed on an appliance basis, with OpenText providing the hardware and software needed to operate the solution. This significantly eased the installation and maintenance effort and ensured that Rheinmetall can run OpenText Enterprise Security Manager fully on-premises in its own robustly secure environment.
The POC was supported by local OpenText technical engineers, as well as OpenText Professional Services. Mr. Malewski quickly saw the familiar capabilities he looked for, such as sophisticated dashboards.
“We really appreciated OpenText’s dynamic dashboards,” he said. “I can just click on a bar graph, for example, and the dashboard will dynamically change to focus on this specific element for full transparency.”
Rheinmetall also liked OpenText’s native integration capabilities. The organization uses WebEx, and this was easily incorporated using a simple API. New data sources were straightforward to add, even from external parties, such as the threat intelligence service provider, so that relevant data is readily available for analysis and correlation purposes.
A key component of the OpenText Threat Detection and Response portfolio is OpenText Security Log Analytics. This is a comprehensive SIEM log management tool and security analytics solution that eases compliance burdens and accelerates forensic investigations. Mr. Malewski’s team already leveraged the MITRE ATT&CK framework—a globally accessible knowledge base of adversary tactics and techniques based on real-world observations, used to develop specific threat models. With the MITRE ATT&CK content, the Rheinmetall penetration testing team can quickly see how much coverage it has against the tactics and techniques within the framework and map it to Rheinmetall use cases. OpenText Security Log Analytics helps identify risks, prioritize them, and take timely action.
SOAR capability is a natively integrated part of OpenText Enterprise Security Manager, proving a real differentiator compared to the legacy SIEM suite. In the previous environment, the team operated a dedicated ticketing system where all security incidents were managed. Incident alert details were automatically sent to the ticketing system, but the SOC analysts had to conduct manual investigations.
Mr. Malewski explained how SOAR improved this process: “SOAR not only automates alerts, but it also intelligently logs the initial automated investigative actions, such as checking the CMDB or other sources. The documented output shows the exact real-time status of the alert. And thanks to SOAR’s native integration into the SIEM platform, we have a real-time correlation engine that can respond directly to alerts. This is very different from solutions we’ve worked with in the past, where data logs had to be scheduled every five or ten minutes. Because we can respond quickly to a developing threat, we can easily block domains or push information to a certain proxy. The added, coincidental benefit is that the SOAR interface looks very similar to the look and feel of our previous ticketing system, which made migration easy for our SOC analysts.”
We really appreciated OpenText’s dynamic dashboards. I can just click on a bar graph, for example, and the dashboard will dynamically change to focus on this specific element for full transparency.
In addition to 35% license cost savings, the appliance deployment model reduced maintenance cost and effort, while OpenText intelligent automation boosted SOC productivity. Cyberattack simulation can successfully anticipate future security threats.
Though the decision for OpenText included many aspects, reducing operating costs was an important objective of the project. Mr. Malewski commented, “We saw a clear cost savings of 35 percent, thanks to the OpenText flexible licensing structure. We operate a test and production environment. Previously, we were charged for both environments, but with OpenText we did not need to acquire additional licenses for our test environment. The flexible appliance model reduced our maintenance cost and efforts, and the intelligent OpenText automation, including sophisticated threat search and hunt capabilities, improved the productivity of our SOC analysts.”
As a global organization active in the defense and automotive industries, Rheinmetall is subject to stringent regulation compliance. OpenText Security Log Analytics came with more than 100 out-of-the-box reports and dashboards to reduce the reporting effort with simpler, automated, customizable reports and dashboards.
The team appreciated OpenText’s capability to simulate cyberattacks and better anticipate circumstances that may pose a threat to the organization. OpenText is a reliable and robust solution. This may seem obvious, but Mr. Malewski knows it is not always a given, “In the past we have experienced some data loss when the previous system would automatically stop ingesting data in response to a minor issue. This can leave us potentially exposed, and we have thankfully never seen this happen with OpenText.”
The OpenText implementation is fully managed by the in-house SOC without involvement by or dependencies on any of the other IT departments within Rheinmetall. Mr. Malewski commented on the support received from OpenText during the implementation, “Our OpenText contacts did not just support us with the practicalities of managing data sources and logs, they also helped us create a compelling financial proposition for our senior leadership team that clearly demonstrated how OpenText would be a cost-effective solution for us, while bolstering our cyber defense posture.”
He concluded, “We like OpenText’s cybersecurity vision. The OpenText Threat Detection and Response platform is a truly complete SIEM solution that helps us to simplify our security operations and reduce our threat exposure time with real-time detection and native SOAR. We can clearly see the OpenText investment in cybersecurity as a strategic portfolio to the business.”