Project Overview
GiftMode is an e-commerce company that provides exclusive access to their flagship partner brand. This made GiftMode a target for higher – than – average fraudulent order attempts from nefarious actors trying to sell their exclusive stock illegally on the market.
Additionally, GiftMode needed to feasibly bring their cloud native operations into compliance with an industry standard to build trust with their suppliers in which they share sensitive information.
Our Solution & How We Partnered
- GiftMode IT & Security team got started with our NIST 800-171 Controls Documentation Course and implemented a reasonable baseline of security with their current toolsets
- GiftMode Team utilized, and continues to utilize, Sherpa’s Attestation Engine to automate the production of compliance documentation and certification for suppliers
- Sherpa designed fraudulent alert use cases, defined risk thresholds, and contextualized risk indicators within their Shopify platform
- Sherpa implemented the orchestrated systems to perform security event reviews, triage, escalation, and the stakeholder approval and denial process
