RingCentral is a leading global provider of cloud-based business communications and collaboration solutions that seamlessly combine phone, messaging, video meetings, and contact center. RingCentral empowers customers with AI-powered conversation intelligence that unlocks insights from their interaction data to accelerate business outcomes. With decades of expertise in reliable and secure cloud communications, RingCentral has earned the trust of millions of customers and thousands of partners worldwide.
RingCentral delivers a unique synchronized communication experience between regular phone calls, video and chat communication for millions of customers. To deliver strict SLAs to their customers, RingCentral relies on AWS, Azure and GCP in addition to their modern data centers. AWS provides the flexibility and scalability they need to deliver the best customer experiences.
Before working with Stream Security, the SecOps team's challenge was pinpointing specific changes in their complex infrastructure. Reviewing and investigating cross-account dependencies had become a labor-intensive task.
The team struggled to address tasks such as:
RingCentral adopted the Stream platform, leveraging its CloudTwin capabilities and gaining real-time visibility into AWS inventory, compliance violations, and traffic flow logs.
During the PoC, the RingCentral team quickly recognized that Stream provided context-aware insights.
The RingCentral SecOps team is responsible for security and compliance, for which they need to demonstrate compliance with PCI DSS, ISO 27000, SOC 2, and High Trust, along with frequent internal and external audits. Stream's platform assesses potential security issues, focusing on relevant ones to streamline prioritization. The team was surprised that their actual compliance levels stood at 80%, significantly contrasting the 11% reported by other tools. The team investigated this gap and found that the low compliance rate reported by other tools resulted from false positives.
Before Stream, RingCentral had to assign engineers to investigate the insights from legacy tools and, regretfully, to discover that the vast majority are false positives.
Stream provides out-of-the-box support for compliance frameworks addressing all our required compliance, making the compliance process constantly measurable and efficient.
Stream's context-aware alerts provided actionable insights, and the teams now use a single solution for configuration review and traffic investigation. Compliance alerts are triggered instantly when a change violates it, allowing RingCentral to maintain a compliant environment continuously and significantly reduce the effort of the audit preparation phase. In addition to security gaps, Stream’s platform has revealed we can improve cost best-practices and suggested enhancements that proved fascinating for the FinOps team, streamlining cross-team collaboration.
CloudTwin's real-time capabilities serve not only as a time-saving solution but also as a trigger for innovation. RingCentral has started proactively engaging with the model and conducting advanced queries based on IPs, tags, and identities. This strategic approach empowers the team to investigate any suspicious behavior within the environment in real time, enabling them to eliminate the activities of malicious actors. By enriching posture-aware insights with data from AWS VPC flow logs and CloudTrail activities, a new framework for investigation capabilities has emerged, elevating the ability to investigate and eliminate potential threats.
RingCentral plans to expand Stream usage to optimize internal processes and extend into GCP on top of current integration with AWS and Azure.
