Customer Story

Zingerman’s


Industry Driver Company Size
Retail PCI DSS Compliance, Security 850+ employees

Challenge

Tasked with meeting PCI DSS compliance for its high-volume mail order business and maintaining sophisticated firewalls to protect its own network, Zingerman’s Elph Morgan sought a long-term security partner that shared its high standards for quality products and delivering stellar customer service.

Solution

Blumira reviews and retains security logs while providing timely and actionable alerts to the Zingerman’s team. Morgan assessed his company’s risk situation and looked for a long-term partner.

We evaluate our Blumira partnership with the same criteria we judge ourselves on: the quality of the product and the ability to deliver with great service.

Elph Morgan
IT Manager

About Zingerman’s

Zingerman’s is a collection of gourmet food companies and related businesses, located in Ann Arbor, Michigan, focused on delivering high-quality food with great service experience. Starting as a small delicatessen in 1982, Zingerman’s Community of Businesses, or ZCoB (as the collection is known) now employs over 850 people across its nine businesses.

Business Objectives

Tasked with meeting PCI DSS compliance for its high-volume mail order business and maintaining sophisticated firewalls to protect its own network, Zingerman’s Elph Morgan sought a long-term security partner that shared its high standards for quality products and delivering stellar customer service.

Challenges

Zingerman’s ships more than 50% of its annual volume during just two weeks in December.

Like all businesses accepting credit cards, Zingerman’s is required to adhere to the Payment Card Industry Data Security Standard (PCI DSS). PCI DSS compliance is an ongoing, evolving process involving data security management, policies and procedures. With Zingerman’s IT team wholly dedicated to supporting its customers, ZCoB’s 850 staffers, Elph Morgan looked for a partner with deep security expertise.

Solution

Blumira reviews and retains security logs while providing timely and actionable alerts to the Zingerman’s team. Morgan assessed his company’s risk situation and looked for a long-term partner. For Zingerman’s, it made financial sense to outsource security expertise, largely because only two of ZCoB’s nine businesses – it’s high volume mail order business and ZingNet, which houses employees’ personal data – bear a significant level of risk, requiring additional system security.

But not just any cyber security firm would do; using Zingerman’s own guiding principles of high quality and great service as selection criteria made Blumira the obvious choice.

“It’s the two things we judge ourselves on: the quality of the product and the ability to deliver with great service.” Morgan describes meeting and evaluating Blumira: “The relationship piece is very important to us. We look to have a co-relationship with our vendors and to work with them for the long term. When we met, I had the feeling that the Blumira team members were capable and had integrity.”

Results

Morgan sums the results he gets from working with Blumira in just two words: “Reduced worry. Because of the long-term relationship that we’ve had with Blumira, I have been able to relax and trust that the security needs have been taken care of.”

When it came to deciding between an automated security log monitoring service vs. one like Blumira’s that combines advanced data analytics with human-powered reasoning, Morgan said, “I take comfort in knowing that we can talk to a real person about the issues, who can help us understand the validity of the threats and the long-term approach that we should be taking.”

He cites threat-level evaluation as one of the advantages of Blumira. “There is some judgment on the part of the service, rather than alerting us to everything that happens, which would be like drinking from a fire hose. I like that there’s some discrimination there and that it’s constantly changing what to alert us to.”

Blumira’s modern cloud SIEM platform helps Zingerman’s stay ahead of threats as the business evolves. Morgan believes that while there are new automated tools on the market every day – being able to talk to a human is better. He values the expertise of the Blumira team to help guide long-term planning.

Additional Resources

PCI DSS Logging, Threat Detection and Response

When it comes to security event logging, reporting, audit trails, anomaly and threat detection, as well as tracking critical security control systems, Blumira helps you both meet and exceed PCI DSS compliance. Blumira’s cloud-based SIEM and security platform is PCI DSS compliant.

The Modern SIEM Evaluation Guide

Learn more about how to choose a SIEM that quickly detects and responds to threats – without significant overhead or a fully staffed security team.

Ready to Get Started?

Traditional SIEMS require a team of security resources. With Blumira’s automated threat detection and response, you don’t have to be a security expert to be secure.