G-PLAN
- INDUSTRY :
Technology
- KEY PRODUCT:
WafCharm
COST SAVINGS
ROI
PROFESSIONAL
SERVICES COST
SECURITY SERVICE
Company Overview
G-PLAN operates “G-Point”, one of Japan’s largest reward point platforms, as its core business. On top of running its reward point websites, media, and platform services, the company uses its industry experience and partnerships to help other businesses solve their marketing challenges.
01
The Challenge
The company began its company-wide migration to AWS in 2022. Managing security was a significant challenge due to the presence of multiple publicly accessible systems, which heightened their vulnerability to cyberattacks. They decided to implement AWS WAF instead of a third-party WAF because they valued the pay-as-you-go model so they can tune the spending based on system needs.
However, they also faced several operational challenges:
- Limited visibility with AWS managed rules: The AWS provided managed rules was more of a “black box,” and it was difficult to understand which attacks were being blocked. This created concern about whether the security measures were sufficient.
- Day-to-day operation and management: AWS WAF management required frequent rule updates. When new vulnerabilities emerge, ongoing tuning is required to reduce false positives. This resulted in added operational workload and maintenance tasks.
The G-PLAN team were looking for a solution that achieves more efficient AWS WAF management.
02
The Solution
The company implemented WafCharm, leveraging the following benefits:
- Improved visibility: WafCharm provided clear transparency into which attacks are being blocked through an intuitive, easy-to-use console.
- Rapid response to emerging threats: During the vendor evaluation process, G-PLAN recognized WafCharm’s ability to respond swiftly to new threats, and this added confidence in their security team’s capabilities.
- Validated through a free trial: The team first evaluated WafCharm through a free trial and confirmed there are no false positives or false negatives.
03
The Results
By implementing WafCharm, the company achieved measurable operational and security improvements:
- Minimized WAF management: Since WafCharm was introduced, the need for manual AWS WAF management became nearly zero, saving significant time and operational costs.
- Enhanced visibility into attack surface: The WafCharm console enabled the team to identify attack types and originated countries.
- Improved security awareness across teams: By leveraging the user account management feature, and centralized visibility, all teams gained access to WafCharm and had a clearer understanding of detections, alerts, and overall threat response.
Conclusion
Related case studies
PeptiDream
Facing a tight launch schedule and a lack of AWS WAF operational experience, PeptiDream required a security solution that could be implemented immediately and managed with confidence. WafCharm enabled the team to deploy AWS WAF in less than a day, providing clear visibility into blocked traffic and dependable support throughout the process.
