Thinksys helped a PropTech company get their security and compliance on track—fast

This case study is about a global PropTech company with 1,100 employees spread across multiple countries. This company serves both residential and vacation property management industries. Its security operations weren't centralized, which created unnecessary risks and made it hard to see what was really happening across the organization. That’s why getting security right was essential to their business model.

Meet Our Client

This PropTech company started their operations in 2016, and now leads the industry in property management software. They build solutions for accounting, operations, and compliance solutions that property management companies should leverage. 

The Hidden Security Gaps in Their PropTech Software

However, the software initially faced significant issues because of the disconnected security tools that left gaps in the software’s defenses:

• Security logs were spread across different platforms, making threat detection nearly impossible.
• Due to the lack of proper monitoring, staff members could click on suspicious email links, putting sensitive company information at risk.
• Manual security processes meant slow response times to emerging threats.

That’s when our client recognized that they needed one central security hub to bring their tools together, monitor threats in real time, and be able to respond to incidents automatically - all while meeting ISO requirements.

We Proposed a Solution

Our team built a complete security operations center. Here's what we did:

1. Connected their security tools (Microsoft Defender, Cobalt, and Guard Duty) to a single Wiz dashboard. This gave them real-time alerts and clear next steps for their team members.
2. Set up automated rules to catch and block phishing attempts. This ensured nothing suspicious could reach users without the security teams approval.
3. Tightened access controls, especially for global teams and vendors who work with this client. Each person now has exactly the right level of system access - no more, no less.
4. Monitor their Kubernetes clusters, cloud and on-premise servers, and endpoints (laptops and desktops) connected to those networks. The monitoring catches exposed ports and outdated configurations before they become problems. 
5. Proactively update security vulnerabilities using the N-Central tool and recommend changes when necessary.
6. Tested all the internal applications for security gaps. Occasionally, our team ran thorough vulnerability assessments and penetration tests that then helped to fix any vulnerabilities found.

After Implementation, Promising Results Were Uncovered

Here's what our client accomplished in its first 90 days of their security upgrades:

• Single Dashboard View: All security logs and alerts now feed into one screen. Team members spot issues in seconds, not hours.
• Better Threat Protection: New automated systems catch and block phishing attempts and brute force attacks before they cause damage.
• ISO Standards Met: Regular security scans and fixes that keep the company's ISO certification current and valid.
• Faster Problem-Solving: When issues pop up, tickets create themselves. The right people get notified instantly.
• Smarter Security Controls: Live compliance tracking and precise access management gives the security team exact control over who sees what.