How Meesho Strengthened Its GCP Security Posture with Snowbit by Coralogix

• Type

  B2C

• Industry

  E-Commerce

• Headquarters

  Bengaluru, India

About Meesho

Meesho, is one of India’s leading and fastest growing e-commerce platforms. Their mission is to make ecommerce shopping accessible to all. Meesho enables millions of small business owners and individual entrepreneurs to sell and distribute their products to a wide range of customers.

The Challenge

As Meesho experienced rapid growth, their security team was stretched thin, often spending valuable time managing routine alerts and manually analyzing logs. They sought a solution that could provide automated insights, reduce false positives, and allow their team to focus on more strategic, high-priority security tasks, such as compliance efforts and infrastructure hardening.

Moreover, as Meesho scaled its digital operations, traditional cloud-native tools were not sufficient to meet their growing demands. They needed a solution that could unify observability and security monitoring for their teams. Meesho’s existing solutions lacked real-time alerting capabilities and a cohesive view across systems, forcing the team to rely on multiple tools and engage in frequent context-switching. This disjointed approach added extra work and made it difficult to correlate between different data sources, slowing down incident response times.

Meesho began the search for a solution that could address these operational gaps while enhancing visibility and efficiency across their systems with the goal of consolidating their security operations into a single, centralized platform.

The Solution

Already a satisfied Coralogix user, Meesho found Snowbit to be the natural choice for its managed security service provider. Snowbit provided the team with centralized visibility into Meesho’s GCP infrastructure while alleviating the day-to-day burden of manual monitoring through automated detection and analysis. Snowbit’s predefined detection rules, particularly for GCP, allowed the team to streamline Level 1 (L1) analysis, reducing noise from false positives and enabling a swift response to genuine threats.

Meesho’s onboarding process was smooth and efficient, supported by detailed documentation and dedicated assistance from Snowbit’s team. The Meesho team successfully onboarded essential services such as GCP’s Security Command Center and audit logs with minimal friction. Snowbit support throughout the process made it easy for Meesho to set up real-time alerts and custom detection rules tailored to their specific use cases.

Results and Benefits

“Snowbit has brought immense flexibility and efficiency to our security operations. The platform’s extensive detection rules, custom alerting capabilities, and seamless integration with our GCP infrastructure have transformed the way we handle cybersecurity. With Snowbit’s support, we’re able to focus on proactive security measures and complex initiatives, confident in our foundational security layer.”

— Rohan Sharma, Senior Security Engineer, Meesho

1. Improved Incident Detection and Reduced False Positives: Snowbit’s predefined detection rules and robust alerting have minimized noise, enabling Meesho’s security engineers to prioritize genuine threats, significantly reducing the time required for initial incident analysis and expediting time-to-repair.
2. Unified View and Real-Time Alerts: Snowbit provided Meesho’s security team with a consolidated view of all infrastructure logs and a seamless integration with Slack and Zendesk. Real-time alerts ensure that the team can respond and remediate quickly.
3. Compliance Enablement with CSPM: Meesho leveraged Snowbit’s CSPM tools for its ISO certification journey. The automated compliance assessments and continuous monitoring enabled Meesho to meet the rigorous requirements of ISO/IEC 27001:2022.
4. Cost Savings with TCO Optimizer: Coralogix’s Total Cost of Ownership (TCO) optimizer allowed Meesho to manage its log ingestion costs more efficiently than before. By archiving logs in inexpensive Google Storage and querying them only as needed using Archive Query, Meesho reduced observability expenses by up to 68%.
5. Custom Rules and Alerts Tailored for Meesho: Unlike other platforms that are often AWS-centric, Snowbit’s extensive set of quick start extensions and predefined detection rules for GCP allowed Meesho to create custom rules and alerts specific to its environment, including alerts for unauthorized modifications to security controls and real-time detection of potential threats within their CI/CD pipelines
6. Streamlined Focus on Security Initiatives: By reducing the noise from false positives and performing initial detection, Snowbit enabled Meesho’s engineers to focus on high-priority tasks, such as ISO certification.

Summary

The Snowbit team’s expertise and consistent availability have been invaluable to Meesho’s security operations. From a seamless onboarding process—marked by detailed documentation and hands-on support—to ongoing weekly sync-ups, the team has consistently ensured that Meesho’s needs are met, even fulfilling additional requests for log adjustments and custom detection rules. This close partnership has allowed Meesho to focus on critical security initiatives, confident that they have a proactive and highly responsive team backing them for any security challenge they face in the future.