DTCC Saves 6,000 Hours on Phishing Analysis with ReliaQuest GreyMatter
Financial market infrastructure leader cut phishing analysis and remediation time to 2 minutes per email through automation, enabling its security team to focus on proactive defense strategies.
Hours saved on phishing analysis across team.
Minutes average response time per email.
Faster phishing analysis and remediation.
The Depository Trust & Clearing Corporation (DTCC) is a global financial market infrastructure organization that provides clearing, settlement, and trade reporting services. Established in 1999, DTCC processes trillions in transactions annually across asset classes like equities, bonds, and derivatives, ensuring transparency, efficiency, and risk management for markets worldwide.
DTCC Automates Phishing Defense with GreyMatter
The Depository Trust & Clearing Corporation (DTCC) processes $3 quadrillion in transactions annually, serving as a cornerstone of the global financial ecosystem. Given its scale and sensitivity, DTCC faces relentless phishing threats, which act as entry points for ransomware and other breaches.
To combat phishing head-on, DTCC partnered with ReliaQuest GreyMatter to implement GreyMatter Phishing Analyzer—an AI-powered solution that automates phishing analysis workflows, accelerates threat response, and reduces operational inefficiencies.
The Situation
Analysts Drowning in Rising Phishing Reports Due to Manual Processes
Phishing attacks consistently targeted DTCC, exploiting deceptive emails in an attempt to steal credentials and deploy malware. For DTCC analysts, the challenge wasn’t just the complexity of phishing threats—it was the sheer volume.
DTCC’s team processed thousands of user-reported phishing emails monthly, each requiring up to 15 minutes for manual review.
Analysts spent up to 4 hours each day pivoting between tools to gather context, validate threats, and notify users, leaving little time for proactive security work that added value.
The strain on resources was clear.
This combination of mounting inefficiencies and growing demands highlighted an urgent need for change. DTCC needed a scalable, automated solution that could streamline phishing defense workflows, reduce analyst fatigue, and enable the security team to stay ahead of threats.
The Solution
GreyMatter Cuts Phishing Remediation to 2 Minutes Using AI and Automation
DTCC turned to ReliaQuest GreyMatter Phishing Analyzer to transform its phishing workflows through automation and AI-powered analysis. GreyMatter Phishing Analyzer went beyond simple email classification, connecting with DTCC’s existing tools to streamline phishing defense from analysis to remediation in 3 steps.
3 Steps to Phishing Defense with GreyMatter Phishing Analyzer
1. Verdict: Rapid Email Analysis:
GreyMatter Phishing Analyzer assessed all reported phishing emails using AI, threat intelligence, sentiment analysis, and file/URL detonation. This process classified emails, validated threats, and mimicked human decision-making using AI and automation. Within seconds, verdicts were delivered back to DTCC users, providing clarity without requiring manual review.
2: Comprehensive Impact Scope:
Once phishing emails were assessed, the Phishing Analyzer aggregated data from DTCC’s existing tools to provide a unified view of threats. It analyzed user actions and campaign artifacts—such as links, headers, and attachments—to map the full scope of phishing campaigns. This step revealed the broader impact of attacks, enabling DTCC’s team to uncover connections across phishing attempts and address systemic risks.
3: Automated Threat Remediation:
After analysis, GreyMatter Phishing Analyzer executed containment actions automatically. Using bi-directional APIs, it integrated seamlessly with DTCC’s tools to perform actions like purging malicious emails, removing harmful attachments from endpoints, blocking compromised URLs at the network level, and notifying affected users. These automated workflows eliminated the need for manual intervention, ensuring consistent and precise remediation.
This step-by-step approach enabled DTCC to scale its phishing defenses while significantly reducing the time and effort required for containment.
The Outcome
6,000 Hours Reclaimed for Proactive Threat Response
DTCC achieved transformative results with GMPA, reclaiming analyst time and accelerating phishing containment:
- 6,000 Analyst Hours Saved: Phishing investigation time dropped from 15 minutes per email to 2 minutes, delivering a 7.5X improvement over manual processing.
- Average Response Cut to 5 Minutes: Response times fell from hours or days to just minutes, ensuring faster containment and minimal exposure.
- Eliminated Mundane Tasks: Automation eliminated Tier 1 and Tier 2 Tasks for good, allowing analysts to focus on more proactive, strategic initiatives.
- Enhanced SOC Efficiency: GreyMatter Phishing Analyzer streamlined DTCC’s SecOps processes and strengthened overall security posture.
DTCC and ReliaQuest: A Partnership Built on Resilient Security
DTCC’s partnership with ReliaQuest represents a forward-thinking approach to cybersecurity innovation. By integrating automation and AI-powered solutions like GMPA, DTCC has not only improved phishing defense but also addressed broader security challenges.
Together, DTCC and ReliaQuest demonstrate that modern cybersecurity is about more than stopping threats—it’s about empowering organizations to thrive. GMPA has reclaimed 6,000+ analyst hours, reduced MTTR to 5 minutes, and achieved phishing remediation speeds 7.5x faster than manual workflows, transforming DTCC’s operations into a proactive force that safeguards global financial markets.
Walking into our fusion center, I’d see long faces every day because analysts were spending so much time manually processing phishing emails. That wasn’t where we wanted to spend our resources.Bob Moncini CSO at DTCC
Explore Other Case Studies
See GreyMatter in Action
Get a live demo of our security operations platform, GreyMatter, and learn how you can improve visibility, reduce complexity, and manage risk in your organization.
