Case Study

Supreme Committee for Delivery & Legacy protects the World Cup Qatar 2022 with Palo Alto Networks Cortex

In brief

Customer

Supreme Committee for Delivery & Legacy

Organisation Size

Eight stadiums, 1.5 million visitors and watched by five billion people

Industry

Sport

Challenges

Ensure millions could attend the World Cup Qatar 2022 stadiums with confidence. Protect over 80,000 endpoints from threats and deliver agile, efficient operational security during the tournament.

Requirements

  • Prevent attacks with modern, behaviour, and artificial intelligence (AI)-based techniques.
  • Scale and standardise incident response.
  • Speed up resolution times and boost SOC efficiency.

Solution

Palo Alto Networks Cortex Platform consisting of: Cortex XDR; Cortex XSOAR; Cortex XSOAR Threat Intel Management, and Cortex Threat Research Team
Introduction

The Supreme Committee for Delivery & Legacy was responsible for the infrastructure and operations of World Cup Qatar 2022. By standardising on the Cortex security operations platform across the stadiums as part of a comprehensive Palo Alto Networks portfolio deployment, they protected over 80,000 devices across scores of vendors, ultimately ensuring millions of people enjoyed the world’s most spectacular soccer competition with pride and confidence.

The world’s largest sporting event

It was a World Cup like never before. The first to be hosted in the Middle East, the first to be played in November, and the first to be held in such a small geographical area, World Cup Qatar 2022 offered a fresh twist on the festival of football. Legendary German footballer Jurgen Klinsmann described it as, “a World Cup organised to perfection”.

The Supreme Committee for Delivery & Legacy was established by the State of Qatar in 2011 to deliver this global sporting event, including the provisioning and operation of the event’s eight stadiums, infrastructure, accommodation, and transport.

That commitment to excellence extended to the tournament’s state-of-the-art cybersecurity infrastructure. This included over 80,000 endpoints, spanning everything from PCs and stadium Wi-Fi, to internet of things (IoT), industrial control systems, cybersecurity operations, and more.

“As the host of the World Cup Qatar 2022, this was a unique opportunity for Qatar to showcase innovative, integrated security technologies across our stadiums to deliver a safe, smart, and exciting tournament,” explained Niyas Abudlrahiman, Executive Director – Tournament ICT, Supreme Committee for Delivery & Legacy.

With global attention on Qatar, the security team faced diverse threats across the 80,000+ endpoints, from ransomware and cyberespionage to fileless attacks and damaging data breaches. They needed multiple, connected sources of intelligence across a wide landscape. They also needed to streamline the vast number of frustrating, repetitive tasks they needed to perform as they triaged incidents and worked through an endless backlog of alerts.

Palo Alto Networks was one of the trusted partners chosen to deliver this ground-breaking cybersecurity solutions to support the stadium cybersecurity strategy.

“Palo Alto Networks is totally focused on information security,” said Kamran Shah, Manager, Information Security, Supreme Committee for Delivery & Legacy. “It has made forward-thinking business acquisitions, and its people are continually innovating. Palo Alto Networks has a 360-degree presence across our stadium security requirements and was one of the most important partners for protecting the World Cup Qatar 2022 stadiums.”

"As the host of the World Cup Qatar 2022, this was a unique opportunity for Qatar to showcase innovative, integrated security technologies across our stadiums, to deliver a safe, smart, and exciting tournament."

–Niyas Abudlrahiman

Executive Director – Tournament ICT, Supreme Committee for Delivery & Legacy

REQUIREMENTS

Behaviour and AI-based security techniques

The Supreme Committee for Delivery & Legacy identified several key requirements for the endpoint protection and security operations strategy:

  • Surface and block attacks with modern, behaviour-based, and AI techniques.
  • Manage alerts efficiently across all sources as part of an integrated cybersecurity strategy.
  • Scale and standardise incident response processes.
  • Speed up resolution times and boost SOC efficiency.
SOLUTION

Unleashing the power of analytics, AI, and automation

The Supreme Committee for Delivery & Legacy standardised on the comprehensive, unified Palo Alto Networks portfolio to underpin the stadium cybersecurity at World Cup Qatar 2022. The portfolio spans network, endpoint, and cloud security to drive simple, automated, and intelligent cybersecurity. Unit 42® also acted as a trusted advisor to test the security controls and drive a threat-informed approach to security.

With over 80,000 endpoints and devices under control, endpoint and operational security was the backbone of the deployment. Cortex XDR protected all endpoints and servers in the stadiums and beyond, applying machine learning (ML) to network, endpoint, and cloud data. Meanwhile, Strata Logging Service (formerly known as Cortex Data Lake) collected and integrated the security data, continually learning to evolve the event’s defences.

“Cortex XDR provides excellent behaviour-based endpoint protection and detection,” explained Kamran Shah. “It doesn’t matter whether the source of the threat is a server, a mobile device, a security camera or stadium turnstile – Cortex XDR gives us complete visibility and analytics.”

Cortex XSOAR became a pivotal part of the Security Operations Centre (SOC) correlating events from more than 30 integrations and orchestrating response in the SOC. More than 70 playbooks were also created to standardise processes – ensuring scalable, consistent incident response. The SOC itself was largely configured and staffed by Palo Alto Networks, with multiple tech vendors reporting to the team.

From a single screen, three Resident Engineers and teams from Unit 42 and Cortex Threat Research monitored security on everything from the Operating systems controlling critical infrastructure of all eight stadiums, to ensuring the stadium Wi-Fi provides excellent service at peak crowd capacity.

"Cortex XSOAR was the central nervous system of our stadium cybersecurity, it enriched specific incidents, automatically determining whether it can be auto-remediated or required investigation by an analyst. The playbook editor was also a great way to address both simple use cases and complex, custom workflows."

–Kamran Shah

Manager, Information Security, Supreme Committee for Delivery & Legacy

BENEFITS

World-class security for World Cup Qatar 2022 stadiums

The Supreme Committee for Delivery & Legacy strategy, in collaboration with Palo Alto Networks, safeguarded data in the build-up to World Cup Qatar 2022, during the event, and afterwards. This ensured the world enjoyed an exciting, spectacular soccer competition.

The benefits included:

  • Trusted proven delivery: The Palo Alto Networks portfolio deployment was previously tested by the Supreme Committee for Delivery & Legacy during the Arab Cup 2021. According to Kamran Shah, “The security strategy worked flawlessly at both the Arab Cup 2021 and during the World Cup Qatar 2022, consistently protecting the event.”
  • 90% of incidents remediated and closed within one minute: By maximising operational efficiency, Supreme Committee for Delivery & Legacy resources were able to focus effective human intervention on the remaining incidents which needed the focus.
  • Delivered efficient security: Intuitive security automation streamlined everyday security management, strengthened resilience, and released Supreme Committee for Delivery & Legacy resources to focus on strategic tasks. XSOAR, for example, automated security response, orchestrating and integrating data from more than 30 third-party tools.
  • Trusted devices: The Supreme Committee for Delivery & Legacy was able to rely on network, hybrid cloud, endpoints, IoT, OT, and other devices with confidence because the Palo Alto Networks solutions delivered maximum protection, including a Zero Trust architecture.
  • Significant operational savings: Cortex XSOAR made significant savings in automated remediation, increased staff productivity, and the elimination of point security technologies.

"Palo Alto Networks has a mature cybersecurity portfolio that’s consistently ahead of the curve. The people are on top of their game and strategically advise us as we innovate for the future. We designed the security strategy to secure the World Cup Qatar 2022 stadiums in collaboration with Palo Alto Networks because we trust them. With these technologies and inspiring people, the world was able to enjoy a safer, smarter World Cup in 2022."

–Niyas Abudlrahiman

Executive Director – Tournament ICT, Supreme Committee for Delivery & Legacy

Read how the full Palo Alto Networks portfolio enabled Supreme Committee for Delivery & Legacy to safeguard the World Cup Qatar 2022 tournament stadiums. Discover how Unit 42 partnered with Supreme Committee for Delivery & Legacy to deliver robust and resilient stadium security at World Cup Qatar 2022.