Skip to content

Nordnet and Devoteam: A New Era in Google Security Operations

About the Customer

Nordnet is a digitally advanced bank specialising in savings and investments. It serves customers across the Nordic countries—Sweden, Norway, Denmark, and Finland. As of March 2024, the company employs over 952 people across five continents. Nordnet offers a broad range of products and services, including stocks, shares, investment funds, savings accounts, and pensions. Additionally, it provides educational resources to empower users to make informed investment decisions. With a focus on user-friendly and cost-efficient platforms, Nordnet is committed to making saving and investing accessible to everyone.

The Challenge and Goal

Nordnet faced significant challenges with the maintenance and licensing costs of their previous on-prem SIEM solution, which proved inadequate for effectively managing and analysing the diverse range of data it handled. The system became increasingly burdensome due to its complexity and time-consuming nature. Seeking a more scalable and efficient solution, Nordnet aimed to migrate its existing Security Telemetry to Google Security Operations (formerly Chronicle). Their objectives included enhancing security visibility, gathering data from a broader range of sources, streamlining threat detection and response processes, improving compliance insights to meet regulatory requirements, and reducing the overall cost of their SIEM implementation.

The Solution

Devoteam played a pivotal role in transforming Nordnet’s security operations. They orchestrated a seamless transition to Google Security Operations (formerly Chronicle). Their unmatched expertise maximised the platform’s full scalability and advanced threat detection capabilities. By skillfully leveraging Google Security Operations (formerly Chronicle) advanced data handling features, Devoteam revolutionised Nordnet’s security infrastructure. They tackled critical challenges with exceptional precision and efficiency. Devoteam created a detailed, step-by-step migration plan to ensure Nordnet’s operations remained uninterrupted. They guided Nordnet through the process of transferring data from various sources. This made the switch from SIEM to Google Security Operations (formerly Chronicle ) as smooth as possible. Additionally, they customised Google Security Operations (formerly Chronicle) to meet Nordnet’s specific security needs. This ensured the new system worked perfectly for them.

The Result


With Devoteam’s expert assistance, Nordnet successfully implemented Google Security Operations (formerly Chronicle). Devoteam’s solutions streamlined threat detection and investigation processes within Google SecOps, resulting in improved log coverage and a significant reduction in security risks. By leveraging the advanced capabilities of Google Security Operations (formerly Chronicle), Nordnet enhanced its security visibility and data privacy across its infrastructure. The transition to Google Security Operations (formerly Chronicle) also improved operational efficiency and led to a notable reduction in the total cost of ownership. This comprehensive improvement highlights how Devoteam’s expertise and Google Security Operations (formerly Chronicle) transformed Nordnet’s security operations and cost management.

Devoteam G Cloud brought technical expertise to our project. They guided us with best practices, helping us avoid mistakes early in the implementation that could have had substantial impacts later on. A key reason we chose Devoteam was their willingness to share their knowledge, which greatly contributed to our team’s growth and understanding of the implemented product.

Key Account Manager Suleman Aslam

Contact us today to explore how we can strengthen and streamline your security operations.