Unifies security data with Google SecOps
Reduces incident detection time by 60% using Google SecOps UDM-powered continuous threat detection and automated alert triage
Automates incident response with playbooks and marketplace integration within Google SecOps
Streamlines SOC 2 compliance using Security Command Center Enterprise
Improves visibility across systems by 50% with centralized monitoring with Google SecOps
BCW Group strengthens trust in Web3 with Google SecOps to automate investigations, reduce detection time, and improve resilience.
BCW Group strengthens trust in Web3 with Google SecOps to automate investigations, reduce detection time, and improve resilience.
The new way to unify security for high-value Web3 infrastructure
BCW Group isn’t just another enterprise solutions firm – it’s a global venture studio building Web3, Cloud, and AI infrastructure that powers tomorrow’s digital economy. From validator nodes and RPCs, to oracles and on-chain data pipelines, BCW Group delivers the backbone for critical services worldwide through its institutional-grade staking platform, stakeFi. However, while security has always been at the heart of its mission, the complexity of managing threats has grown alongside the company’s global footprint.
In Web3, the stakes are uniquely high. Validator nodes run by stakeFi and power several blockchain networks that rely on irreplaceable private keys – financial assets that can’t be reset or recovered. If stolen, attackers can drain funds instantly; if double-signed, the network triggers automatic slashing penalties. Traditional enterprise tools were never designed to prevent these irreversible events, making unified, real-time detection essential.
Before adopting Google SecOps, noise often drowned out real threats. BCW Group relied on a fragmented security stack: Google Workspace alerts, multi-cloud telemetry, data logs, Web3 node data, and SaaS platform events lived in different systems.
Security isn’t just compliance for us, it’s a competitive edge. With Google SecOps, we show clients we have enterprise-grade SOC capabilities they can trust.
Avinesh Kumar
Head of Security, BCW Group
Analysts spent hours reconstructing incidents by gathering evidence across teams and tools. They also spent valuable time filtering false alarms, stitching together dashboards, and manually reporting issues. The operational strain slowed response times and created real alert fatigue for a small team defending high-value Web3 infrastructure that demands a fast, precise response.
Traditional enterprise security focuses on the confidentiality, integrity, and availability of data, where breaches can be remediated through recovery. In Web3, however, security risks involve private-key compromise, asset theft, and “double-sign” incidents, which can result in protocol-level penalties known as slashing. These risks make speed and high-fidelity insight essential.
Because BCW Group already operated on Google Workspace and Google Cloud, Google SecOps emerged as the natural solution. Its ability to unify data from kubernetes clusters, Web3 nodes, cloud environments, and identity sources, combined with AI-driven enrichment, made it possible to operate a lean yet highly effective security operations center.
Why Google Cloud?
BCW Group deployed Google SecOps within six weeks. Consolidating logs, validator nodes, multi-cloud workloads, and Google Workspace into a single system required minimal integration effort. Native integrations reduced the need for bespoke connectors, making onboarding fast for a lean team. Out-of-the-box parsers, curated detection rules, and case management workflows further accelerated adoption.
Google SecOps offered a unified SIEM and SOAR platform capable of ingesting and normalising large volumes of multi-cloud and Web3 telemetry. This allows BCW to correlate validator signing behaviour, cloud identity activity, events, and user signals without relying on separate tools.
Security Command Center (SCC) Enterprise adds another layer of defense by revealing multi-cloud attack paths and cross-cloud context that traditional SIEMs couldn’t. For example, a suspicious login to a user identity in any cloud provider’s service might appear low-risk on its own, but SCC recognizes when that identity can access a high-value Google Cloud validator via Workload Identity Federation. With that context, the alert is automatically escalated, giving BCW Group true cross-cloud visibility.
Meanwhile integrated Mandiant Threat Intelligence and VirusTotal provides automatic enrichment, eliminating long cycles of manual research. Combined with Gemini-powered natural language investigations, analysts can craft complex queries without requiring deep expertise in YARA-L or query languages. Now, when an employee reports a phishing email in Gmail, a case is automatically created in Google SecOps. The system enriches the alert with Mandiant Threat Intelligence, validates domains, and can quarantine malicious messages across the organization instantly. Analysts receive a complete case file with clear next steps, cutting investigation time from hours to minutes.
This automation-first approach has transformed BCW Group’s lean security operations into an enterprise-grade SOC. For example, automated playbooks triage common false positives such as public bucket alerts and validator synchronization noise, cutting analyst workload by up to 40%. The Unified Data Model (UDM) search correlates data across environments, providing analysts with accurate, real-time incident context.
Finally, Google Cloud and BCW are aligned in their long-term vision for Web3-native security with automation, correlation, multi-cloud visibility, and AI-assisted investigation, making the collaboration ideal.
Multi-cloud resilience and Web3-ready detection
With Google SecOps and SCC Enterprise, BCW Group transitioned from reactive defence to proactive resilience across its multi-cloud and Web3 infrastructure. By consolidating logs from Web3 validators, blockchain networks, and enterprise systems, BCW Group can now detect validator risks such as missed or double-signing events, supply chain threats, and insider threats within a single console.
For the first time, we can see our entire attack surface in one console. That single view helps us uncover risks that would have been invisible in a traditional SIEM.
Avinesh Kumar
Head of Security, BCW Group
Previously, investigating a suspicious login attempt meant checking Google Workspace alerts, IAM activity in Google Cloud, and validator logs separately. Now, Google SecOps automatically correlates these signals and enriches them with Mandiant intelligence, flagging if they are linked to known campaigns and suggesting containment measures. The result is a 50% improvement in visibility and a 60% reduction in detection time across BCW Group’s infrastructure.
BCW also uses SecOps to support SOC 2 Type II compliance. Continuous monitoring and incident response controls, particularly those related to detection, automation, evidence logging, and long-term data retention, align with SOC 2 requirements CC7.1 and CC7.2. Every analyst action is recorded in the case file, creating an immutable audit trail.
Integrated threat intelligence also performs automated retro-hunting. When new IOCs or protocol vulnerabilities emerge, Google SecOps scans historical data at scale and flags matches in seconds – something that once required manual reviews and complex custom searches.
These capabilities increased BCW’s visibility across systems by 50% and reduced detection time by 60%. For BCW Group, this resilience not only protects its own operations but also strengthens client trust. Institutional clients using BCW’s stakeFi platform see measurable proof that the company operates a secure infrastructure in some of the most threat-heavy domains of the digital economy.
Automated playbooks also eliminate entire classes of false positives, such as routine validator synchronization noise or publicly exposed storage buckets, so analysts can focus on real threats instead of background noise.
The 30-40% time saved through automation is reinvested into higher-value security work: crafting new detection rules, running proactive threat hunts, conducting internal drills, and upskilling the team. Instead of reacting to alerts, BCW Group now builds forward-looking defenses.
A future shaped by AI-assisted investigation and Web3-native SecOps
BCW Group continues to expand its use of AI with Google Cloud to improve speed and accuracy in incident response. With Gemini as part of its SecOps workflow, analysts run complex natural-language queries such as: “Show me all processes launched on validator nodes in the last 48 hours where the file hash is unknown to VirusTotal and the node connected to a newly observed external IP” — and receive correlated answers with remediation steps.
Gemini also summarises cases in plain language, making it easier for non-technical leaders to understand threats quickly — an essential capability for high-value Web3 operations.
This AI-assisted future will empower BCW Group’s developers to resolve issues directly, reduce analyst workload, and keep security scalable as the company grows. For a lean team operating in high-risk Web3 environments, shifting from reactive investigations to AI-driven, proactive defense represents a significant competitive advantage.
Being both a customer and a Google Cloud partner with Security, Gen AI, and Infrastructure Specializations, BCW Group also applies this experience to client engagements. By proving internally that Google SecOps delivers faster investigations, richer visibility, and compliance readiness, BCW Group can package these capabilities into build-operate-transfer models for its Web3 clients.
What sets BCW Group apart is that every detection rule, playbook, and operational pattern it offers to clients is battle-tested on its own high-value Web3 infrastructure first. BCW Group doesn’t ship theoretical best practices — it ships the same hardened defenses it relies on daily.
Google SecOps allows us to practice what we preach. We run secure infrastructure ourselves and then help our clients achieve the same outcomes faster.
Avinesh Kumar
Head of Security, BCW Group
BCW Group builds secure enterprise cloud, Web3, and AI infrastructure with ultra-reliable IaaS.
Industry: Technology
Location: Singapore
Products: Gemini, Google SecOps, Mandiant Threat Intelligence, SCC Enterprise, Google Workspace
