Enhancing Security from 77% to 93%: A QloudX Managed Services Success Story for a P&C Insurer

Case Study – Managed Services

Home / Case Studies / Enhancing Security from 77% to 93%: A QloudX Managed Services Success Story for a P&C Insurer

Enhancing Security from 77% to 93%: A QloudX Managed Services Success Story for a P&C Insurer

Executive Summary

QloudX partnered with a leading P&C insurance technology provider to deliver proactive AWS Managed Services, addressing fragmented monitoring, manual operations, and rising cloud costs. Through a structured Plan–Build–Run–Optimize framework, QloudX improved security posture (AWS score from 77% to 93%), achieved 100% patch compliance, and delivered $2,375 in monthly savings. Automation, centralized observability, and FinOps practices enabled continuous improvement, resilience, and cost efficiency—transforming cloud operations into a secure, scalable, and transparent environment.

The Challenge

As customer scaled its cloud workloads, the internal team faced increasing challenges in maintaining a secure, optimized, and continuously available infrastructure environment.

  • Key hurdles included:
  • Fragmented monitoring and alerting across servers and services.
  • Recurrent manual effort for patching, backup, and incident response.
  • Rising cloud costs with limited visibility into service-level billing data.
  • Incomplete implementation of AWS security best practices.
  • Lack of centralized logging and integrated observability tools.

Customer needed a Managed Services partner with deep AWS expertise who could bring automation, proactive governance, and a high-touch operational cadence.

The QloudX partnership

QloudX partnered with customer as their Cloud Managed Services Provider (MSP), bringing a structured and comprehensive framework for AWS infrastructure operations, with a clear roadmap for continuous improvement and compliance.

This partnership was anchored on delivering a secure, observable, and cost-efficient cloud environment, tailored to customer technical and business needs.

About Our Customer

Our customer is a leading provider of cloud-based software solutions for small to mid-sized Property & Casualty (P&C) insurance carriers in North America. Their flagship platform enables end-to-end capabilities across underwriting, policy administration, claims management, billing, accounting, and regulatory reporting.

Serving a wide range of insurance lines — including multi-line P&C, workers’ compensation, surety bonds, and specialty sectors such as aviation, equine, inland marine, and professional liability — the company has built a strong reputation for innovation, customer-centric service, and deep domain expertise.

With a commitment to modernizing insurance operations, they focus on streamlined workflows, competitive pricing, and rapid deployment, helping carriers improve operational efficiency, compliance, and customer experience. Their solution suite also includes self-service portals for agents, policyholders, and partners, reinforcing a culture of transparency and collaboration.

MSP LifeCycle

QloudX delivers Managed Services using a structured Plan–Build–Run–Optimize lifecycle aligned with the efficient MSP best practices:

Plan

Assess customer environment, define governance model, and establish monitoring, backup, and security baselines.

Build

Deploy monitoring, automation, and security controls; configure incident management workflows and cost management tools.

Run

Operate the AWS environment through proactive monitoring, incident response, patching, backup validation, and continuous compliance checks.

Optimize

Review reports, analyse cost/security trends, and drive continuous improvement through automation, FinOps, and architecture best practices.

This framework ensures customer cloud environment remains secure, resilient, cost-efficient, and continuously improving throughout the engagement.

Key Deliverables & Capabilities

The following capabilities reflect QloudX’s standardized MSP operating model — consistently applied across all customers to ensure proactive operations, governance, collaboration, and measurable value realization.

Proactive Operations: Advanced Monitoring & Alerting

— Migration from CloudWatch to Grafana and Prometheus for real-time infrastructure visibility.
— Custom dashboards for critical Linux and Windows servers.
— Integrated alerting setup with actionable thresholds.

Continuous Improvement: Incident Management

— Implementation of structured incident tracking via JIRA.
— Weekly Infrastructure Health Reports delivered to customer stakeholders.
— Real-time log error alerts tied to ticketing workflows.

Enforcement of IAM best practices including:

— SSO migration via IAM Identity Center.
— Password policies and inactive user audit.
— S3 audit and remediation plan for public access and SSL enforcement.

Value Realization: Cost Optimization & FinOps

— Implementation of monthly AWS budget with multi-threshold billing alarms.
— Activated Savings Plans, saving $2,375 monthly.
— EC2 scheduler proposed for non-production workloads.
— Granular service-wise billing analysis and trends across March–June.

AWS Lays the Foundation:

QloudX delivered a structured Managed Services framework on AWS, ensuring Customer cloud environment is secure, cost-efficient, and resilient. The solution was designed for continuous improvement, with proactive monitoring, governance, and automation built into every layer of operations.

A standardized MSP operating model was applied to deliver high availability, cost transparency, and measurable security outcomes. This included structured incident management, centralized observability, and FinOps-driven cost optimization to ensure value realization.

The managed services were built on automation-first principles, replacing manual cycles with pipelines and dashboards, and backed by continuous governance reviews to maintain compliance with AWS best practices.

Operational Maturity: Automated Patch Management

— Manual patching cycles replaced with automated patch pipelines.
— First automated cycle successfully concluded in July 2025, with structured baselining.
— Coordination with CUSTOMER team to avoid service disruption.

Reliability & Assurance: Backup & Recovery Monitoring

— Monthly EC2 backup strategy with a 60-day retention policy.
— Daily FSx backups monitored and verified.
— SQL backups handled internally by customer.
— Designed Simply backup & restore as customer preferred RTO/RPO.

Collaboration & Transparency: Centralized Logging

— Consolidated IIS, application, and security logs into Grafana dashboards.
— Configured error and failure alerts, linked to incident management.

Governance & Compliance: Security Posture Hardening

Increased AWS Security Hub Score from 77% to 90%+ and being maintained.

Security Scorecard
Feb 2025

77%

Mar 2025

77%

Apr 2025

77%

May 2025

81%

Jun 2025

86%

Jul 2025

93%

AWS Services

The following AWS services enabled proactive operations, compliance monitoring, and resilient backup management under the QloudX MSP framework. This ensured Customer AWS environment remained secure, cost-efficient, and continuously optimized without disrupting core insurance workloads.

  • Amazon CloudWatch, AWS Config, and AWS GuardDuty to provide real-time monitoring, compliance checks, and automated threat detection.
  • AWS Security Hub to consolidate security findings, track compliance scores, and guide remediation activities.
  • AWS IAM Identity Center and IAM Policies for secure identity management, SSO integration, and role-based access control.
  • AWS Backup (covering EC2 and FSx) to implement structured backup policies with automated retention and recovery validation.
  • AWS Budgets, Savings Plans, Cost Explorer, and Compute Optimizer to enable FinOps practices, delivering ongoing visibility and measurable cost savings.
  • AWS Systems Manager, Patch Manager, and Automation to streamline patch cycles, enforce compliance, and reduce manual intervention.

Impact and Results

Cost Optimization

Realized monthly savings of USD 2,375 through proactive FinOps measures, with an additional 15–25% savings via Savings Plans, SPP Discounts, CloudWatch optimization, and efficient compute utilization.

Security Posture

AWS Security Hub score improved from 77% to 93%, sustained across consecutive quarters. Strengthened security across S3, IAM, and backup environments.

Visibility & Transparency

Delivered detailed Grafana dashboards and weekly/monthly reports, enabling faster decision-making, traceable compliance history, and continuous improvement.

Resilience

Implemented a comprehensive backup strategy covering 100% of EC2 and FSx workloads, aligned with defined RTO/RPO objectives.

Operational Maturity

Achieved 100% patch compliance across all production workloads.

Conclusion

Through a proactive Managed Services engagement, QloudX has enabled PCMS to transform its AWS cloud operations—boosting reliability, reducing manual effort, and enhancing security posture. This engagement exemplifies how a structured MSP partnership can deliver real, measurable impact on cloud maturity and operational excellence.

Get more details
A SYSTEMS+ Group Company
© 2025 QloudX - all Rights Reserved