Blueprint Gaming is a leading UK-based game studio and part of Germany’s Gauselmann Group. The company develops innovative slot games for the global online and mobile markets, with titles also available across more than 100,000 land-based gaming terminals in the UK, Germany, and Italy.
Blueprint Gaming had been using an incumbent SIEM tool that offered technology but not the expertise and operational support of a fully managed SOC.
As a lean infrastructure team operating in a high-risk, data-intensive industry, Blueprint needed:
Without additional specialist resources, maintaining a proactive security posture was becoming increasingly challenging.
Blueprint selected Continent 8’s Managed Security Operations Centre (MSOC) — a complete, fully managed security service integrating an advanced SIEM platform operated by Continent 8’s cybersecurity specialists.
Key capabilities delivered included:
This combination of technology, people, and process provided the 24/7 monitoring and threat response Blueprint required – without increasing internal workload.
| Faster insights from large datasets | Improved threat detection and response | Role-specific dashboards | A cost-optimised SIEM environment |
|---|---|---|---|
| Data queries that previously took significant time can now be completed far more efficiently, enabling quicker decision-making. | Suspicious activity is identified and escalated rapidly, reducing security risk and improving overall visibility. | Tailored dashboards give teams across Blueprint immediate access to the metrics and insights most relevant to them. | Continent 8 continuously reviews and manages log volumes, ensuring an optimal balance between cost and security posture. |
Continent 8 delivered a robust managed security solution combining a leading technology stack with expert cybersecurity professionals who operate and manage the environment on Blueprint’s behalf.
Outcomes included:
Adam Shepherd, Head of Infrastructure at Blueprint
“We’re a small team that manages huge volumes of data in a high-risk industry. Managing that effectively – without compromising security – was a real challenge for us. That’s where Continent 8 stepped in, providing a managed SOC service with a strong focus on the threat landscape. They’ve enabled quicker responses to threats and equipped us with simplified dashboards. Working with the team has been a real pleasure.”
Patrick Gardner, Chief Security Officer at Continent 8
“Blueprint required strong security oversight without adding operational burden to a lean internal team. Our Managed SOC service was designed to deliver exactly that – improving visibility, accelerating threat detection, and optimising log volumes while maintaining a robust security posture. The result is a scalable, cost-efficient security capability aligned to the realities of a high-risk, data-intensive environment.”
Click to download the PDF version
number of games accessible to B2C operators
transactions per second that need to be secured
critical cybersecurity issues identified
Global iGaming aggregator leverages Continent 8’s Vulnerability Assessment and Penetration Testing (VAPT) cybersecurity services to securely connect B2C operators to over 16,000 games from more than 160 providers.
Alea is an award-winning leader in the field of online gaming, with a decade of experience in the industry. Alea aggregation platform handles over 21,000 transactions per second, with bank-level security, full regulatory coverage and local insights that helps their customers move faster in markets like Brazil, South Africa, Spain and beyond.
Alea is one of the industry’s most rapidly expanding game aggregators. By utilising a single API integration, Alea offers customers access to over 16,000 games from more than 160 providers, simplifying technical complexities and enhancing operational efficiency. The security and reliability of these game APIs and integrations are vital to Alea’s operational integrity.
To address the evolving cybersecurity challenges associated with a rapidly growing network, Alea engaged Continent 8 to conduct a thorough assessment and evaluation of their cybersecurity framework through a comprehensive Vulnerability Assessment and Penetration Testing (VAPT) service.
Alea’s coding platform comprises over 100 microservices leveraging diverse technologies, databases and queue systems, presenting a significant technical challenge in securing all connections. Additionally, Alea processes over 21,000 requests per second, necessitating the demonstration of successful transaction management. With a complex aggregation platform, Alea aimed to ensure and demonstrate their status as a secure and robust game aggregator provider.
Continent 8, along with its specialised cybersecurity division, C8 Secure, conducted the cybersecurity audit. They employed their Vulnerability Assessment and Penetration Testing (VAPT) service to perform a thorough security evaluation of Alea’s entire digital infrastructure, providing a complete view of their attack surface area.
The VAPT service from Continent 8 and C8 Secure enabled Alea to safeguard their API, code and services against vulnerabilities such as broken authentications, cross-site scripting (XSS), sensitive data exposure and SQL injection. As a result, the cybersecurity audit identified no critical issues within their aggregation platform.
The comprehensive VAPT assessment allowed Alea to detect potential internal and external IT vulnerabilities, enabling them to prioritise and implement security improvements to reduce risk exposure, thereby assuring their customers of a secure and reliable platform.
Patrick Gardner, Chief Security Officer at Continent 8, presenting Eduard Fumás, Chief Technology Officer at Alea, with their VAPT completion certificate.
Eduard Fumás, Chief Technology Officer at Alea said, “At Alea, security is at the core of everything we do. Our commitment to creating a secure, robust and scalable API solution sets a new standard in the iGaming industry, where data protection and system integrity are critical. Partnering with Continent 8 has been an important step for us in proactively safeguarding our platform and reinforcing the trust our partners place in us. This collaboration ensures that we continue to deliver a reliable, secure API experience to our clients. We’re proud to work with a partner that shares our dedication to cybersecurity excellence.”
Patrick Gardner, Chief Security Officer at Continent 8 said, “Alea’s three principles of security, scalability and robustness resonate with Continent 8. Given the number of APIs Alea is using, their proactive approach to assessing their business and guaranteeing security for its partners is imperative.
“It’s great to be supporting Alea; we encourage all businesses in this industry to take the cybersecurity threat seriously.”
Compliance Achieved
Cybersecurity Incidents Recorded
Security Controls Validated
Days Audit Turnaround
Continent 8’s Compliance Audit and Vulnerability Assessment and Penetration Testing (VAPT) services facilitate the supplier’s annual licensing obligations in the Keystone State.
ODDSworks, a leader in Remote Gaming Server technology and interactive content, specializes in delivering world-class gaming content and interactive technologies for regulated and real-money gaming markets. The ODDSworks game portfolio features a diverse array of proprietary and third-party titles.
As a licensed supplier under the Pennsylvania Gaming Control Board (PGCB), ODDSworks was required to conduct and submit a thorough audit of its cybersecurity measures for approval. ODDSworks chose its existing data center hosting partner, Continent 8, the leading provider of infrastructure and cybersecurity services to the iGaming and online sports betting sector, to design and implement an extensive regulatory compliance service, ensuring the content provider successfully met its regulatory requirements.
As an existing licensee offering third-party content to the online casino market, ODDSworks’ technology was already in compliance with the PGCB’s cybersecurity requirements. However, the regulatory body mandated ODDSworks to conduct an annual cybersecurity audit.
The primary challenge was selecting a cybersecurity services provider that was both capable and approved by the PGCB. The regulator is among the most stringent in the US regarding cybersecurity, requiring operators and suppliers to adhere to standards such as:
The audit was conducted by ODDSworks’ existing infrastructure partner, Continent 8 and its specialized cybersecurity division, C8 Secure. They utilized their Compliance Audit and Vulnerability Assessment and Penetration Testing (VAPT) services to assess ODDSworks’ provisions in accordance with the requirements established by the PGCB.
Following the completion of the Compliance Audit and VAPT services, Continent 8 and C8 Secure identified cybersecurity vulnerabilities related to third-party platforms. As a result, ODDSworks required the third-party developers to implement necessary upgrades to comply with the iGaming supplier’s compliance standards.
The audit and VAPT reports were submitted to, and approved by, the PGCB.
Continent 8’s comprehensive regulatory compliance services have strengthened ODDSworks’ cybersecurity framework by validating existing measures, refining operational processes and ensuring their systems are well-equipped to meet evolving regulatory and security requirements.
To date, ODDSworks is pleased to report the absence of cybersecurity incidents and looks forward to continued collaboration with Continent 8 on various cybersecurity initiatives.
Steven DeMar, Executive VP at ODDSworks, said: “At ODDSworks, we are taking cybersecurity seriously – the industry is under attack. Continent 8 has done an incredible job of supporting us through our cybersecurity audit in the state of Pennsylvania. We were impressed by the speed at which the audit was planned, undertaken and reported on, as well as its scope and depth.
“We already knew that Continent 8 was at the top of its game having used its hosting solutions in other US states, but its cybersecurity audit for us shows that it really does set the standard for others to follow.”
Patrick Gardner, Chief Security Officer at Continent 8, said: “Cybersecurity is a hot topic in the online and land-based gaming industry, and ODDSworks are an example of a company that is prioritizing cybersecurity.
“Having cybersecurity provisions in place is not only a must when it comes to protecting the organization, but also when it comes to compliance. Pennsylvania is setting the standard when it comes to protecting the iGaming market.”
Download the case study here. For more information on how to meet your jurisdiction’s regulatory cybersecurity requirements, visit continent8.com or contact sales@continent8.com.