Banking Group

Lloyds Banking Group has a long and rich history, and
security has always been at the heart of what they do —
but it’s probably more important now than ever before.

About Lloyds
Banking Group

Lloyds Banking Group is one of the largest retail banks in the UK with over 30 million customers; 17 million of whom use digital banking services. It is made up of many iconic brands and household names, and security has been a core focus for more than 250 years. Here, we highlight how they have deployed Garrison across the bank, to protect their colleagues and customers from threats such as ransomware and phishing.

The Challenge

The initial aim was to protect users in high value roles, for example the Bank’s payments colleagues, but since the start of the journey with Garrison, the Bank has broadened the roles that it is protecting to address one of the biggest threats that forces every organisation – the threat of phishing.

The Objective

The internet is without a doubt the most hostile and dangerous place in the digital realm. Web access is a significant concern for all organisations and Lloyds Banking Group is no different. Accessing the web is crucial for colleagues to conduct their day-to-day activity. However, it only takes one person to click to allow the adversary in, so the Bank also recognised that this must be done in a completely secure way.


  • Phishing attacks
  • Secure access to the web
  • Vast digital presence (wide attack surface)
  • Sophisticated threat landscape

Benefits to the Bank

  • Mitigates the risk of numerous clicks a day
  • Re-enables web access
  • Mitigates the risk of ransomware and phishing attacks

“We reached a place where we wanted hardware-based, Web Isolation technology that we know is in use by some of the safest organisations on the planet, and after checking what was out there, we chose Garrison.”

Paul Branley
Deputy CISO, Lloyds Banking Group

The Solution

Based on an initial proof of concept, Garrison was deployed to a small number of teams within Lloyds Banking Group. This deployment was successful, which resulted in more pilots being run and Garrison being rolled out to different user groups across the bank.

Today, Garrison is deployed to numerous endpoints, and forms a critical part of Lloyds Banking Group’s cybersecurity strategy.

Mitigating the risk of ransomware and phishing attacks, Garrison has made a critical difference to the Bank’s risk profile.

Key results

  • Re-enabled web access for key high-risk roles such as payments teams.
  • Phishing and ransomware risks from possible malicious links on webpages and in email, mitigated to make the internet clickable again.
  • Allow unrestricted research for threat intelligence, fraud and investigations.
  • AA solution that combines security with usability, simplicity and cost-effectiveness.

Garrison is changing the way the Bank can address the risk of corporate Internet connectivity

Paul Branley, Deputy CISO, Lloyds Banking Group

lloyds banking group

“We really wanted to remove the reliance on the human as it only takes one person to click to allow the adversary in. Therefore, we have taken extra precautions in securing colleagues internet access, specifically through isolated web browsing.”

Katie Holman
Innovation & Application Security Senior Manager, Lloyds Banking Group

Garrison ULTRA®

Built with hardsec-based pixel-pushing technology,
Garrison ULTRA® turns the web browser content into pixels, showing a “video stream” of the Garrison secure browsing environment, re-enabling ultra secure access to the Internet for organisations worldwide.

Combining security, cost effectiveness, usability and simplicity, Garrison’s Web Isolation solution mitigates some of the biggest risks to commercial organisations.


Hardware-based pixel-pushing Web Isolation technology: secure by design.


Our customers can tell you about the great user experience, but the best way is to try it yourself.


Ease of deployment, manageability and integration with existing estates.


All of this at an ultra-competitive price point.