Automating Auditing of Active Directory and Network Devices at Christchurch Airport
Technology Category
- Cybersecurity & Privacy - Identity & Authentication Management
- Cybersecurity & Privacy - Security Compliance
Applicable Industries
- Equipment & Machinery
- Transportation
Applicable Functions
- Quality Assurance
Use Cases
- Inventory Management
- Tamper Detection
Services
- Hardware Design & Engineering Services
About The Customer
Christchurch Airport is the Gateway to the South Island of New Zealand. It is the second busiest airport in the country, measured by both the number of passengers and the number of aircraft movements. The airport has 12 partner airlines arriving from 25 destinations. In 2019, a record 6.93 million passengers travelled in or out of Christchurch Airport. The airport's IT environment is complex and subject to stringent security standards, including the Payment Card Industry Data Security Standard (PCI DSS).
The Challenge
Christchurch Airport, a major transportation hub in New Zealand, faced a significant challenge in managing its IT environment. The airport's IT team needed to closely monitor activity and changes in Active Directory, a backbone system that provides authorization and authentication for many critical services. The airport is subject to Payment Card Industry Data Security Standard (PCI DSS), which necessitates regular audits of the IT environment. To comply with this requirement, the IT team needed to automate auditing across its network devices, including routers, firewalls, and switches. The challenge was to complete this task accurately and efficiently, promptly detect and investigate issues, and ensure compliance with PCI DSS.
The Solution
The airport adopted Netwrix Auditor, a solution chosen for its ease of use and ability to translate logs from Active Directory and network devices into actionable reports. The solution provided full control over Active Directory changes, enabling the IT team to monitor every change and keep staff accountable for their actions. The software alerts the team to any instance of privilege elevation, allowing them to take prompt action if the action wasn't authorized and posed a security risk. The solution also included automated rollback functionality to immediately revert critical improper changes. Additionally, the solution enabled continuous auditing of network devices, providing full visibility into configuration changes, logon attempts, scanning threats, and hardware malfunctions on all their Cisco devices. This helped ensure and prove compliance with both internal policies and PCI DSS. Lastly, the solution facilitated prompt investigations, enabling the IT team to conduct security investigations more quickly and efficiently than before.
Operational Impact
Quantitative Benefit
Case Study missing?
Start adding your own!
Register with your work email and create a new case study profile for your business.
Related Case Studies.
Case Study
Smart Water Filtration Systems
Before working with Ayla Networks, Ozner was already using cloud connectivity to identify and solve water-filtration system malfunctions as well as to monitor filter cartridges for replacements.But, in June 2015, Ozner executives talked with Ayla about how the company might further improve its water systems with IoT technology. They liked what they heard from Ayla, but the executives needed to be sure that Ayla’s Agile IoT Platform provided the security and reliability Ozner required.
Case Study
IoT enabled Fleet Management with MindSphere
In view of growing competition, Gämmerler had a strong need to remain competitive via process optimization, reliability and gentle handling of printed products, even at highest press speeds. In addition, a digitalization initiative also included developing a key differentiation via data-driven services offers.
Case Study
Predictive Maintenance for Industrial Chillers
For global leaders in the industrial chiller manufacturing, reliability of the entire production process is of the utmost importance. Chillers are refrigeration systems that produce ice water to provide cooling for a process or industrial application. One of those leaders sought a way to respond to asset performance issues, even before they occur. The intelligence to guarantee maximum reliability of cooling devices is embedded (pre-alarming). A pre-alarming phase means that the cooling device still works, but symptoms may appear, telling manufacturers that a failure is likely to occur in the near future. Chillers who are not internet connected at that moment, provide little insight in this pre-alarming phase.
Case Study
Premium Appliance Producer Innovates with Internet of Everything
Sub-Zero faced the largest product launch in the company’s history:It wanted to launch 60 new products as scheduled while simultaneously opening a new “greenfield” production facility, yet still adhering to stringent quality requirements and manage issues from new supply-chain partners. A the same time, it wanted to increase staff productivity time and collaboration while reducing travel and costs.
Case Study
Integration of PLC with IoT for Bosch Rexroth
The application arises from the need to monitor and anticipate the problems of one or more machines managed by a PLC. These problems, often resulting from the accumulation over time of small discrepancies, require, when they occur, ex post technical operations maintenance.
Case Study
Data Gathering Solution for Joy Global
Joy Global's existing business processes required customers to work through an unstable legacy system to collect mass volumes of data. With inadequate processes and tools, field level analytics were not sufficient to properly inform business decisions.
