DataStream Connexion: Building Secure Federal and Healthcare Applications with CloudGuard Dome9
Technology Category
- Cybersecurity & Privacy - Cloud Security
- Cybersecurity & Privacy - Network Security
Applicable Industries
- Cement
- National Security & Defense
Applicable Functions
- Product Research & Development
- Quality Assurance
Use Cases
- Leasing Finance Automation
- Tamper Detection
Services
- Cloud Planning, Design & Implementation Services
- Cybersecurity Services
About The Customer
DataStream Connexion is a premier technology consulting and web application development agency. Formed in 2000, they have built web applications for the Federal Government, USDA, FDA, the Department of Homeland Security, healthcare organizations, Fortune 500 companies, and small businesses. The team, led by Eric Hoffman, President and owner, provides services that range from product development and DevOps, to cloud security and compliance. They excel at incorporating comprehensive security and compliance management into the innovative products they design, and have garnered the trust of many government agencies and healthcare organizations with maintaining their critical applications in the cloud.
The Challenge
DataStream Connexion, a technology consulting and web application development agency, faced several challenges in managing the security and compliance of their cloud-based applications. They had to manage tens of Virtual Private Clouds (VPCs) and security groups, creating an elastic cloud environment with hundreds of inbound and outbound rules. They also had to provide access to various resources for development and specific environments for production, while enforcing strict segregation according to predefined user roles. Furthermore, they had to allow their team self-servicing and flexibility, which meant allowing individuals remote access to their cloud environment at any time. Lastly, they had to implement end-to-end compliance management, which was especially complex given their customer base of federal agencies and healthcare organizations that had to adhere to standards such as FedRAMP, NIST, and HIPAA.
The Solution
DataStream Connexion leveraged CloudGuard Dome9 to address their challenges. CloudGuard Dome9 Clarity provided complete visibility over their entire infrastructure, allowing them to visualize their cloud perimeter, network topology, security policies, and configurations in real-time. CloudGuard Dome9's role-based access control (RBAC) capabilities allowed them to provide developers the instant access they needed to test out new processes, while ensuring only the team admin could adjust settings. CloudGuard Dome9 Dynamic Access Leases allowed them to schedule time-limited and on-demand access to services and ports, reducing open port exposure. Lastly, the Compliance Engine from CloudGuard Dome9 automated compliance, simplifying complicated procedures with automated data aggregation in real-time, and in-place remediation control. It also continuously ran audits against their cloud deployment, allowing them to validate their network security posture and report the current exposure status and vulnerabilities across their whole cloud network.
Operational Impact
Case Study missing?
Start adding your own!
Register with your work email and create a new case study profile for your business.
Related Case Studies.
Case Study
System 800xA at Indian Cement Plants
Chettinad Cement recognized that further efficiencies could be achieved in its cement manufacturing process. It looked to investing in comprehensive operational and control technologies to manage and derive productivity and energy efficiency gains from the assets on Line 2, their second plant in India.
Case Study
Data Capture for Afghanistan Forces
Electronic equipments on the field of Afghanistan provided information on the status of the vehicle and to identify potential threats surrounding it to the British Force. The monitoring and interpretation of this data requires robust and sophisticated digitization for data capture and communication.
Case Study
Digital Transformation of Atlanta Grout & Tile: An IoT Case Study
Atlanta Grout & Tile, a Tile, Stone & Grout restoration company based in Woodstock, Georgia, was facing challenges with its traditional business model. Despite steady growth over the years, the company was falling behind the web revolution and missing out on the opportunity to tap into a new consumer base. They were using independent software from different vendors for each of their department information and workforce management. This resulted in a lot of manual work on excel and the need to export/import data between different systems. This not only increased overhead costs but also slowed down their response to clients. The company also had to prepare numerous reports manually and lacked access to customer trends for effective business decision-making.
Case Study
Enhancing Security and Compliance in Remitly's Global Money Transfer Service with Fastly
Remitly, an online remittance service, was faced with the challenge of securing its proprietary global transfer network. The company needed a security solution that could meet PCI requirements and protect customers' sensitive transactions through its mobile application. The solution had to be capable of defending against new and emerging attack types without impacting performance. Remitly also had to deal with irregular traffic patterns, such as a sudden spike in account transfers from a small network segment on the Pacific coastline of South America. The company needed to determine in real time whether such traffic indicated an attack or valid requests. A traditional web application firewall (WAF) would not be able to distinguish this traffic, potentially leading to customer frustration if the IP was blacklisted.
Case Study
Major Aerospace Company Automates Asset Management
The O&M division of an aerospace and global security company was using spreadsheets to manually track more than 3,000 assets assigned to students and staff. Maintaining audit trails for this high volume of equipment became increasingly time-consuming and challenging. The chore involved knowing precisely what equipment was on hand, what had been issued, its location and the name of the custodial owner of each item. Every aspect of this task was carried owner of each item. Every aspect of this task was carried out by individuals with spreadsheets. Manually documenting the full lifecycle of each asset added to the burden. This included tracking maintenance requirements and records, incidents and damages, repairs, calibrations, depreciation, and end-of-life data.
