DataStream Connexion:使用 CloudGuard Dome9 构建安全的联邦和医疗保健应用程序
技术
- 网络安全和隐私 - 云安全
- 网络安全和隐私 - 网络安全
适用行业
- 水泥
- 国家安全与国防
适用功能
- 产品研发
- 质量保证
用例
- 租赁金融自动化
- 篡改检测
服务
- 云规划/设计/实施服务
- 网络安全服务
关于客户
DataStream Connexion 是一家一流的技术咨询和 Web 应用程序开发机构。他们成立于 2000 年,为联邦政府、美国农业部、FDA、国土安全部、医疗保健组织、财富 500 强公司和小型企业构建了 Web 应用程序。该团队由总裁兼所有者 Eric Hoffman 领导,提供从产品开发和 DevOps 到云安全与合规性的服务。他们擅长将全面的安全性和合规性管理融入到他们设计的创新产品中,并通过在云中维护关键应用程序赢得了许多政府机构和医疗保健组织的信任。
挑战
DataStream Connexion 是一家技术咨询和 Web 应用程序开发机构,在管理基于云的应用程序的安全性和合规性方面面临着多项挑战。他们必须管理数十个虚拟私有云 (VPC) 和安全组,创建具有数百个入站和出站规则的弹性云环境。他们还必须提供对各种开发资源和特定生产环境的访问,同时根据预定义的用户角色实施严格的隔离。此外,他们必须允许团队自助服务和灵活性,这意味着允许个人随时远程访问他们的云环境。最后,他们必须实施端到端合规管理,考虑到他们的客户群是联邦机构和医疗保健组织,这些组织必须遵守 FedRAMP、NIST 和 HIPAA 等标准,这一点尤其复杂。
解决方案
DataStream Connexion 利用 CloudGuard Dome9 来解决他们的挑战。 CloudGuard Dome9 Clarity 提供了对其整个基础设施的完整可见性,使他们能够实时可视化其云边界、网络拓扑、安全策略和配置。 CloudGuard Dome9 基于角色的访问控制 (RBAC) 功能使他们能够为开发人员提供测试新流程所需的即时访问权限,同时确保只有团队管理员可以调整设置。 CloudGuard Dome9 动态访问租赁使他们能够安排对服务和端口的限时和按需访问,从而减少开放端口暴露。最后,CloudGuard Dome9 的合规引擎可自动实现合规性,通过实时自动数据聚合和就地补救控制来简化复杂的程序。它还持续对其云部署进行审核,使他们能够验证其网络安全状况并报告整个云网络的当前暴露状态和漏洞。
运营影响
Case Study missing?
Start adding your own!
Register with your work email and create a new case study profile for your business.
相关案例.
Case Study
System 800xA at Indian Cement Plants
Chettinad Cement recognized that further efficiencies could be achieved in its cement manufacturing process. It looked to investing in comprehensive operational and control technologies to manage and derive productivity and energy efficiency gains from the assets on Line 2, their second plant in India.
Case Study
Data Capture for Afghanistan Forces
Electronic equipments on the field of Afghanistan provided information on the status of the vehicle and to identify potential threats surrounding it to the British Force. The monitoring and interpretation of this data requires robust and sophisticated digitization for data capture and communication.
Case Study
Digital Transformation of Atlanta Grout & Tile: An IoT Case Study
Atlanta Grout & Tile, a Tile, Stone & Grout restoration company based in Woodstock, Georgia, was facing challenges with its traditional business model. Despite steady growth over the years, the company was falling behind the web revolution and missing out on the opportunity to tap into a new consumer base. They were using independent software from different vendors for each of their department information and workforce management. This resulted in a lot of manual work on excel and the need to export/import data between different systems. This not only increased overhead costs but also slowed down their response to clients. The company also had to prepare numerous reports manually and lacked access to customer trends for effective business decision-making.
Case Study
Enhancing Security and Compliance in Remitly's Global Money Transfer Service with Fastly
Remitly, an online remittance service, was faced with the challenge of securing its proprietary global transfer network. The company needed a security solution that could meet PCI requirements and protect customers' sensitive transactions through its mobile application. The solution had to be capable of defending against new and emerging attack types without impacting performance. Remitly also had to deal with irregular traffic patterns, such as a sudden spike in account transfers from a small network segment on the Pacific coastline of South America. The company needed to determine in real time whether such traffic indicated an attack or valid requests. A traditional web application firewall (WAF) would not be able to distinguish this traffic, potentially leading to customer frustration if the IP was blacklisted.
Case Study
Major Aerospace Company Automates Asset Management
The O&M division of an aerospace and global security company was using spreadsheets to manually track more than 3,000 assets assigned to students and staff. Maintaining audit trails for this high volume of equipment became increasingly time-consuming and challenging. The chore involved knowing precisely what equipment was on hand, what had been issued, its location and the name of the custodial owner of each item. Every aspect of this task was carried owner of each item. Every aspect of this task was carried out by individuals with spreadsheets. Manually documenting the full lifecycle of each asset added to the burden. This included tracking maintenance requirements and records, incidents and damages, repairs, calibrations, depreciation, and end-of-life data.
