安全私有云为全球资产管理公司提供敏捷性
技术
- 基础设施即服务 (IaaS) - 私有云
- 网络与连接 - 网关
适用行业
- 玻璃
- 国家安全与国防
适用功能
- 产品研发
用例
- 资产生命周期管理
- 篡改检测
服务
- 云规划/设计/实施服务
- 数据科学服务
关于客户
该客户是一家全球资产管理公司,管理着近 6200 亿美元的资产。该公司为全球超过 1900 万客户提供行业领先的退休计划、员工持股计划 (ESOP)、递延薪酬计划和保险产品。企业、政府、机构和个人求助于它来帮助他们实现财务目标。该公司成立于美国,业务遍及亚洲、欧洲、澳大利亚、拉丁美洲和北美。该公司的内部开发团队正在通过利用非结构化数据源、机器学习和预测分析功能来创建新的财务模型和算法。
挑战
这家管理着近 6200 亿美元资产的全球资产管理公司在安全地分段和保护应用程序(无论是在本地还是在云中)方面面临着挑战。他们还面临私有云安全管理、数据中心内部流量可视化或内部流量横向威胁预防等问题。该公司的安全基础设施团队已经使用 Check Point 解决方案管理防火墙和规则、代理和远程访问。然而,当他们部署 VMware NSX 私有云环境时,他们需要确保其安全,同时维护现有数据中心应用程序的安全性。
解决方案
该公司选择适用于 VMware NSX 的 Check Point vSEC 来保护其私有云环境。该解决方案通过多层保护来保护内部数据中心(东西向)流量。它在网络级别透明地加强虚拟机之间的安全性,自动隔离受感染的计算机以进行修复,并提供对虚拟网络流量模式和威胁的全面可见性。该团队提前部署了 VMware NSX,并决定在没有供应商或合作伙伴协助的情况下为 NSX 部署 Check Point vSEC。在管理员指南的帮助下,他们在一小时内保护了 NSX 云环境。此外,他们还使用 vSEC 的 Check Point R80 修补程序功能将现有的物理 Check Point 网关转变为 vSEC 网关。
运营影响
数量效益
Case Study missing?
Start adding your own!
Register with your work email and create a new case study profile for your business.
相关案例.
Case Study
Data Capture for Afghanistan Forces
Electronic equipments on the field of Afghanistan provided information on the status of the vehicle and to identify potential threats surrounding it to the British Force. The monitoring and interpretation of this data requires robust and sophisticated digitization for data capture and communication.
Case Study
Enhancing Security and Compliance in Remitly's Global Money Transfer Service with Fastly
Remitly, an online remittance service, was faced with the challenge of securing its proprietary global transfer network. The company needed a security solution that could meet PCI requirements and protect customers' sensitive transactions through its mobile application. The solution had to be capable of defending against new and emerging attack types without impacting performance. Remitly also had to deal with irregular traffic patterns, such as a sudden spike in account transfers from a small network segment on the Pacific coastline of South America. The company needed to determine in real time whether such traffic indicated an attack or valid requests. A traditional web application firewall (WAF) would not be able to distinguish this traffic, potentially leading to customer frustration if the IP was blacklisted.
.png)
Case Study
Discrete Manufacturing Industries (Fiberglass Pipe)
The implementation of ERP software in a Discrete Manufacturing organization needs to be strategic, irrespective of its size and capacity. The client had already implemented an ERP system which fulfilled their requirements but was not efficient enough. Efficiency here meant Synchronized Planning, Updating and Multisite Planning. Planning at client’s place was done outside the ERP system. Lack of proper synchronization to the ERP system paved way to huge delays in the changes getting updated in the system. These delays caused disruption in achieving delivery schedules. Multisite Planning is a solution to an organization which has multiple production units (may or may not be geographically separated) and thus needs planning across these units to synchronize production activities within them. The client also has multiple factories and hence Production Planning control is very essential in their case. Since Multisite planning was not possible with Baan ERP system, this was another bottleneck for the client.
Case Study
Major Aerospace Company Automates Asset Management
The O&M division of an aerospace and global security company was using spreadsheets to manually track more than 3,000 assets assigned to students and staff. Maintaining audit trails for this high volume of equipment became increasingly time-consuming and challenging. The chore involved knowing precisely what equipment was on hand, what had been issued, its location and the name of the custodial owner of each item. Every aspect of this task was carried owner of each item. Every aspect of this task was carried out by individuals with spreadsheets. Manually documenting the full lifecycle of each asset added to the burden. This included tracking maintenance requirements and records, incidents and damages, repairs, calibrations, depreciation, and end-of-life data.
Case Study
Securing a Large Data Center in the EMEA Region: An IoT Case Study
A leading data-center operator in the EMEA region, with multiple facilities spanning over 25,000 square meters, faced significant security challenges. The operator experienced interruptions in their internal IT network due to unsupervised work of third-party technicians. Despite having a high-end building control system that provided 24x7 monitoring and control to all the building’s infrastructure, the data center was vulnerable from a cyber perspective as it was connected to the IT network infrastructure. The operator launched an urgent OT cyber security project that included both IT-OT network segmentation and OT network asset mapping and anomaly detection. The main objectives were to harden the security of the server systems, secure the facility’s power supply and server cooling system, strengthen the segmentation between building and operational systems, create a visual OT network map, and set up a system for presenting supply-chain attacks that may threaten the data center through equipment vendors’ maintenance activities.
Case Study
Leveraging Graph Technology for Enhanced Cybersecurity: A Case Study on MITRE's CyGraph
MITRE, a federally-funded, not-for-profit company that manages seven national research and development laboratories in the United States, was grappling with the challenge of managing an influx of cybersecurity data. The constant changes in network environments were impacting the security posture of U.S. government agencies. Intrusion alerts, anti-virus warnings, and seemingly benign events like logins, service connections, and file share access were all potentially associated with adversary activity. The cybersecurity researchers at MITRE needed to go beyond rudimentary assessments of security posture and attack response. This required merging isolated data into higher-level knowledge of network-wide attack vulnerabilities and mission readiness. The challenge was not the lack of information, but the ability to assemble disparate pieces of information into an overall analytic picture for situational awareness, optimal courses of action, and maintaining mission readiness. The team also struggled with fully comprehending a given security environment and mapping all known vulnerabilities.
