Softline AG //
Company //
References
Renewal of service access for the production data network
»We have known Softline for many years and are extremely satisfied with their services. For us, it was clear that we would tackle this project with them as well.« Operational Engineer Central Network Services
The energy provider, a long-time customer of Softline, planned to renew the service access to its production data network. Since we are very familiar with its IT environment, we were allowed to take on this challenge and set up a new remote access system in parallel with the existing one - strictly in accordance with the recommendations of the German Federal Office for Information Security (BSI).
The challenge
- Renewal of the remote and service access of the production data network during operation, based on a Virtual Private Network (VPN)
- Installation and commissioning of a complex multi-level IT security infrastructure
- Conversion of existing user accesses to the new system
Our solution
- Validation of an alternative to the former solution
- Development of a rough concept and the processes
- Development of guidelines & rules
- Installation of the solution components (Citrix Netscaler MPX/VPX, CSISO ASA, RSA OTP, Juniper Firewall)
- Monitoring and testing of functionality
- Support as well as troubleshooting in case of unforeseen events
- Logging and documentation
- Instructing the administrators
The highlights
- Official security audit after project completion (OSSTMM audit)
- Secure gateway for remote maintenance access
- Multi-factor authentication via hardware, SMS or smartphone tokens
- Establishment of a multi-level firewall infrastructure with different security zones
- Monitoring of all external accesses via a dedicated monitoring system
- Establishment of a secure data exchange platform