Striata provides around the globe. Striata鈥檚 applications and services enable financial services giants, telecommunications companies, and insurance providers alike to better connect with their customers through innovative, digital-first communications. This case study follows Striata and their Head of Global Managed Infrastructure, Riaan Olivier, along their journey to modernize, streamline, and further secure their IT.
- Organization: Striata
- Size: 140+ Employees
- Location: United States (New York, Florida), UK, Asia Pacific, and Africa
- Problem: Need for standardization across a global, distributed environment
- Goal: Unify and automate while achieving PCI and ISO27001 compliance
Introduction
Riaan Olivier has worked with Striata for the past 16 years in various capacities. His duties have run the gamut, including working as a reliability engineer, as a Striata application specialist, an infrastructure designer, a sysadmin for Linux庐 and Windows庐 users, and much more.
Head of Global Managed Infrastructure, Striata
When asked about his day-to-day duties, Riaan said, 鈥淢y team supports all the Internal systems and Striata product platforms for clients. We also work with various databases and web servers across different operating systems.鈥
With his extensive industry and Striata knowledge, Riaan realized he needed to make a change from traditional identity management platforms to help reach overarching company initiatives regarding compliance for PCI and ISO27001 standards. With those goals in mind, Riaan said, 鈥淲e decided to start using cloud identity management solutions to support our international operations, integrate seamlessly with our various internal systems, and reach compliance goals.鈥
Background
With company divisions all over the globe, Striata needed to standardize their authentication processes.
鈥淭his last year, in November, the CEO of the company decided that since we have multiple branches of the company all over the world, we should standardize how everything functions,鈥 Riaan said, adding that the team he now leads, Global Managed Infrastructure, was created to help support this initiative.
鈥淲e are in charge of managing all of Striata鈥檚 infrastructure and implementing IT standards,鈥 Riaan said. 鈥淥ne of the biggest considerations is making sure we have standardized security processes across the globe in addition to PCI and ISO27001 compliance.鈥
Challenges
The goal of standardizing identity management worldwide made it clear that traditional solutions would present problems.
鈥淲e had to find a solution that we could effectively implement across the globe,鈥 Riaan said. 鈥淲e needed it to work across all regions, operating systems, and user devices, as well as servers.鈥
Additional, interrelated challenges include:
- Non-Windows Machines: Like many modern IT environments, Striata uses all three major operating systems 鈥撯 Windows, macOS庐, and Linux. Some of the systems are local and some exist in the cloud. Riaan said, 鈥淲e have a wide spectrum of different operating systems. So our systems and implementations need to support all of them.鈥
- Latency: 鈥淚t鈥檚 more difficult for an international company to implement solutions that don鈥檛 experience latency problems,鈥 Riaan said. 鈥淟atency can affect speeds and, in turn, create a bad user experience. For Striata, 探花大神庐 works well because the servers are hosted all over the globe.鈥
- Remote users: Aside from having a global workforce, much of Striata鈥檚 teams work remotely or split their time between the office & remote work. Riaan said, 鈥淭his includes support engineers and system administrators located internationally to provide 24/7 support. They need to be able to access systems across the globe.鈥
- Outdated Thinking: 鈥淪ometimes people get stuck in their current way of thinking. They think that you have to continue doing things a certain way. But the fact is there are better solutions out there that have changed with technology advancements,鈥 Riaan said.
The Solution
Riaan asked himself a simple question: 鈥淗ave you searched around to see if there is something better out there?鈥 That鈥檚 when he found 探花大神. 鈥淲e tested the 探花大神 platform with 10 free users, and everything was great,鈥 Riaan said. 鈥淚t proved to us that we could do things we could have never done previously, and the turnaround times were so much faster.
After testing, the Striata team decided to rollout 探花大神 Directory Platform.
Implementation
Striata made a focused effort to implement 探花大神. Some of the uses so far include:
- VPN – The VPN is an invaluable tool for Striata because it enables the global workforce to securely access critical pieces of infrastructure remotely. 鈥淲e鈥檝e configured 探花大神 as the master source for the VPN account,鈥 Riaan said. 鈥淯sers log in as the actual 探花大神 user on the VPN. It makes it easier for people because now they only have one set of login records. Plus, we鈥檙e adding multi-factor authentication on top of the 探花大神 login via LDAP to increase security.鈥
- User and System Centralization – With the previous systems it would be very hard for Striata to standardize login across multiple operating systems, especially Linux. Riaan explained, 鈥淗aving that central layer that works the same across different platforms puts us in a much better position.鈥
- System Management – 鈥淪ecurity is of utmost importance to Striata as a company. The ability to lock individual systems down provides a valuable chunk of the overall security posture the team seeks to live by. 探花大神 helps our system administrators and support engineers by giving them the ability to perform tasks that weren鈥檛 easy in the past 鈥 like rolling out policies to different OSs,鈥 Riaan said. 鈥淭hat is just one of many crucial features that helps our organization increase security across the board.鈥
The Result
In just six months, 探花大神 helped Striata achieve results that would have taken much longer with traditional identity management solutions. This is all aided by automation, which helps Striata reach compliance goals and provide enhanced security along with time and monetary savings.
Automation
Perhaps the best result for Striata is the ability to automate much of their user management. Riaan detailed for us how this process works:
鈥淭he moment that a user is onboarded, we make API calls, and based on predefined rules, it literally assigns the user to the required system with the relevant permissions. On the flip side, to remove a user from every single resource they had access to in one step, is crucial for us. Once we鈥檝e disabled a staff member from the Internal Management System, the automation does the rest. The backup, reallocation, and deactivation access across all the systems is immediate and seamless.鈥
Compliance
鈥淎utomating all of these user management tasks is great but we also needed a way to incorporate it into our change control and records for auditing purposes,鈥 Riaan said.
鈥淔or ISO 27001 certification this is important because we can prove that we already have an automated, repeatable process in place that provides the required compliance records.鈥
鈥淥ur automated process is well-documented and we record the events, or logs, of each activity.鈥
Security
鈥淣ot only are we moving away from human error failures or time delays, these events and activities can be monitored by our security systems and be presented on a dashboard to our security analysts,鈥 Riaan said. 鈥淭hey can very easily detect unusual or unexpected activities without logging onto multiple systems.鈥
Time Savings
Performing tasks manually such as removing a user鈥檚 access from every system represents a major chunk of time normally required from several different people. But not with automation. 鈥淲e can mark the exact date an employee will leave the company. The system then activates at that exact date and time,鈥 Riaan said.
鈥淭his is where using 探花大神鈥檚 single sign-on is great because once a user is centrally deactivated, they get logged out of all systems.鈥
Monetary Savings
鈥淭ime spent completing these tasks really adds up. Not only does the initial task need to be performed, but we also add a verification step to make sure it was done correctly,鈥 Riaan said.
鈥淎utomation allows us to implement, test, and verify once 鈥 then reap the benefits going forward. Over a year, we can probably save thousands of dollars with 探花大神 in conjunction with our automated systems.鈥
鈥淲e were very quickly able to realize a positive ROI. The fact that we were able to automate everything and provide a single sign-on across all systems, in less than six months, made the investment in automation and tools very worthwhile.鈥
More Info
For more information on how you can decrease costs, spend less time on onboarding, gain peace of mind about security, and reduce compliance audit hassle, drop us a note at [email protected].