Intelligent Tech Channels Issue 23 | Page 33

FUTURE TECHNOLOGY In order to ensure the most effective security solution for this airport, IGA engaged with Destel, a Managed Detection and Response (MDR) partner, to fully understand the best options for the airport. IGA’s Chief Information Officer Ersin Inankul, said: “One of the biggest challenges of this airport is integration.” Hence, a security solution that is integrated was one of the most important requirements for IGA. The leadership wanted the airport’s entire infrastructure to be fully aligned, from the network all the way down to the endpoints. “We were looking at the integration, visibility and implementation features of the products,” said Bayarcelik. In addition, because the airport is building this structure in multiple phases, it required a solution that has the ability to easily scale. The projection is that IGA will expand from serving 90 million customers in phase one to 200 million customers in phase three. To scale at that extreme level, IGA understood that on top of incorporating an integrated security architecture, they also needed to ensure ease of use for their employees. Lastly, Inankul stated that: “Endpoint is absolutely critical for me.” IGA and Destel, its MDR provider, understood the importance of securing the endpoints using solutions that provide both Endpoint Detection and Remediation (EDR) capabilities as well as Endpoint Protection Platform (EPP) features. Destel will manage IGA’s IT infrastructure for the next three years and requested an endpoint solution that has in-depth visibility and advanced threat hunting and investigative capabilities. An airport that scales needs a security solution that scales too To fully secure the airport, IGA and Destel deployed the Cisco AMP Everywhere solution, which encompasses Cisco AMP for Endpoints, AMP for Networks, AMP for Email, AMP for Web, and Threat Grid. INTELLIGENT TECH CHANNELS Issue 23 Airports are goldmines for hackers. With a full Cisco Security integrated architecture, IGA feels confident that customer and business data will be protected and secured. Destel SOC Manager, Suat Celikok, said: “Using AMP Everywhere, we gain visibility, unified information sharing, and a faster time to detect and respond to threats.” Additionally, Cisco AMP Everywhere is easy to deploy. Its flexibility will allow IGA to simply scale its IT infrastructure as the airport and IT team expands throughout their construction phases. Through the integrated architecture, IGA is fully protected, from network, to email, to web, all the way to endpoints. One of IGA’s SOC analysts, Anil Kus, said: “We are using Cisco AMP Everywhere because it gives us file reputation, file analysis on our endpoint platform, web platform, network platform and email platform.” Using AMP Everywhere, IGA will be able to see a threat once and block it everywhere else in their environment, thus decreasing the security administrations workload and time to detect and remediate against threats. “Without integration, my team will be focusing on false alerts and will be spending more time on different consoles,” says Celikok. On top of everything, Cisco AMP for Endpoints gives IGA visibility into all devices, files and applications that enter into the airport’s network. Through AMP’s retrospective security, IGA will be able to see the entire history of a particular file or device, leading to more effective threat hunting and investigative capabilities. Securing the central hub With the full Cisco AMP Everywhere architecture fully deployed in the airport’s infrastructure, IGA is able to protect both the airport’s business and customer data. Since deploying, they already witnessed greater threat hunting and investigative analysis and in-depth visibility in their network and endpoints. With the next phase of the airport construction underway, IGA’s leadership is confident that they can easily scale this solution to their business goals. 33