Datacenter Infrastructure Security
Context
As part of its IT transformation and in response to increasing security requirements related to payment activities, a financial infrastructure player launched an initiative to strengthen governance and resilience of its network environments. Within the scope of PCI DSS compliance, the client engaged Avaliance to conduct a comprehensive audit of its network and security infrastructures across multiple datacenters. The objective was to assess the existing architecture (MPLS, VXLAN, and security devices), identify improvement areas, and recommend solutions to optimize operational management and security governance.
Challenges
The client needed a clear and structured view of its network infrastructure to ensure service continuity and meet strict PCI DSS compliance requirements.
Key challenges included improving network architecture resilience, ensuring consistency of security rules, enhancing the management of operational (MCO) and security (MCS) activities, and addressing the lack of a centralized framework for firewall rule management across multi-datacenter environments.
Achievements
-
audit of network and security infrastructures across multiple datacenters, including MPLS and VXLAN analysis
-
assessment of operational practices related to MCO and MCS to identify improvement areas in resilience
-
formulation of recommendations to simplify and strengthen the global network architecture
-
definition of an approach to automate and centralize security rule management through a unified console
