► An International Travel Agency
► Swiss Federal Railways - SBB
The case studies published here contain only a brief account of the solutions. For detailed information and detailed case studies please email: firstname.lastname@example.org
Task: Development of a Safety Standard based on ISO 17799
This customer is one of the largest international travel enterprises in the world with business based in Europe and North America. The organization covers the whole range of holidays with its own travel agency. Covering hotels, airlines and cruise ships. The company had grown by acquisitions in GB and Europe. Individual business units within the group had large active databases which interactively created the whole IT structure. With the transformation to E-commerce, there was a necessity to develop processes and measures in order to support co-operation within the group. One of the suggested measures was based on the security guidelines set out in ISO 17799.
We compiled an extensive security strategy document with the customer and developed a process for certifying the integration if the firm’s infrastructure. These concentrated on developing security checks, which were adapted according to the risks and issues of the solution coupled with the goal of reaming cost-effective.
Logsys co-operated with the customer’s internal test and audit teams in order to introduce the safety guidelines. A principal part of the work was around the preparatory phase, which included a set of regional Workshops. The basic conditions of the safety guidelines developed by this project permit the customer to introduce new business possibilities faster and with more confidence to than before. The objective here was to ensure everyone was integrated into the process, in the meantime ensuring that continuity was ensured across project plan. The next phase was to offer the project teams sketching manuals outlining the training required to identify the owners of all identified tasks. All risk evaluations were also undertaken which detailed all aspects in the prime data areas of this enterprise, namely the airline.
The framework of security guideline developed in this project gave the customer a faster and safer implementation path for new business opportunities
Task: Migration of the Security infrastructure
The Swiss Federal Railway is a complex organized, national enterprise, which has various business relationships to domestic and foreign partners, enterprises and customers. In order to obtain the greatest possible rationalization and customer focus of the business processes, the SBB operates a central communication round table, which makes technical infrastructure available for electronic customer and partner interaction for years to come. The fact that this technical communication round table meets high safety requirements is obvious.
The DMZ (De-Militarised Zone) communication platform has grown over the years and was based on different network and system components. Beyond that particularly expensive Frame Relay lines were used, whilst modern economical Internet safety technologies still remained in the background. The management of the customer and partner collaboration was unclear and thus became a security risk. Organizationally the operating of the safety platform was to a large extent assigned to a large outsourcer.
Logsys were asked to take over the Lead for the conception and realization of a new communication safety platform. A goal of the project was to migrate at short notice important strategic partners and customers onto the new DMZ in order to migrate in a second phase additional new partners and customers onto the new platform.
On Logsys recommendation, the migration strategy was by amended to being a “soft” priority, with controls put in place to assess individual cases one by one. The conception here was to partition the tasks into the following elements:
All planned activities were successfully completed on time. The increase in value of the new infrastructure became visible immediately, so much so that a previously un-planned link up between customers and partners was possible. The SBB did not only reach cost savings on the IT-side, but also a substantial improvement in the security infrastructure as well as an increased flexibility and dynamic in dealing with customers and partners.