CASE STUDIES

Title : Governance (ISO 27001 and Cobit 5) Advisory for a large airline company

Client and client needs :  The client is a leading airline company based in the region. The airline is one of the oldest, and has been around the region. In the quest for corporate governance, the airline has embarked on alignment to leading standards of the IT governance quest. This required specialist skills and people needed to be mature while consulting the client on their requirements.

Solution : Elite has high-end skills related to ISO 27001, Cobit, ITIL, ISO 20000. The client needed someone able to marry these skills and aid the airline in their quest for ISO 27001 as well as the Cobit 5 Governance. Elite worked with the client to help them attain the ISO 27001 certification. Elite also worked with the client to give them insights to achieving the Cobit 5 compliance and also reach towards their goal of Governance.

Benefits : The client got the necessary expertise from Elite in a cost-effective manner. Client also got a subject matter expert for each of the area along with integration capabilities, so client was able to appreciate the skills and benefited from the overlapping skills, which meant the client did not need to carry out multiple repeated tasks and instead leveraged on the know-how to achieve a rapid transformation.

Title : Technology Risk Assessment

Client and client needs :  The client is a leading hospital in Saudi Arabia.

Solution : Elite worked with the client and conducted the technical risk assessment. The assessment was conducted for all technology components. Along with this assessment, Elite mapped the client concerns to a heat map. The heat map aids the clients into looking at various issues and mapping them to high-risk and low-risk categories so as to assign priority for fixing. The Technical Risk Assessment comprised of Penetration Testing (Black Box), External Vulnerability Assessment, firewalking, checks for brute force attacks & denial of service etc.

Benefits : The client has got a view of vulnerabilities in the IT setup. The client also gets steps for closing the issues as well as priority requirements for mitigation. The client now knows for sure what they need to fix and this is the biggest benefit in the deluge of information security that comes across.

Title : Technology Risk Assessment

Client and client needs :  The client is a medium sized bank and required to get a technical risk assessment done from a CBB compliance perspective.

Solution : Elite worked with the client and conducted the technical risk assessment. The assessment was conducted for all technology components. Along with this assessment, Elite mapped the client concerns to a heat map. The heat map aids the clients into looking at various issues and mapping them to high-risk and low-risk categories so as to assign priority for fixing. The Technical Risk Assessment comprised of Penetration Testing (Black Box)

Benefits : The client has got a view of vulnerabilities in the IT setup. The client also gets steps for closing the issues as well as priority requirements for mitigation. The client now knows for sure what they need to fix and this is the biggest benefit in the deluge of information security that comes across.

Title : Technology Risk Assessment

Client and client needs :  The client is a government ministry.

Solution : Elite worked with the client and conducted the technical risk assessment. The assessment was conducted for all technology components. Along with this assessment, Elite also conducted a network review and mapped the client concerns to a heat map. The heat map aids the clients into looking at various issues and mapping them to high-risk and low-risk categories so as to assign priority for fixing. The Technical Risk Assessment comprised of Penetration Testing (Black Box/ White Box/ Grey Box), Vulnerability Assessment, Configuration Review of servers, infrastructure applications, databases, routers, switches, firewall, anti-virus etc. The assessment was also done for performance in the infrastructure side.

Benefits : The client has got a view of vulnerabilities in the IT setup. The client also gets steps for closing the issues as well as priority requirements for mitigation. The client now knows for sure what they need to fix and this is the biggest benefit in the deluge of information security that comes across.

Title : Continuous Data Protection with disaster Recovery for a financial organization in Bahrain

Client and Client Needs : The client is in a diversified financial services firm in Bahrain. As a part of the backup and disaster recovery requirements, the data on the user’s needs to be backed up in real time with multiple version support. The recovery time for these data needs to be immediate. The client also needs to take images of the critical machines which can be restored to any platform in case of system failure.

Solution : The requirement is achieved by introducing Dell SonicWALL CDP based solution. Elite have proposed CDP and implemented with real time backup features on the client machines. The Bare Metal Recovery with universal restore option allowed them to keep images and with faster restoration options.

Benefits : The files and folders of client machines are backed up in real time as soon as a change is occurred on the system. Multiple version configuration allowed them to restore the files based on time stamp. Critical machines are configured with bare metal recovery option to keep images of the systems. The universal restore option provides restoration of these images to any hardware platform in very less time.