A Case Study in Cybersecurity
Background
In light of the world’s growing cybersecurity threats, one of VISTECH’s Managed IT clients asked us to develop and implement a comprehensive strategy to protect their critical data and IT assets. This client is a restaurant franchiser with locations across the United States and 16 other countries. They initially take on the responsibility of providing and configuring the IT infrastructure for their franchises. However, once the setup is complete, the franchisee controls and operates the infrastructure autonomously.
Challenge
This restaurant franchiser had a list of challenges that required attention. As a global company with a worldwide footprint, there are many threats that staff are exposed to. These include international travel where laptops are subject to theft and hacking. It is therefore imperative that laptops can be used securely from anywhere in the world.
Another challenge is the growing risk that cybersecurity brings. This risk increases when U.S. companies operate in other countries as they are targeted both by criminals and sometimes government entities. It is therefore essential to prevent intellectual property from being obtained.
It is also essential to ensure that the stores are running smoothly. They need to have stable connections and channels to the corporate headquarters. This is crucial for them to provide information that supports their daily functions.
Lastly, in today’s connected world, it is essential that the stores support Wi-Fi to create a client-friendly environment, meet PCI (Payment Card Industry) compliance requirements, and properly process financial transactions.
Solution
With a robust understanding of the restaurant franchiser’s operations, VISTECH aimed to document crucial business processes and store configurations. This would ensure that there would be comprehensive coverage across all aspects of exposure.
VISTECH therefore recommended and successfully implemented a comprehensive security framework
- Creating corporate compliance policies for configuration of devices, antivirus, patch management, and endpoint detection. These policies would then be extended to the store level.
- Expanding the use of Microsoft 365 to include endpoint management for all franchise devices—workstations, laptops, phones, and tablets.
- Monitoring and enforcing policies within the corporate infrastructure, including the analysis of data and connections originating from store locations.
- Evaluating and enhancing firewall technology at the store locations to ensure the presence of remote monitoring and management capabilities.
Developing bring-your-own-device policies to regulate corporate applications and data residing on personal devices.
Result
After gaining approval for the wide-ranging strategy, VISTECH completed projects that implemented all its recommendations.
- All portable corporate devices are equipped with data encryption and enhanced security features (e.g., corporately managed device PINs) to protect against unauthorized use.
- All corporate devices can be remotely wiped of all programs and data, including the operating system, rendering the device unusable in the case of theft.
- Standard configurations have been applied to all corporate devices, streamlining support processes.
- Personal devices that contain corporate assets and data are identified and reported to management.
- Remote users and devices benefit from autopilot deployments & refreshes, reducing the need for corporate staff to travel for installations. Instead, stores can purchase and set up equipment that is automatically configured for franchise use.
Proper management of your corporate devices and infrastructure is no simple task, however, it has transitioned from being a choice to an absolute necessity. In the current and future landscape of cybersecurity threats, upholding rigorous management practices is mandatory. While implementing such measures globally poses additional considerations compared to a single office, the vulnerability posed by even a single lost laptop is significantly damaging to confidential data.
The cost of one cybersecurity incident far surpasses the cost of maintaining a more secure operation. It is worth noting that 60% of hacked small and medium-sized businesses go out of business within six months. If you haven’t yet assessed your cybersecurity risk, we urge you to get in touch. Your proactive action today can prevent a potential disaster tomorrow!
Please contact us if you haven’t evaluated your cybersecurity risk yet.
Read about VISTECH getting recognized as a leader among Azure solutions providers HERE!
Let's get in touch
Our goal is to be all about you. We understand the technology, but that’s not as important as understanding you and your business. We’ll deliver technology solutions that are the best…for you.