Swisscom IT Services

Protects its cloud computing offering with Trend Micro Deep Security

Overview

Swisscom IT Services provides modern cloud computing services and is establishing its reputation as the Swiss partner of choice for next-generation outsourcing. The company has stringent requirements when it comes to securing the IT assets that underpin its services.

With the emergence of new requirements from a constantly changing market, Swisscom IT Services responded with a new cloud service, called Dynamic Computing, which complements its existing outsourcing portfolio. It allows companies to book or cancel resources on demand and at short notice so that they only use and pay for what they really need. The service can be integrated seamlessly into any existing IT infrastructure, providing a high degree of investment protection for customers.

Challenges

Swisscom IT Services had to set up a completely new IT infrastructure that was flexible enough to adapt to changing business requirements. The virtual server architecture is based on VMware’s Hypervisor.

This ambitious project, which involves about 6,000 servers being transferred to the virtual infrastructure, brought with it the challenge of finding an efficient yet cost effective security solution for the environment. It was crucial t have a high level of protection for the cloud services, and the assets underpinning them.

Solution

Swisscom IT Services needed a high-performance, state-of-the-art security solution that could guarantee the same high level of security for the virtualized environment as for the physical servers. The company also wanted a security solution that could leverage virtualization to lower resource requirements and costs with the automation of multiple tasks and better manageability of the environment.

In terms of resource utilization, Swisscom IT Services wanted a higher level of availability on the virtual machines (VMs) and a lower CPU requirement with agentless protection of virtual Windows machines. The company also set the requirement for multi-tenant capability, an essential part of any cloud service, and sought out a solution that could comply with all international security standards and integrate seamlessly into existing workflows and processes. All these requirements led Swisscom IT Services to look at Trend Micro Deep Security.

Following a period of thorough market research, they found the Trend Micro solution was the best fit for their requirements. The solution underwent testing in a proof of concept phase, resulting in Swisscom IT Services deciding to adopt it.

Deep Security protects critical applications and confidential data on physical, virtual and cloud- based servers, while ensuring application availability and the stability of business processes. These capabilities enable it to be used for advanced system protection in dynamic data centers like the one at Swisscom IT Services. One or more of the protection modules can be deployed in a single agent on the server or virtual machine.

Besides intrusion detection and prevention function, Deep Security provides protection for web applications, application control, firewall, integrity monitoring, and protocol checks. As a result, the solution fulfilss a key customer requirement: provision of at least the same level of protection as that available for the physical infrastructure.

Deep Security additionally reduces the risk of anomalies as well as data theft and manipulation. The solution’s multi-tenant capability enables Swisscom IT Services to tailor its services—including the management model—to the needs of each business. Customers can choose to manage their environment themselves, or to entrust the management of their applications to Swisscom IT Services while retaining the ability to carry out occasional checks via a monitoring function. If required, the service provider can also manage access permissions and role definitions, or work with existing templates for certain types of applications.

The centrally managed solution also supports compliance with important standards and legal regulations at the customer site. For example, Deep Security covers about 95% of the security measures described in the Payment Card Industry (PCI) 2.0 standard.

Results

Since 2013 the team has worked with Trend Micro to introduce the solution; 600 servers have been migrated and the benefits of Deep Security include: high level of task automation—for provisioning virtual machines, and creating new security profiles, and reducing costs, saving resources, and providing higher level of security. The agentless anti-malware module, based on VMware vShield, provides protection for all VMs on a server. Pattern files only need to be loaded once per hypervisor for serial scanning of the VMs. This enables Swisscom IT Services to achieve better resource utilization due to higher availability of the VMs, consistent performance, and lower memory and CPU requirements.

The Trend Micro solution’s agentless capabilities deliver decisive benefits, especially for the provision of cloud-based services. This is because the cost aspect of such a large number of servers makes it important to have a high density of VMs per machine.

The project in Switzerland has far-reaching benefits. The knowledge gained during the project will be available further afield since all the changes and extensions to the system that were made during the implementation at Swisscom IT Services will be available in future versions of Trend Micro Deep Security.