Blackbaud is the world’s leading cloud software company powering social good. Serving the entire social good community—nonprofits, foundations, companies, education institutions, healthcare organisations and individual change agents—Blackbaud connects and empowers organisations to increase their impact through cloud software, services, expertise, and data intelligence. The Blackbaud portfolio is tailored to the unique needs of vertical markets, with solutions for fundraising and CRM, marketing, advocacy, peer-to-peer fundraising, corporate social responsibility, school management, ticketing, grantmaking, financial management, payment processing, and analytics.
Serving the industry for more than three decades, Blackbaud is headquartered in Charleston, South Carolina, and has operations in the United States, Australia, Canada, and the United Kingdom.
Blackbaud has shifted from a datacentre hosting provider to a cloud-based SaaS service provider in order to facilitate a more agile environment and enable scalability, continuous development, and integration. When Blackbaud began the move in 2016, Mario Mendoza, Team Lead, Security Architecture and Business Engagement and Certified Information Systems Security Professional (CISSP) at Blackbaud, contacted the company’s incumbent security partner. “We wanted to ensure the same level of data protection in the cloud that it supplied for our on-premises servers without creating roadblocks for our developers,” he said. “The more we discussed the migration and our future plans with them, the more we realised they couldn’t do it.”
In addition to securing its workloads in the cloud, Blackbaud needed a solution that enabled it to fulfill its compliance requirements, such as Payment Card Industry Data Security Standard (PCI DSS) and SOC 2 standards. Naturally, the company also wanted to protect its systems against malware, provide file integrity monitoring, inspect logs and networks, and protect against malicious web browsing. Finally, it needed a solution that could work across its multi-cloud environment.
"Trend Micro Cloud One - Workload Security checked all the boxes across cybersecurity and DevOps."
Team Lead, Cyber Security Architecture and Engagement
Why Trend Micro
Mendoza and his team began looking for a new security vendor. Trend Micro’s experience securing multi-cloud environments was a key selling point. “Trend Micro is one of just a few vendors that provides the same full security and monitoring capabilities across both Microsoft Azure and AWS,” said Mendoza.
Blackbaud is a DevOps shop, so any shift in security vendors required buy-in from the DevOps teams. The fact that Trend Micro could protect Blackbaud’s hybrid cloud environment without slowing down its DevOps teams were critical. “We compared solutions between several companies, and Trend Micro was the most complete solution,” said Mendoza. “Trend Micro Cloud One - Workload Security checked all the boxes across cybersecurity and DevOps, plus it gave us hosted intrusion-detection/ prevention, in addition to PCI DSS compliance, which was an added benefit for us.”
Blackbaud purchased Trend Micro’s solution in 2016. Workload Security uses a comprehensive set of policy-enforced security controls to automatically protect organisations from network attacks and vulnerabilities, stop malware and ransomware, and detect unauthorised system changes.
Trend Micro provides full capability monitoring for both Azure and AWS, with workloads in both environments. Workload Security is optimised for the virtualised data centre, which helps Blackbaud’s DevOps and security teams maximise security in their multicloud environment with minimal impact on performance.
Blackbaud also purchased the Trend Micro Premium Support Program (PSP), which includes a named customer service manager who serves as an ongoing contact to assist the company with urgent issues and provide guidance to elevate its security posture. “This is the best value we’ve gotten out of a support package,” said Mendoza. “We can reach out at any time and know they will be there to help us get to the bottom of an incident. They ask for input from us, and we know we are a valued customer.”
"Trend Micro is one of just a few vendors that provides the same full security and monitoring capabilities across both Microsoft Azure and AWS."
Team Lead, Cyber Security Architecture and Engagement
With Trend Micro’s help, Blackbaud is migrating to the cloud more easily and securely. From the start, Blackbaud’s IT environment utilised the anti-malware, safe web browsing, and log inspection modules from Trend Micro. Blackbaud’s environments include microservice architectures and container development, and Trend Micro provides protection for clusters and the host platforms. “Trend Micro has detected potential incidents that have allowed us to react with lightning speed and mitigate attacks before they could impact users,” said Mendoza.
Blackbaud’s security and DevOps teams now collaborate more effectively and embed security into new applications from the start, while Workload Security automation helps take some of the load off the company’s internal IT team and ensures that they stay ahead of emerging threats. “In AWS and Azure, things change constantly,” said Mendoza. “The policy-enforced security controls help to automatically protect us from network attacks. We don’t have to deploy agents manually anymore, saving us time.”
PCI compliance used to require Blackbaud employees to spend hours gathering and providing compliance evidence to assessors. With Workload Security, that compliance data is now provided to assessors with the click of a button. “Trend Micro Cloud One – Workload Security provided the most complete package that we needed in terms of overall business line requirements—support, infrastructure, quality of product, features—all bundled together. It’s been a really good experience.”
Blackbaud is committed to staying ahead of emerging security challenges and proving that its systems are fully protected and compliant. Trend Micro is a partner in helping Blackbaud maintain constant vigilance in those areas. “Trend Micro is always on the cutting edge of new threats, and they include us in those efforts. As a market leader, that’s what we look for in partners,” said Mendoza.