We’re a people focused
organization

A prominent shoe designer and manufacturer encountered the task of transitioning their IT service management system from ServiceNow to SolarWinds without compromising the functionality of critical use cases. With an impending deadline to retire ServiceNow, Toms required support to streamline the migration, improve workflow efficiency, and fully leverage the capabilities of SolarWinds in the process.

Our team worked closely with Toms to meticulously orchestrate a seamless transition from ServiceNow to SolarWinds. The project commenced with a comprehensive discovery phase, allowing us to delve into the current environment and thoroughly assess the existing ServiceNow setup. By pinpointing areas for enhancement and devising a detailed design and actionable strategy, we paved the way for a successful migration. A pivotal focus of the project was optimising workflow design. We thoroughly reviewed Toms' current workflows in ServiceNow, identifying opportunities for improvement and reshaping them to better align with SolarWinds functionalities. This involved refining severity/priority settings, SLAs, onboarding/offboarding procedures, and approval protocols, ensuring efficient operations within the new platform. Moreover, we tailored reports and dashboards in SolarWinds to cater to Toms' specific business requirements, offering valuable insights and bolstering decision-making capabilities. Implementation of notifications for prolonged or dormant tickets boosted overall efficiency and responsiveness. Data migration and integrations played integral roles in the project's success. We effectively transferred two years of incident records for reporting purposes, with additional historical data migrated as necessary. Seamless integrations with platforms like Microsoft Teams were established to foster enhanced collaboration and communication. Throughout the project lifecycle, we strongly emphasised training and knowledge transfer for the internal team. Collaboratively developing training materials and conducting hands-on sessions ensured the team was well-prepared to leverage SolarWinds to its full potential.

The client faced challenges in managing a high volume of security alerts (976+) across a mixed environment of 146 endpoints. Their infrastructure included a combination of Windows workstations, servers, VMware hosts, Office 365, and security tools like CrowdStrike EDR and Cisco Umbrella. Despite leveraging Arctic Wolf services for monitoring and alerting, they struggled to contextualize and prioritize alerts, evaluate risks, and efficiently remediate vulnerabilities. Additionally, undefined hardware details, complex configurations, and dependency risks added complexity to the remediation process.

Our team provided managed security services tailored to the client’s needs. We reviewed security alerts daily and conducted weekly sessions to contextualize findings, aligning priorities with their business requirements rather than generic industry standards. We assisted with risk assessment, provided pros and cons for mitigation options, and offered recommendations for configuration changes. By developing customized remediation plans and runbooks, we empowered the client to handle common issues effectively. Proactive measures included ensuring alignment with best practices, such as enabling MFA for AnyConnect users and addressing complex firmware risks.

Our client has initiated a comprehensive evaluation and approval process for the Google Cloud platform, aiming to align with the stringent security standards outlined in the GC Canadian Centre for Cyber Security (CCCS) Cloud Security Controls profile of Protected B, Medium Integrity, Medium Availability (PBMM). This endeavour involves meticulously examining the Google Cloud environment to ensure compliance with the specified security controls. This enables the organisation to enhance its cybersecurity posture and safeguard sensitive data following industry best practices.

The project meticulously outlined procedures for collecting crucial evidence to ensure compliance with security controls. Tailoring of the Canadian Centre for Cyber Security's ITSG-33 Security Requirements Control Matrix (SRTM) specifically addressed PBMM requirements within the Google Cloud ecosystem. Each security control's evidence-gathering process underwent thorough scrutiny against established standards to confirm correct implementation and adherence to stipulated criteria. This method facilitated a comprehensive assessment of the security landscape, empowering the organisation to rectify deficiencies and bolster cybersecurity resilience significantly proactively.