Case History: Water Management Services
This means that vulnerability information is always confidential and data is always under the customer's control.
For this reason Pluribus One guarantees the privacy and anonymity of its customers in all phases of work and assistance, including the description of the case history.
Business scenario
The (final) customer is a regional public company operating in the water sector.
Web services owned by the company are hosted in 3 different locations:
- Accounting, staff, assets -> cloud maintaned by a system integrator;
- Public website -> AWS;
- Service orders, address book -> internal datacenter.
Customer need
The customer interest is to enable the SOC protecting the data managed through the services and achieving compliance with the AGID requirements.
Key benefits after Pluribus One's assistance
1. Possibility to monitor services located in 3 different sites with a single installation
2. Awareness of the amount of traffic toward the services
3. Possibility to engage the software providers regarding vulnerabilities affecting the services and discovered by means of Pluribus One Web Application Security®.
Product/service used to support the customer:
When
January 2021 - current
HW requirements of the WAS® installation
8 vCPU – 8GB RAM – 300GB HDD
Connected components
Data Source: Apache HTTP Server
Monitoring: WAZUH Security Platform
Services to monitor
Number of services: 6
Requests/day: 2Mln hit/day
Sought retention period: 30 days
