Pragmatic Approach, Practical Designs, Secure Implementations

Infrastructure Hardening Standards

Large financial and insurance company was in the process of refining existing set of technology infrastructure security hardening guides. Clarionics team was asked to perform review of variety of standards to ensure their consistency and coverage.

Standards included HP-UX, AIX, Solaris and Linux platforms and also a number of application and network technology solutions.

Cloud Based Application Security Architecture

Leading Canadian Internet provider is in the process of implementing new core set of systems to support a growing business. New services are implemented using a combination of cloud-based applications and internal systems.

Clarionics team was engaged to createa roadmap for application and data security in a cost-effective manner, without compromising any critical assets, and providing directions for the future to support business growth.

Read more ...

Priviliged ID compliance reporting

Large Canadian financial institution has a requirement to periodically report on OS level Privileged user ID's across mainframe (RACF, ACF2), Unix/Linux, Active Directory, AS/400, Lotus Notes.

Clarionics team was asked to perform detailed review of current report generation and recommend business process and technology improvements for both short term and long term solution in order to improve data quality, report accuracy and reduce amount of time spent by expensive system administration resources.

Highly Availabile Oracle IAM Architecture

Canadian pension fund successfully implemented base identity and access management solution based on Oracle suite of products and wanted to extend it's capabilities to critical business applications. Initially IAM was not implemented using all components in highly available configuration. High availability design created and implemented during this project will allow client to confidently offer security and identity services to many critical business applications and will simplify infrastructure and IAM components upgrade and maintenance without scheduled downtime. Components addressed in this design include Oracle Access Manager (OAM), Oracle Internet Directory (OID) including integration with Active Directory.