Transcription
Case Study for Leading Cancer CenterLeading Cancer CenterPartners with ColorTokensto Strengthen its CyberResilience and Reduce Risk
Case Study for Leading Cancer CenterOverviewOne of the leading, nationally ranked cancer and research centers in the U.S.with multiple data centers and campuses, has extensive collaborations withmany universities across the globe. Their network is comprised of 10,000 servers running a mix of modern and legacy applications, 20,000 endpoints,and 120 petabytes of data.The cancer center witnessed an increased frequency of sophisticatedransomware attacks, specifically targeting backup administration control.They had a clear need to control the processes during backup along withminimizing exposure to the environment. Due to the large amounts ofdata generated daily requiring granular visibility and control, they neededto protect the backup servers storing the EMR (EPIC) system data againstransomware attacks. In addition, the radiation oncology application thataccounts for 60% of the hospital revenues also needed protection frommalware and ransomware.The healthcare provider was experiencing lengthy timelines and highcosts to achieve the desired outcome with their existing solution and wereexploring alternate Zero Trust micro-segmentation solutions that could bothsimplify the process from installation to enforcement and get their systemsup and running with no disruption to existing infrastructureDesired Project OutcomesSecurityautomationThe ChallengeSecure EPIC: The customer usingtraditional tools (FW, ACL’s) to secure theirpatient information and related systems.However, considering recent ransomwareattacks, they wanted to adopt a Zero Trustarchitecture to secure its patient data andsystems.Secure Legacy Systems: The customer hasseveral systems in the network that are nolonger supported by the manufacturer, nopatches are available and hence these wereleft exposed to attacks.Block Unauthorized Traffic: 66% of thehealthcare provider’s revenues are tied totheir ability to perform diagnostic workin one department. They wanted to gaincomplete visibility into this application andquickly block un-authorized traffic withoutmaking significant changes to the networkarchitecture.Segment a Flat Data Center Network:With a flat network, even if one applicationis compromised it can be used as a launchpad to spread ransomware throughout thethroughout the entire network.Time and costefficienciesReduced risk
Case Study for Leading Cancer CenterColorTokens SolutionThe ColorTokens team worked with the IT infrastructure team on a holistic plan for achieving the desired outcomes,implementing Zero Trust micro-segmentation throughout the network on all systems, and tracking their Zero Trust journeywith strategic business-driven reporting.The ColorTokens solution:Zero Trust-based approach for securingcrown jewels that account for 60% ofrevenuesAutomatic policy recommendations withdynamic policy graph for high scalabilityML/AI-based auto-tags for automaticallytagging 10K serversEnd-to-end Zero Trust that can be deployedon servers and endpoints on-prem and/orcloudWhy ColorTokensEasy to deploy and use micro-segmentation based on Zero Trust principles.No hardware required, and zero disruption to existing infrastructure.Easy to manage – didn’t require a large team or intensive training to learn how to use Xshield.To isolate these legacy systems, it would have taken the customer several months and significant effort to re-architect theexisting network to achieve the same results that ColorTokens achieved in 2 days.3
Case Study for Leading Cancer CenterColorTokensZero Trust ProcessPilot kick offProving Phase 1 use cases,then validationExpanding Phase 1 use casesto include more complex usecasesIn principle technical sign-offDashboard review of ZeroTrust posture with ChiefDigital OfficerPricing proposal submissionand negotiationsGo/no-go decision point –approval provided by CIO andCISOBy comparison, the competition (VMware NSX and Illumio) lacked severalcapabilities that were needed for a successful outcome:Ease ofmanagementLegacysystem supportNo disruptiondeploymentNo changes toexisting infrastructureThe customer appreciated the ease-of-use of the ColorTokens solution and one ofthe critical factors which helped us progress to a win was the creation of segmentswith zero disruption/changes to the existing infrastructure. With our solution, thecustomer had access to high availability, real time reporting, and increased businessvelocity and agility.Use Cases DemonstratedIsolate and secure Epic Back-up Servers which can cause catastrophic losses andoperational downtime in the event of an attack.Secure legacy systems by isolating them from the network to reduce risks.Provide visibility into all network connections on the systems to monitor risklevels.Segment CITRIX servers and enforce policies such that servers can only makeauthorized network connections.Ring-fence crown jewel application and Radiation Oncology application.
Case Study for Leading Cancer Center“With ColorTokens Zero Trust solution, we wereable to achieve the desired outcome we neededwith surprising ease and zero disruption given thecomplexity of the task. This resulted in breakingdown silos within our organization, creating agilityand driving decision-making using accurate data—we’ve seen amazing results with ColorTokens.ColorTokens Inc. is a leading innovator in SaaS-based Zero Trustcybersecurity solutions providing global enterprises with aunique set of products and services for securing applications,data, and users across cloud and hybrid environments. Throughits award-winning Xtended ZeroTrust Platform and contextaware machine learning-powered technologies, ColorTokenshelps businesses accurately assess and improve their securityposture dynamically.As cloud adoption grows, traditional perimeters get redefined,and new attack vectors and threat actors materialize,corporations recognize their security posture needs to reflecttheir Zero Trust philosophy. ColorTokens’ technology allowscustomers to achieve Zero Trust by utilizing rich, meaningfulcontextual information about the application, microservice, orprotected resource, so customers can apply Zero Trust with assecure of a perimeter as they can. ColorTokens’ cloud-basedSaaS platform can automatically deploy next-generationsecurity controls and increase security posture dynamicallywithout any new hardware, downtime, reboots, or changes to aclient’s existing systems.With a team of over 400 people, ColorTokens has globaloffice locations in San Jose, California; New York; London;Copenhagen, Denmark; and Bengaluru, India. For moreinformation, please visit www.colortokens.com.Head of Infrastructure,Healthcare Provider 2022 ColorTokens. All rights reserved. ColorTokens , ColorTokens logo and othertrademarks and service marks are registered marks of ColorTokens and/or its affiliatesin the U.S. and other countries. Third-party trademarks mentioned are the property oftheir respective owners.5
By comparison, the competition (VMware NSX and Illumio) lacked several capabilities that were needed for a successful outcome: The customer appreciated the ease-of-use of the ColorTokens solution and one of the critical factors which helped us progress to a win was the creation of segments with zero disruption/changes to the existing .
