About Customer
The client is a prominent franchise in the Indian Premier League (IPL), known for its vibrant team spirit and strong fan engagement. Beyond delivering thrilling matches, the franchise offers interactive fan experiences, including live match updates, detailed statistics, and customisable merchandise.
Customer Challenge
- Inadequate Monitoring: With over 35 EC2 instances and multiple EKS clusters, undetected security breaches and unauthorised activities became a concern.
- Web Application Vulnerabilities: Their public-facing website, handling 30,000 transactions per hour, was susceptible to attacks due to insufficient web controls.
- Credential Management Issues: Storing and managing sensitive information like API keys and database credentials was cumbersome and insecure.
- Lack of Encryption Strategy: Rapid growth necessitated a stronger data encryption management plan for sensitive information stored across various services.
Solutions Suggested and Implemented
- Web Application Firewall (WAF): Deployed to provide real-time threat detection for high-traffic areas like live scoring and merchandise sections.
- Regular Security Testing: Implemented real-time vulnerability assessments and penetration testing to identify and address vulnerabilities quickly.
- AWS Secrets Manager: Adopted to securely store, rotate, and manage sensitive credentials throughout their lifecycle.
- AWS Security Hub: Integrated for a centralised view of security posture, streamlining the identification and remediation of misconfigurations and vulnerabilities.
- AWS Key Management Service (KMS): Used to manage encryption keys effectively, ensuring secure data handling across services.
- IAM Role-based Controls: Implemented to restrict user access to essential resources only.
- API Call Monitoring: Used AWS CloudTrail for detailed visibility into AWS API calls, enhancing accountability.
- Secure Remote Access: Enforced VPN connectivity for administrative tasks, ensuring secure access to servers.
Results
- Improved Threat Detection: WAF processed 2.8 million requests weekly, blocking 117,000 malicious events over a year, with 15% of traffic identified as bots.
- Rapid Vulnerability Management: Achieved a 90% resolution rate for critical vulnerabilities within four hours of detection.
- Compliance and Security Scores: Reached a Security Hub score of 74% and a foundational security best practices score of 77%.
- Data Encryption: Secured 1.5 TiB of data in S3, 1.8 TiB in EBS, and 1.2 TiB in RDS using KMS.
- Incident Reduction: Decreased security incidents by 85% and improved system performance by 35%, achieving a 99.99% uptime rate.
Conclusion
The collaboration with Workmates enabled the IPL franchise to significantly bolster its cybersecurity measures, enhancing data protection and user trust while maintaining high performance and operational continuity.