About Customer
Celex Technologies Private Limited, located in Kolkata, India, is a leading manufacturer of High Security Registration Plates (HSRP). Since its inception in 2011, Celex has established a reputation for delivering high-quality products while serving both domestic and international markets. The company is committed to customer satisfaction and operational excellence.
Executive Summary
Faced with increasing cyber threats, Celex recognised the need to enhance its cybersecurity posture. Operating critical applications on Amazon Web Services (AWS), the organization was vulnerable to various attacks, including SQL injections and file upload exploits. Partnering with Workmates as a Managed Security Services Provider (MSSP), Celex initiated a comprehensive security overhaul aimed at fortifying its defenses and ensuring compliance with ISO 27001 standards.
Customer Challenges
- Vulnerability Management: Frequent attacks and high-severity vulnerabilities remained unaddressed due to slow assessment processes.
- Web Application Security: The public-facing website experienced multiple attempted breaches, compromising user data and application integrity.
- Insufficient Security Controls: Gaps in security measures, including the absence of robust XDR tools, increased susceptibility to attacks.
- Compliance Issues: Internal audits revealed that 25% of required controls for ISO 27001 compliance were inadequate or missing.
- Poor Key Management: Encryption keys were stored on unsecured servers, leading to potential risks and outdated key usage.
Solutions Suggested and Implemented
- Vulnerability Management: Automated near-real-time vulnerability assessments using Amazon Inspector to significantly reduce detection and remediation times.
- Web Application Security: Deployed AWS WAF to shield against common threats, supplemented by regular security testing.
- Infrastructure Monitoring: Integrated AWS CloudWatch and EventBridge for centralised security event monitoring and alerting.
- Compliance Support: Leveraged AWS Config and Security Hub to ensure alignment with ISO 27001 standards.
- Key Management: Implemented AWS Key Management Service (KMS) for secure key storage and automated rotation.
- Employee Training: Established security governance and conducted awareness training to cultivate a culture of cybersecurity awareness.
Results
- Vulnerability Response: Reduced detection and remediation time from months to weeks, decreasing high-severity vulnerabilities by over 80%.
- Incident Management: Improved incident detection and response times by 60%.
- Enhanced Monitoring: Identified 70% more security incidents due to improved threat detection capabilities.
- Compliance Achievement: Successfully aligned security measures with ISO 27001, improving overall governance.
- Web Application Security: Achieved a 90% reduction in successful web application attacks, leading to enhanced application performance.
Conclusion
The partnership with Workmates enabled Celex Technologies to significantly strengthen its cybersecurity infrastructure, ensuring the protection of sensitive customer data and compliance with industry standards. This transformation not only fortified Celex’s defenses but also enhanced its operational capabilities, allowing the organization to continue delivering exceptional services to its clients.