Computerworld
Quick Menu
Search



Ads by TechWords

See your link here


Subscribe to our e-mail newsletters
For more info on a specific newsletter, click the title. Details will be displayed in a new window.
Finance
Security
Computerworld Daily News (First Look and Wrap-Up)
Computerworld Blogs Newsletter
The Weekly Top 10
More E-Mail Newsletters 
Computerworld 2007Subscribe to Computerworld
40 years of the most authoritative source of news and information for IT leaders.

Erecting secure infrastructure

One firm rebuilt its security and enterprise management systems, saving money
 

Sign up to receive Security Resource Alerts

November 15, 2004 (Computerworld) -- Lend Lease Corp. had antivirus software running on all of the gateways, e-mail servers and desktops that serve its 10,000 workers worldwide, but that wasn't enough to prevent a Blaster attack on Aug. 3, 2003. That incident prompted the global real estate management and financing company to begin a process that resulted in a sweeping revamp of its IT infrastructure.


"Blaster hit us rather hard and on a global scale," says Chief Security Officer John Miles. The antivirus protections notwithstanding, he says, "we didn't have the right tools for proper insight to tell where the virus was coming from."


Sydney, Australia-based Lend Lease appraised its security, systems and service management software. The goal: to be better prepared for attacks and to improve how the business deals with internal and external customers.


A little more than a year after the Blaster attack, the company had completed a $1.8 million project to purchase and install 18 software products from six vendors, including Remedy, a unit of BMC Software Inc. Lend Lease dubbed the project HighRISE, after the company's work on skyscrapers and because it includes Remedy identity, system and endpoint management tools. The products, deployed together, went live in early September.


Software Pyramid


Miles describes HighRISE as a five-level pyramid, with service management functions at the top (see diagram, next page). These include help desk, service level, asset and change management products from Remedy, as well as remote-control and business intelligence products from ManageSoft Corp.












John Miles and Jay Skibinski of Lend Lease
John Miles and Jay Skibinski of Lend Lease
Image Credit: Ann States

The next tier down, the identity and trust management level, includes password and identity management products from M-Tech Information Technology Inc., as well as documentation that Lend Lease created based on IT Infrastructure Library (ITIL) standards for operations and security management.


The directory management tier includes administration products from NetIQ Corp., plus directory software from Microsoft Corp. and Oracle Corp.


The configuration and vulnerability management layer includes configuration, security path and vulnerability management tools.


The bottom tier, threat and availability management, includes application, security and inventory management functions.


Lend Lease CIO Jay Skibinski says he wanted the products to be integrated at the same time to keep the project rollout time short. "Integrating all the products in series would have taken years to complete, and integration would have been a challenge," he says.


Lend Lease set up a bidding process, invited three vendors for each functional area and then picked the one with the best features and technical quality. As part of the deal, Skibinski required the vendors to meet upfront and agree to make their products interoperate. By doing so, Lend Lease was able to avoid hiring an independent integrator. "The vendors understand it's a big win for them as well to interoperate, and it's something that leads to better business," Skibinski says.

Continued...
1 | 2 | 3 | 4 | NEXT  



Print this Story Send Us Feedback E-mail this Story Digg! Digg this Story Slashdot this Story
Sidebar: Lend Lease's Project HighRISE
Erecting secure infrastructure
"The recent attacks in Mumbai were carried out by assailants using high tech methods. It’s just another way in which..." Read more...
Read more Security posts or See all Blogs
Microsoft spells out Vista SP2 contents
Clues point to Jan. 13 release of Windows 7 beta
Transmitting data from the middle of nowhere
More top stories...
Virtually every Windows PC at risk, says Secunia
License server glitch exposes SonicWall users to e-mail security threats
In high-tech schools of the future, Facebook in class is boosted -- not banned
Thin as ever, the latest Air offers up to twice the storage and snappy performance.
We've got an array of economical, expensive, and just plain weird tech gifts for your friends and family.
The spam-spewing 'Srizbi' botnet that was shut down two weeks ago has been resurrected and is again under criminal control, say security researchers.
Facebook is popular and growing -- especially with criminals. Here's why they love it.
Get the latest news, reviews and more about Microsoft's newest desktop operating system
Find wage data for 50 IT job titles.
All Zones
Business Continuity Zone
The File Data Management Zone
Security Management Zone
The SAS Zone
Business Intelligence and Analytics Zone
The Enterprise Search Zone
Software as a Service Zone
The Security Zone

Ads by TechWords

See your link here
Moving to Windows Vista: The Promise, The Reality
Moving to Windows Vista: The Promise, The Reality
View this exclusive webcast today!
Go to the webcast 
Computerworld Executive Bulletin: Building a Robust Antivirus Defense
Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs.
(Source: MessageLabs) Antivirus software alone isn't enough to prevent today's speedy, sophisticated virus attacks. Security managers should consider multitiered approaches that include behavior scanning, appliances that check e-mail for worms, and restricting user access to dangerous Web sites. Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs, to learn more.
Download this executive briefing download
Record Capacity for Microsoft� Exchange 2007 With VMware and IBM System x3850 M2
Download this white paper today!
(Source: VMware) The more that e-mail becomes an entrenched IT infrastructure application, the more that messaging administrators face numerous--sometimes conflicting--demands in the categories of availability, flexibility and cost. Employing a virtual solution can help avoid expensive over-provisioning of server computing resources, while improving management and disaster recovery. And ultimately, it can more than double the number of supportable Exchange 2007 users, as compared to a non-virtualized environment. This whitepaper explains how to break down the scalability barrier and respond faster to your mail system needs.
Download this white paper go
White Papers
Read up on the latest ideas and technologies from companies that sell hardware, software and services.
The Importance of Application Management
Dell Client Migration and Deployment Services
Windows� Enterprise Data Protection with Symantec Backup Exec"
View more whitepapers 


Webcast: The Automation of IT Compliance Programs: Reducing Risk, Cost and Complexity of Corporate Compliance
To meet the growing number of industry and federal regulations, businesses spend significant time, effort, and budget determining how to best meet continuously evolving IT compliance requirements this new Forrester Research and Juniper Networks Webcast led by industry experts who examine global IT security and compliance trends, common IT compliance issues and challenges, and best practices for successful IT compliance programs.

View this webcast 
Whitepaper: Tackling the Top Five Network Access Control Challenges
The major challenge enterprises face today is how to create innovative business models and to increase productivity by opening the network to a dynamic workforce, while at the same time protecting critical assets from the vulnerabilities that openness and user mobility bring. In addition, to comply with industry and governmental regulations, enterprises must prove that they have stringent controls in place to restrict access to sensitive data. This paper describes the top five networking access control challenges that companies like yours are facing and solutions that they are deploying today.

Download this white paper 
Whitepaper: Addressing PCI Compliance with a Comprehensive Network Access Control Solution
The Payment Card Industry (PCI) is one of the most comprehensive data security standards in a cluster of regulations that have emerged over the past decade. Meeting its requirements is both complicated and expensive for many companies. Learn how a comprehensive access control solution allows retailers and consumer organizations adhere to the core tenets of PCI, and delivering the necessary information and reports needed for compliance audits.
Download this white paper 
Whitepaper: Control System Cyber Vulnerabilities and Mitigation of Risk for Utilities
Today's global industrial infrastructure includes thousands of electric utilities, water/wastewater management companies, oil and gas suppliers, chemical manufacturers and other facilities critical to daily functioning. Learn why relying on off-the-shelf operating systems and Internet-based remote access control to carry out production tasks, traditional control networks can leave today's global industrial infrastructures vulnerable to hackers, extortionists, worms, viruses and application-level attacks. Deploying network-based security can protect these at-risk systems–without requiring infrastructure replacement.
Download this white paper