Technology Support for Major City’s Transit System
A major Transit Authority was seeking a partner to support the managed services for their network, servers, desktops, monitoring, and help desk functions.
One of the nation’s largest tolling authorities contracted with SDI to commission and lead a security audit of the organization’s complete technical environment.
The Authority asked SDI to assess, document and make recommendations on its environment, with the objective of identifying the Authority’s vulnerability to network-based attacks for the purpose of stealing data or causing harm.
The scope of the audit included both the production-based PCI environment and the corporate network and application environment (i.e. email, file services, etc.). Over the span of two months, and for the purpose of diversity and completeness, SDI contracted with two data security firms to conduct the audit. The multidimensional assessment included the following phases:
While each data firm completed different types of assessments independently of each other, both firms came to similar conclusions in regards to the vulnerability of the Authority’s overall threat profile. SDI detected over 24,000 vulnerabilities in the Authority’s technical environment. After those vulnerabilities were identified, SDI worked with the Authority to prioritize and remediate technical issues that were discovered, establish a formal IT strategy, and determine what security tools or services are required going forward.
Your project isn’t a job for us. It’s a mission that impacts our neighbors, and our families. That’s what it means to be hyperlocal. Let’s work together and design better solutions.