Client need
Project background
An energy sector client was building a data analytics platform in the cloud. The platform is used to gather operational data from multiple locations and analyzed in various dashboards for operational and business decision-makers.
Special requirements
The information on the platform is business critical. Is must remain protected against any illegitimate changes, so that the analytics can be used to support business decisions.
The data could be used by competitors for their advantage, so there had to be effective controls.
The client is a publicly traded company. The information processed on the platform is considered insider information. There are special protection and audit trail needs for the access.
We delivered
Cyber security risk assessment
Fraktal produced a cyber security risk assessment to lay foundation for the security design. The client was previously not utilizing cloud services for processing business critical information, and due to their requirements, expected a good level of security in practice.
Azure security architecture design
Fraktal delivered a full security architecture design to support the implementation project. The design covered all services and systems of the platform.
The design communicated how the risk-based security features are implemented on the services, systems, and their integrations. These features included for example identity management, access authorizations, protecting data at rest, encrypting data in transit, backups, and security logging architecture connecting all the log sources.
Technologies and methods
Azure
The platform uses various Azure services for compute, storage, networking, and security.
Terraform
The project used infrastructure-as-code approach.
Snowflake
Snowflake was used for cloud-based data-warehousing.
PowerBI
The dashboards and reports where created using PowerBI.