Case Study

FIT addresses 3 year patching gap at industry-leading finance firm

animated shape 1 animated shape 2 animated shape 3
Decorative shape

Industry

Financial Services

Size

800 users

Offices

27

Location

Nationwide

The challenge.

As an industry-leading acquisitive company, there were multiple infrastructure silo’s to maintain across several domains. With a small IT team, some of the BAU tasks such as patching were not being done as frequently as they should have been, some elements of the infrastructure environment had not been patched in 3 years, something that from a compliance perspective had to be addressed.

The goal.

The goals of the project were to bring all of the infrastructure back up to date with Critical and Important updates for the operating system as classified by Microsoft.

This would lead to the following outcomes:-

  • A compliant environment (both industry regulation and cyber essentials Plus)
  • Risk mitigation by reducing the number of vulnerabilities the environment was open to
  • Better performance by ensuring systems were updated and rebooted
  • A solid foundation to build a regular patching cycle on.

FIT also setup the SCCM instance and removed some of the barriers that had previously prevented regular patching taking place.

Why did they engage Foundation IT?

"FIT had industry experience and could provide audit and compliance reports that would satisfy the regulators. A clear plan was put together that showed how the servers would be brought up to date in a timeline fashion with considerations made around downtime, rollback, testing etc. FIT also highlighted issues with the SCCM instance that would need to be addressed as a pre-requisite and helped to resolve those issues."

Decorative shape

The solution.

“The appetite and bandwidth of the team was limited to bring this environment up to date. Simply put, FIT introduced the people, process and technology that ensured the server environment was up to date in a timely, yet safe fashion ensuring that audit and compliance requirements are met and risks managed."

Why Foundation IT?

security-icon

Prevention of data breaches, unwanted press, damaged reputation & regulatory fines. 

pretesting-icon-active

Pre-requisites were accounted for so there weren’t any false starts

protection-icon

The environment was handed back in a more secure condition than it was given

compliance-managment-icon-active

The process was managed from start to finish to bring the environment up to date

do-more-with-less

The team were knowledgeable and a safe pair of hands