Customer Profile:
The company is a key leading enterprise in national agricultural industrialization, with many branches, farms, slaughterhouses, retail stores, etc. across the country, and currently has more than 10,000 employees.
Customer benefits (the value of the "global integrated network security" solution):
The application system is fully converged and the attack surface is fully hidden.
2. All-in-one terminal security, both employee office experience and office security.
3. "Global integrated network security" architecture, flexible capacity expansion, support the rapid development of enterprises.
24H security experts escort and greatly reduce the IT labor cost of enterprises.
Driven by factors such as enterprise cloud migration, global business layout, multi-branch office, remote office, large-scale access of IoT devices, and an increasingly large partner ecosystem, the network environment is becoming increasingly complex, the traditional border-based network security model is gradually failing, and a series of security threats and solving problems are surging. As a national key leading enterprise in agricultural industrialization, the company has also emerged a series of complex and urgent network and security problems in the process of continuous expansion of business scale and deepening digital transformation
1. Traditional VPNs are difficult to support the secure and efficient interconnection of the headquarters and branch intranets.
The company's headquarters and branch offices across the country and even around the world, as well as all farms, slaughterhouses, retail stores, and data centers on and off the cloud need to be internalized to achieve secure and efficient interconnection of the intranet, and the customer plans to transform from IPsec VPN to SD-WAN.
2. The exposure of the Internet is too large, and the risk of hybrid office is even more aggravated.
Corporate applications are usually published directly on the public network, and as more and more applications are used, they are very vulnerable to external attacks. In addition, flexible working conditions can be seen everywhere in the enterprise, and the security level of each access point in the hybrid office scenario is inconsistent, which is also easy to become a target for attackers.
3. Extensive authority control and potential security risks.
The company's existing SSL VPN permission control is extensive and cannot ensure that the corresponding personnel can access the specified application permissions. In addition, for temporary identity scenarios such as personnel resignation and external personnel, the convergence of permissions is not timely, which is easy to cause security problems.
4. The staff terminal equipment (BYOD) is diversified, and the safety water level is difficult to pull.
Once a hacker enters the intranet through a terminal, the lateral movement will cause the terminal to "spread poison" and even control key equipment, which will cause irreparable losses. Previously, the company had been infected by internal lateral movement after the poisoning due to ransomware in the terminal, which had a great impact on the company.
At the end of 2022, the company further proposed to "build a safe, stable and efficient network security integrated service system" as its internal top priority, and launched a comprehensive investigation and multiple rounds of testing and verification of relevant service providers in the market, and finally Baishan Cloud became the first choice of customers.
Baishan Cloud's "global integrated network security" SASE solution.
Based on the global edge cloud base of Baishan and integrating the concept of zero trust, Baishan Cloud's "global integrated network security" SASE solution provides customers with global integrated network and security capabilities for networks, applications, identities, and terminals.
By introducing the traffic of the company's headquarters, office branches, IDCs, retail stores, breeding farms, slaughterhouses and other units into the Baishan edge cloud platform built based on the SASE concept, and using the 1700+ edge nodes distributed around the world and the cloud-native security capabilities built on the Baishan edge cloud platform, Baishan Cloud lightweight and quickly upgraded the traditional security architecture of the enterprise to the SASE architecture of "global integrated network security", realizing the integration and visual operation and maintenance management of network and security.
In particular, in terms of branch networking, hybrid office, intranet and internal network access, all-in-one terminal security, and data leakage prevention, the office networking efficiency and security access capabilities of enterprises have been comprehensively improved.
Specifically, 1. SD-WAN multi-branch security networking to ensure a consistent security level.
SD-WAN networking + zero trust security" integration, connecting multiple enterprise branches to a secure internal network to ensure fast, stable and secure communication between branches, realizing a single network for global office, joint prevention and control, and ensuring a consistent network and security level; Unified network security management and control of the cloud platform, supporting flexible expansion and centralized visual management.
2. Secure remote work and hybrid office.
No hardware deployment, no network transformation, and instant access to the intranet in minutes, helping enterprises quickly start a zero trust experience, and employees can work securely anytime, anywhere. Open application granular permissions and support unified and flexible adjustment of access policies. Applications on and off the cloud can be seamlessly connected, without the need to change VPN connection addresses, improving the efficiency of multi-cloud connections.
3. Converge on asset exposure to ensure enterprise security and compliance.
Through intranet stealth and port concealment technology, the intranet data and access of all branches are uniformly converged into the newly established secure intranet, comprehensively converging the attack surface and meeting policy compliance; Through the multi-dimensional trust and fine-grained authorization mechanism of zero trust access control, it can effectively control internal traffic, eliminate the risk of lateral movement, and ensure the trustworthiness of identity, terminal, behavior, and resources in the access process. Comprehensive audit of user granularity to ensure fast tracking and traceability of potential risks.
4. Enhance identity credibility and prevent identity theft.
It provides unified identity management capabilities, and effectively manages the SSO single sign-on mechanism and identity tokens to quickly converge the risks of internal application accounts and prevent the abuse of permissions. Continuous verification and multi-factor authentication (MFA) technology to improve the credibility of identity and avoid the threat of account password blasting; Combined with identity-bound terminal devices, it solves the problem of identity theft; It supports interconnection with enterprise-level identity sources such as IM to achieve convenient password-free login, greatly simplifies account password maintenance, and improves the office experience of employees.
5. Unified and secure access to internal and external network applications to resist various security threats.
It supports unified and secure access to intranet and intranet applications, and the zero trust security gateway provides 4-7 layers of security defense, including DDoS traffic cleaning, dynamic security access policies, and application intrusion prevention. Perform continuous trust evaluation for user access behaviors, link blocking and alarm handling in real time, and dynamically withdraw untrusted access request permissions. At the same time, the gateway has built-in joint defense capabilities of the rule engine, AI engine, and semantic engine, and integrates the global threat intelligence database such as vulnerability IPs accumulated by the global edge network to effectively resist illegal intrusion requests and comprehensively ensure the security of enterprise intranet and extranet applications.
6. All-in-one terminal security to prevent "poisonous" terminals from entering the network.
Fragmented security product matrices often lead to fragmented capabilities, high maintenance costs, and uneven security status of access devices as employees bring their own office devices. Baishan Cloud has all-in-one terminal security capabilities, which comprehensively guarantees terminal security through one client, integrates terminal baseline detection, vulnerability repair, virus detection and killing, DNS security, threat disposal and other security capabilities, comprehensively prevents "poisonous" terminals from entering the network, and solves the security threats encountered by office terminals in a one-stop manner. Through visualized unified management and one-click issuance of security policies, it can quickly promote and close the security level of enterprises and ensure the security of enterprise intranets.
7. Anti-phishing ransomware attacks, secure access to the Internet, and ensure the security of core data of enterprises.
By using professional threat intelligence and secure DNS resolution technologies, it effectively protects against a variety of new advanced threats such as malware, ransomware, APT attacks, phishing links, and illegal sites, and ensures that employees can safely connect to the Internet. Through the integration of interception, positioning, and forensics, we can comprehensively control and audit employees' online behaviors to prevent various threats. At the same time, through lightweight data leakage prevention and control, it effectively prevents employees from intentionally or unintentionally leaking sensitive data, ensures the security and controllability of core data, and avoids corporate reputation and economic losses.
8. Supporting security expert services, steadily and rhythmically transforming the "network security integration" architecture.
While empowering customers with product capabilities, Baishan Cloud provides expert support services anytime, anywhere, worry-free and effortless based on 10+ years of experience in security service experts, helping customers transform in a steady and orderly manner. Before deployment, security experts can tailor a business-adaptive plan for the enterprise through the classification and risk assessment of asset exposure surfaces. In the deployment process, a step-by-step construction scheme of multi-dimensional security system of network, identity, resources, and terminals is adopted, while taking into account the experience. After the deployment is completed, security experts will continue to operate 24/7, conduct regular security service testing and evaluation, and provide customers with weekly and monthly reports, so that the security improvement effect can be seen and traced, ensuring that the enterprise is always in an efficient and stable security state.
The CIO of the enterprise also highly affirmed the implementation of Baishan Cloud's "global integrated network security" SASE solution: "Baishan Cloud's SASE solution helps us solve the security of office in BYOD scenarios, and simultaneously realizes the needs of enterprises for secure access and acceleration in scenarios such as multi-branch networking, remote work, and convergence of various exposure surfaces." Baishan Cloud's ability to integrate network and security is helping our enterprise to grow steadily. ”
The construction of the SASE security system enables the company to better cope with the continuous expansion and digital transformation of the business. Next, the customer will further connect the traffic in all scenarios such as retail stores and township farms across the country to the SASE architecture, so as to build a more comprehensive and refined office security system for the enterprise.
whysase?Why White Mountain Cloud?
The rapid development of enterprise globalization business has put forward higher requirements for the global network capability of enterprise security architecture. However, the traditional security solution adopts a centralized gateway architecture, which has high upgrade and expansion costs and a long cycle, making it difficult to flexibly cope with the sudden increase in business access. On the other hand, the lack of global network foundation and poor cross-border access effect make it difficult to support the growing global business access needs of enterprises and affect the office efficiency of employees.
In order to take into account business development and security construction, the SASE architecture of network and security integration has become the general trend, and the edge distributed architecture supports horizontal and flexible expansion, which can meet the current and future business growth needs of enterprises. At the same time, this also puts forward higher requirements for the service providers behind the enterprise, such as the architecture foundation, network capabilities, security capabilities, and integration and management capabilities.
As a pioneer in the exploration and practice of SASE, Baishan Cloud has become one of the few service providers with complete and mature SASE capabilities in the industry based on the two genetic advantages of powerful edge distributed network and cloud native security.
Baishan Cloud has 1700+ edge nodes distributed in 300+ cities around the world, covering Europe, North America, Southeast Asia, the Middle East, Africa, Central Asia, South America and other regions, and has in-depth interconnection cooperation with 100+ overseas operators. Baishan Cloud's cloud-native security capabilities are naturally integrated with the global edge network, which can fully take over the access traffic of enterprise headquarters, global branches, and mobile offices, and link global backbone links to ensure cross-border access effect. Through one network and one client for global office, Baishan Cloud can build a network + security integrated zero trust office platform for enterprises, simultaneously solve the needs of secure access acceleration in all scenarios such as efficient networking, intranet access, remote office, convergence of Internet exposure surface, and enterprise going overseas, improve network performance and office experience, and ensure the security of enterprise assets in an all-round way.
After testing, Baishan Cloud's SASE solution can meet the business needs of enterprises in any country or region around the world, with a global SLA of more than 999%。Based on the massive edge resources all over the world, traffic from different users, branches, and different devices can be connected to the nearest local node with one click, and technologies such as TCP protocol optimization and intelligent routing of inter-node links are used to fully ensure the stability and speed of access, and the user access efficiency is increased by 50% on average.
Up to now, Baishan Cloud has served 1000+** and enterprise customers, and its SASE capabilities have been fully verified in industries such as aviation, transportation, manufacturing, finance, FMCG, and Internet, and have been recognized by customers across industries.