the company
The company is a developer of an advertising technology intended to empower media buyers to deliver the full potential of local advertising. Their cloud-based SaaS platform reduces the operational costs inherent in the media buying process.
The Problem
They needed to meet SOC Type 2 Compliance and they did not have a central server or collaboration space for working as a team. Furthermore, to complicate matters they needed to standardize controls across MAC, Windows and Linux platforms.
Key Challenges
A combination of strategies was needed to be employed to help this client pass SOC audit controls. A centrally managed directory was needed to manage all 3 operating systems. The directory needed to push group policy to all systems involved in accordance with SOC controls.
Solutions Considered
Microsoft Windows active directory and JAMF were considered for Apple but they were unsatisfied with their ability to manage alternate operating systems.
Final Solution
JumpCloud was selected as it allowed a centralized cloud directory and streamlined group policy management across all three operating systems which met SOC audit controls.
Response to Solution
Technical Project Objectives
- External and internal vulnerability and penetrations tests were conducted as well as their AWS environment.
- Southeastern Technical used its own Fortress software to audit vulnerabilities externally and internally for their Atlanta, New York, and AWS environments.
- Password and external storage restrictions, mobile device management, update requirements etc. were implemented using JumpCloud software.
Benefits for the Business
- The Company was SOC Type 2 ready in only 60 days
- 150 employees and 300 devices on different operating devices were brought into compliance
- Tight controls are strictly controlled via JumpCloud making cross platform management accurate and easy
