Transparent Data Encryption with the Azure Key Vault

Transparent Data Encryption with the Azure Key Vault

In last week’s post, we covered a BitLocker implementation for Azure virtual machines. But as mentioned in that post, because BitLocker doesn’t fully satisfy the Payment Card Industry Data Security Standard (PCI DSS) requirement (specifically, 3.4 and 3.5.2) for data encryption at rest, we also implemented SQL Transparent Data Encryption (TDE) for all databases.…

Read More
Encrypting Data at Rest in Azure

Encrypting Data at Rest in Azure

Last week, we covered the segmentation of the client environment using Azure’s Network Security Groups. For an overview of the Azure Secure Cloud Migration blog series and a list of the topics being covered, see the introductory post, Preparing to Migrate to a Secure Cloud. This week, in part 4 of the Azure Secure Cloud Migration blog series, we’ll cover the implementation of hard disk...

Read More
Isolating the Cardholder Data Environment with Network Segmentation

Isolating the Cardholder Data Environment with Network Segmentation

In a recent post, we discussed many of the challenges with attesting to PCI DSS compliance, including a description of some of the factors that are often overlooked when defining the cardholder data environment (CDE). See “Common Misconceptions around the Payment Card Industry Data Security Standard (PCI DSS)” from our recent series of blogs on PCI DSS-related topics for more information. …

Read More
Securing Cloud Networks

Securing Cloud Networks

Continuing our blog series on Azure Secure Cloud Migration, we will discuss Azure’s take on network control and how scalability and manageability play a role in designing a secure and functional environment. See our previous post on Talking to the Cloud for insights on architecting an Azure network. Network Access Control Network Security Groups (NSGs) are a native Azure feature to apply...

Read More
How to Talk to the Cloud

How to Talk to the Cloud

Picking up from last week’s post on Preparing to Migrating to a Secure Cloud, the first part of our Azure Secure Cloud Migration blog series, we’ll jump right in to how and why the client’s Azure network was architected. Connectivity and traffic flow between Azure, on-premises locations, and even business partners are things to consider immediately, as they impact the overall structure of the...

Read More
Preparing to Migrate to a Secure Cloud

Preparing to Migrate to a Secure Cloud

West Monroe Partners recently completed a nine-month effort to help a client migrate a large custom SaaS platform with regulatory requirements (PCI DSS v3.1, SSAE16). The engagement involved migrating on-premises systems to Microsoft Azure’s IaaS platform, and in the coming weeks, we’ll be detailing our methodology for designing and securing that environment in a series of blog...

Read More
Partly Cloudy with a Chance of Compliance

Partly Cloudy with a Chance of Compliance

As advisors to our 100+ private equity clients who use M&A activity to provide positive returns to their investors, WMP helps establish platforms, processes, and technology that can enable rapid EBITDA growth. Within the world of M&A, carve-outs and divestitures are some of the most complex situations when it comes to quickly getting the newly acquired business on the right track...

Read More

What You Need to Know about Identity Access Management

Identity and access management – the process of ensuring the right people have the right access to information – should be a key component of any organization’s security infrastructure. A sound IAM approach will not only help protect your sensitive data, it will also save you time and money. However, implementation challenges such as business system complexities, lack of defined user roles and...

Read More

The Evolution of Traditional Authentication

Early this month, Microsoft officially announced that they have released another preview feature for their Azure IaaS solution stack, Azure Active Directory Domain Services.  This is a clear evolution of the way traditional Microsoft AD administrators install/configure/manage legacy Active Directory.  Although there are currently some limitations that I’ll talk about later, this is an exciting...

Read More

Performance Services: A combined distributed and centralized service desk can lead to better customer service

Businesses choose to outsource IT services for many reasons that range from quality to cost to focus.   The Performance Services (“managed services”) team at West Monroe Partners helps clients by outsourcing applications and infrastructure management.   A key component of our offering is our Service Desk which is our face to our client’s employees and in some cases, our client’s...

Read More

FFIEC and NIST: A Comparison of Two Prevalent New Compliance Frameworks

The Federal Financial Institutions Examination Council’s (FFIEC) has recently stepped into its role as the leading voice in cybersecurity-related banking regulation, bringing examiners and technology experts from all member agencies together with the expectation that the banking industry will be a leader in cybersecurity maturity and readiness. In the five years since the passing of...

Read More
Phone: 312-602-4000
Email: marketing@westmonroepartners.com
222 W. Adams
Chicago, IL 60606
Show Buttons
Share On Facebook
Share On Twitter
Share on LinkedIn
Hide Buttons