COUNTRY FOCUS: TURKEY
“
IGA’S LEADERSHIP IS
CONFIDENT THAT IT CAN EASILY
SCALE THIS SOLUTION TO ITS
BUSINESS GOALS.
Hence, a security solution that is integrated
was one of the most important requirements
for IGA. The leadership wanted the airport’s
entire infrastructure to be fully aligned, from
the network all the way down to the endpoints.
“We were looking at the integration, visibility
and implementation features of the
products,” said Emrah Bayarcelik, Head of
Security at IGA.
Endpoint Detection and Remediation (EDR)
capabilities as well as Endpoint Protection
Platform (EPP) features. Destel will manage
IGA’s IT infrastructure for the next three
years and requested an endpoint solution
that has in-depth visibility and advanced
threat hunting and investigative capabilities.
An airport that scales needs a
security solution that scales too
In addition, because the airport is building
this structure in multiple phases, it required a
solution that can easily scale. The projection
is that IGA will expand from serving 90
million customers in phase one to 200
million customers in phase three. To scale at
that extreme level, IGA understood that on
top of incorporating an integrated security
architecture, it also needed to ensure ease of
use for its employees. To fully secure the airport, IGA and Destel
deployed the Cisco AMP Everywhere
solution, which encompasses Cisco AMP for
Endpoints, AMP for Networks, AMP for Email,
AMP for Web, and Threat Grid.
Lastly, Inankul said: “Endpoint is absolutely
critical for me.” Destel SOC Manager, Suat Celikok, said:
“Using AMP Everywhere, we gain visibility,
unified information sharing and a faster time
to detect and respond to threats.”
IGA and Destel, its MDR provider,
understood the importance of securing the
endpoints using solutions that provide both
With a full Cisco Security integrated
architecture, IGA feels confident that
customer and business data will be protected
and secured.
Additionally, Cisco AMP Everywhere is
easy to deploy. Its flexibility will allow IGA
to simply scale its IT infrastructure as the
airport and IT team expands throughout
its construction phases. Through the
integrated architecture, IGA is fully
protected – from network, to email, to web,
all the way to endpoints.
One of IGA’s SOC Analysts, Anil Kus,
said: “We are using Cisco AMP Everywhere
because it gives us file reputation,
file analysis on our endpoint platform,
web platform, network platform and
email platform.”
IGA’s Chief Information Officer,
Ersin Inankul
52
INTELLIGENTCIO
Using AMP Everywhere, IGA will be able to
see a threat once and block it everywhere
else in the airport’s environment, thus
decreasing the security administrations’
workload and time to detect and
remediate against threats.
“Without integration, my team will
be focusing on false alerts and will
be spending more time on different
consoles,” said Celikok.
On top of everything, Cisco AMP for
Endpoints gives IGA visibility into all
devices, files and applications that enter
into the airport’s network. Through
AMP’s retrospective security, IGA will
be able to see the entire history of
a particular file or device, leading to
more effective threat hunting and
investigative capabilities.
Securing the central hub
With the full Cisco AMP Everywhere
architecture fully deployed in the airport’s
infrastructure, IGA is able to protect both
the airport’s business and customer
data. Since deploying, the airport already
witnessed greater threat hunting and
investigative analysis and in-depth
visibility in its network and endpoints.
With the next phase of the airport
construction underway, IGA’s leadership
is confident that it can easily scale this
solution to its business goals.
Inankul concluded: “We have built
Istanbul’s airport as the world’s largest
airport and with security as a foundation.
And we are happy to partner with Cisco
to secure this airport.”
We asked Ersin Inankul, CIO, Istanbul
Grand Airport, some further questions
about the solution:
Why is it important for Istanbul
Grand Airport to have an
integrated security solution?
Integrated solutions are very important
for unified visibility, threat intelligence,
enrichment and collective response.
Within this scope, Cisco integrates security
across the network, cloud, Internet,
email and endpoints to minimise the
complexity of managing security across a
distributed organisation and to increase
threat visibility into the farthest reaches
www.intelligentcio.com