5 July 2024
Author: Luke Smith
In today’s world, where digital threats are constantly evolving, robust cybersecurity measures are not just necessary—they’re essential. I recently had the pleasure of working with the Australian Transport Safety Bureau (ATSB) to enhance their cybersecurity maturity. Here’s a look into our journey together.
Meeting the ATSB
The ATSB is dedicated to maintaining and improving safety standards in Australia’s transport sectors. They recognised the need to boost their cybersecurity framework, which is where we came in. Our mission: to help ATSB strengthen its defences and enhance its cybersecurity maturity.
The Challenge
ATSB wanted to implement a vulnerability management platform, conduct thorough audits of their M365 and Azure cloud environments, review and improve their Azure networking, and more.
How We Tackled It
Our approach was multifaceted and thorough. We started by implementing Vulnerability Management software, which provided ATSB with comprehensive vulnerability scanning of their assets spanning all aspects of their environment, web applications and other cloud resources. After scanning happens, the information is fed into vulnerability compliance dashboarding and automated email reports are generated for action. Our next step was to conduct comprehensive audits of their M365, Entra ID – a process that involved hybrid identities encompassing on-prem Active Directory and Azure Cloud resources. Leveraging Microsoft’s cloud-native security tools, such as Sentinel, Defender for Cloud, Defender XDR, Defender for Endpoint, Defender for Identity, and Defender for Cloud Apps, we were able to provide actionable recommendations and reporting that were tailored to ATSB’s specific needs. This meticulous process ensured that any policy enforcement was preceded by detailed monitoring and auditing, thereby minimising disruptions to their operations.
Our exhaustive assessment of ATSB’s Azure environment was instrumental in identifying areas for improvement in cloud security maturity and resource optimisation. Our recommendations, which led to workload optimisation, system enhancements, and optimised resource allocation, resulted in ATSB’s more cost-effective and efficient operation.
The Impact
The results of our collaboration were impressive. ATSB saw substantial advancements in their cybersecurity posture and operational efficiency. Deploying a vulnerability scanner and Microsoft’s Defender suite helped them effectively identify and remediate vulnerabilities, significantly improving security operations. Our comprehensive audits of their cloud security policies ensured they were aligned with industry standards and best practices. Optimising their Azure resources led to enhanced performance and cost savings. Most importantly, ATSB achieved a higher level of cybersecurity maturity, strengthening its defence against cyber threats.
Going Beyond
One of the aspects I’m most proud of is how we delivered above and beyond the initial scope of work. We identified and advised ATSB on leveraging additional cybersecurity tools available under their existing M365 licensing agreement at no extra cost. This kind of proactive, value-driven approach is what sets Showtime Consulting apart. We’re committed to providing trustworthy counsel and genuinely enhancing our clients’ cybersecurity capabilities. Our comprehensive documentation and workshops empowered ATSB’s internal team to manage and maintain the changes we implemented effectively.
Reflecting on the Journey
Looking back, this project with ATSB was about more than just enhancing their cybersecurity framework. It was about building a partnership based on trust, integrity, and a shared commitment to excellence. We’re proud of what we achieved together and are excited about the future possibilities.
If you’re interested in how Showtime Consulting can help your organisation enhance its cybersecurity framework, do not hesitate to reach out. Let us make your digital world safer and more secure.
