ICICI Bank-Security & Patch Mgmt

ICICI Bank felt that it was necessary that each device on the network was
always updated with the latest patches, had up-to-date antiviruses, and was free
of malware and spyware. Therefore, the bank's Information Security team decided
to centralize and automate the process of updating and rolling out patches.

This project was undertaken to assure a secure working environment for
critical business functions, and to protect the customers' sensitive data. This
called for a centralized security management architecture that would carry out
the inventory of information assets, analysis of threats, (identification of
vulnerabilities and security holes), patch management, malicious code prevention
as well as port control. LanDesk would have allowed them to manage and monitor a
client-server environment, but was not sufficient. The bank decided to tailor
the deployment to inhibit selected applications from launching, in order to
protect against corporate prohibited applications, protect data leakages through
centralized port control, implement hardening policy and carry out real-time
audits. Automated patch management and the removal of spyware and malware is
already operational. In the next phase, ICICI plans to deploy features like
Network Admission Control, Server Manager, and Software License Monitoring. The
hardware and software used is heterogeneous, and comprises four dual core, dual
CPU, AMD Opteron servers, with 2.19 GHz processor speed and 4 GB RAM; clients
with Win 2k/XP with 128 MB RAM, P III and above; .NET Framework 1.1, Oracle 9i,
MS SQL Server 2004, and more.

	Project Specs Business problem: Updating each device with the latest security patches took a lot of time IT solutions: LanDesk, customized to inhibit selected applications from launching Impact: Secure working environment for critical functions and effective protection for sensitive customer data IT Implementation partner: Allied Digital
Sunil Dhaka, Head IT