How VINCI Energies has achieved strong security boundaries on its ever-evolving Active Directory infrastructures

  • Industry:
  • Location:
    Worldwide
  • Revenue:
    10,76B€

Use Case

How VINCI Energies has achieved strong security boundaries on its ever-evolving Active Directory infrastructures

Founded more than two centuries ago, VINCI Energies has become a world-leading expert in digital transformation and energy transition. It operates in 52 countries, counts 1,600 business units, and works with over 64,000 employees. With a turnover of 10.2 billion euros, including 48% outside of  France, VINCI Energies is a major leader in its field.

Keyfacts

Benefits
Flawless integration of new companies
Continuous and global control on AD security risks
Modern Active Directory security enforcement
KPI’s
85 000 protected accounts
16 million virtual analyses per hour
Intelligence over 50+ threats
Interlocutors at VINCI Energies
1 Active Directory Architect
1 Cloud Infrastructure Architect
1 Network & Security Engineer
Alsid dedicated team
1 Senior AD Security Engineer
1 Technical Account Manager
1 Customer Success Manager
Test-run
Twenty-day experiment
1 forest / 1 domain/ 53,071 active users
2 weeks to fully deploy the solution
Challenges
Solutions

Year after year, VINCI Energies has pursued its expansion via both organic growth and a strong acquisition policy. In 2017, VINCI Energies bought more than 30 companies, based all around the world. Although beneficial, this tremendous expansion led to more complex IT environments administered by teams scattered internationally. Unfortunately, incorporation of foreign resources usually introduces various kinds of security breaches on Active Directory environments like misconfigurations or illegitimate access rights. Due to AD design, these issues can endanger the whole Information System.

Through ambitious security programs, VINCI Energies has established strong security boundaries for its main Active Directory infrastructures thanks to its security teams and by using tools exclusively focused on the administration of Active Directory. This process required a lot of effort and time from VINCI Energies’ teams.

To maintain these boundaries and to safely integrate acquired resources in the consolidated perimeter, the company expressed its need to streamline the integration process of new entities while maintaining its security level in the long-run.
 

Alsid’s solution was simple and smooth to implement. The deployment of Alsid solution only took 14-days, after which VINCI Energies’s team had access to the web-based interface viewable on any device, indicators of exposure, tailor-made recommendations, and real-time analysis. The deployment only required the presence of two part-time VINCI Energies’s employees.

Alsid’s remote-enclave solution was the perfect match for VINCI Energies’ needs.

Using Alsid’s consolidated dashboard, VINCI Energies’ top management and security teams could get a global vision of the security level of their Active Directory continuously and in any of its sites across the world.

Employing the instant security assessment of Alsid’s solution, VINCI Energies was able to, for the first time, assess the security level of its incoming entities before connecting them to the company’s Information System. Thanks to real-time security monitoring of Alsid’s solution, VINCI Energies security team could evaluate the proper implementation of remediation measures, allowing them to pick the perfect time to rally the new organizations into the global infrastructure.

Alsid’s solution freed us from Active Directory security concerns so that we could focus on new business incorporation
Dominique TESSARO
VINCI Energies CIO

Results

Flawless integration of new companies

Ensuring an efficient business activity without impeding cybersecurity policies was essential for VINCI Energies. It is possible with Alsid’s solution. Using Alsid built-in Indicator-of-Exposures, VINCI Energies security teams were able to identify in a minute every attack vector that could be used against their new resources. The product also revealed to be a cost-effective solution as there were no more needs for individual audits.

On top of that, the decision-maker oriented solution made it fast and easy to monitor the security maturity of new entrants with just one glance at the product’s dashboard. Alsid is, by far, the easiest AD security solution to implement: deployment is nearly instant, agentless, and requires no admin privilege.

Continuous and global control on AD security risks

AD architectures are the cornerstones of all IT infrastructures and attackers know it. They continuously look for new techniques to jeopardize these infrastructures and access critical assets. Most of companies acquired by VINCI Energies don’t have the time nor the internal expertise to stay updated with the latest and most advanced AD vector attacks. Thanks to its high-level expert team, Alsid always stays on the cutting edge of technology, ensuring the best security level to the acquired AD infrastructures.

Alsid’s product is frequently updated to reflect the evolutions of the cyber-world. For VINCI Energies, all updates are done automatically and at no additional costs due to their choice for the remote-enclave architecture of Alsid’s solution. As a result, VINCI Energies can really focus on its core business activities.

Modern Active Directory security enforcement

VINCI Energies always looks for excellence; with Alsid’s solution they achieve that level. Leveraging this technology, potential threats are monitored continuously, and alerts are sent with in-context and dynamic remediation plans to relevant teams as soon as a breach is identified. It allows for quick response to contain the issue, and thus guaranties to maintain a strong level of security for the group’s Active Directory infrastructures.

Flawless integration of new companies

Ensuring an efficient business activity without impeding cybersecurity policies was essential for VINCI Energies. It is possible with Alsid’s solution. Using Alsid built-in Indicator-of-Exposures, VINCI Energies security teams were able to identify in a minute every attack vector that could be used against their new resources. The product also revealed to be a cost-effective solution as there were no more needs for individual audits.

On top of that, the decision-maker oriented solution made it fast and easy to monitor the security maturity of new entrants with just one glance at the product’s dashboard. Alsid is, by far, the easiest AD security solution to implement: deployment is nearly instant, agentless, and requires no admin privilege.

Continuous and global control on AD security risks

AD architectures are the cornerstones of all IT infrastructures and attackers know it. They continuously look for new techniques to jeopardize these infrastructures and access critical assets. Most of companies acquired by VINCI Energies don’t have the time nor the internal expertise to stay updated with the latest and most advanced AD vector attacks. Thanks to its high-level expert team, Alsid always stays on the cutting edge of technology, ensuring the best security level to the acquired AD infrastructures.

Alsid’s product is frequently updated to reflect the evolutions of the cyber-world. For VINCI Energies, all updates are done automatically and at no additional costs due to their choice for the remote-enclave architecture of Alsid’s solution. As a result, VINCI Energies can really focus on its core business activities.

Modern Active Directory security enforcement

VINCI Energies always looks for excellence; with Alsid’s solution they achieve that level. Leveraging this technology, potential threats are monitored continuously, and alerts are sent with in-context and dynamic remediation plans to relevant teams as soon as a breach is identified. It allows for quick response to contain the issue, and thus guaranties to maintain a strong level of security for the group’s Active Directory infrastructures.

Get in touch

Let's explore together how Alsid can improve your products and services

Contact us