CheckPoint Software > Case Studies > Low Cost Airline Enhances Cloud Security with Check Point

Low Cost Airline Enhances Cloud Security with Check Point

CheckPoint Software Logo
Technology Category
  • Cybersecurity & Privacy - Cloud Security
  • Infrastructure as a Service (IaaS) - Virtual Private Cloud
Applicable Industries
  • Glass
  • National Security & Defense
Applicable Functions
  • Product Research & Development
  • Quality Assurance
Use Cases
  • Inventory Management
  • Tamper Detection
Services
  • Cloud Planning, Design & Implementation Services
  • Cybersecurity Services
About The Customer
The customer is an American low-cost airline that operates scheduled and charter flights across 120 locations. The airline focuses on delivering affordable air travel while also offering related products, such as hotel rooms and rental cars. With 85 aircraft and 350 scheduled routes across the United States, the airline flies out of 120 airports. Across all of these airports, the airline's IT and information security teams manage network traffic for business-critical systems such as reservations and flight schedules. The airline also develops many of its own internal applications and platforms, with the DevOps team currently working on a new internal flight system application.
The Challenge
The American low-cost airline, operating scheduled and charter flights across 120 locations, faced a significant challenge in securing its virtual desktop infrastructure environment. The airline had previously supplied laptops for staff and deployed physical firewalls at each location. However, because traffic was shared over a common network, any security or network problem at one airport could potentially affect all locations. The infrastructure was not only costly but also difficult to manage consistently. As the threat landscape intensified, the airline’s team wanted to simplify their network design, bring more automation into their releases, and increase their ability to prevent attacks across an increasingly virtualized infrastructure. The airline chose to deploy VMware NSX in their datacenter and implement a virtual desktop infrastructure (VDI) delivered over Internet links to all airports. This move aimed to simplify network management, deliver greater agility, and enable the team to micro-segment traffic with policies specific to each segment for higher resiliency.
The Solution
To secure this dynamic environment, the airline chose Check Point CloudGuard for VMware NSX. Check Point Infinity uses unified threat intelligence and open interfaces to protect the airline's environments against targeted attacks. With Check Point R80.10 Security Management, the team consolidated security management across all network environments into a single pane of glass. Check Point CloudGuard for VMware NSX delivers a multi-layered defensive posture to protect east-west traffic in their VMware-deployed datacenters. CloudGuard transparently enforces security at the hypervisor level and between virtual machines, automatically quarantines infected machines for remediation, and provides comprehensive visibility into all virtual network traffic trends and threats. When the airline deployed Check Point CloudGuard for VMware NSX to secure its VDI environment, Check Point SandBlast network protection was extended to the new infrastructure. The VDI environment’s micro-segments now enable the team to contain any service-affecting problem to only one airport. And they can now micro-segment consistently with micro-permissions from Check Point CloudGuard and the R80.10 management platform.
Operational Impact
  • The implementation of Check Point CloudGuard for VMware NSX has brought about significant operational benefits for the airline. The solution has enabled the airline to manage security across its infrastructure efficiently and consistently. Centralized provisioning uses profiles to automate device configuration, deploy new devices, and easily roll out changes. Workflow automation now enforces editing, reviewing, approving and auditing policy changes to reduce errors and facilitate policy compliance. The VDI environment’s micro-segments now enable the team to contain any service-affecting problem to only one airport. Furthermore, the airline’s AWS development environment is also secured, giving their developers the ability to spin up and tear down servers as needed while ensuring security.
Quantitative Benefit
  • Extended robust, consistent threat prevention security to protect east-west traffic in virtual data center environment
  • Stopped ransomware that took down a major courier services delivery company
  • Simplified and increased management efficiency with concurrent administration capability

Case Study missing?

Start adding your own!

Register with your work email and create a new case study profile for your business.

Add New Record

Related Case Studies.

Contact us

Let's talk!
* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.