Identical to Italian espresso, the connection between Cisco and Intesa Sanpaolo is powerful and intense. That’s what 20 years of shut collaboration will get you: a accomplice which you can belief that can assist you with essentially the most pressing, essential, and sophisticated enterprise challenges.
Guaranteeing DORA compliance was considered one of these problem for Intesa Sanpaolo. The Digital Operational Resilience Act (DORA) is a European Union regulation requiring monetary entities to reinforce their digital operational resilience, together with the safety of their ICT methods and third-party suppliers. DORA compliance got here with a set deadline, and no grace interval. To conform, Intesa Sanpaolo wanted to make sure their distributed community units met safety compliance requirements throughout their community of two,500 financial institution branches. They have been taking a look at an improve of round 8,000 switches.
Working Infrastructure as Code to Guarantee DORA Compliance
From our first in-person assembly in Milan, it was clear that the brand new necessities demanded a brand new infrastructure administration and configuration method.
Historically, the configuration and provisioning of community providers and infrastructure are executed manually. These handbook workflows lack the required change validation, monitoring and automatic testing – making them error-prone, time-consuming, and troublesome to breed persistently. Factoring within the scale and urgency of their challenge, the old-school manner of doing issues wasn’t going to work for Intesa Sanpaolo.
Equally necessary, the entire train needed to occur whereas sustaining uninterrupted entry and the very best requirements of service for the financial institution’s 7.6 million prospects. Our group knew the answer was the transition to a complicated, “as-code” method which might guarantee each community change is routinely validated, repeatable, and absolutely compliant. That’s the place Cisco Providers as Code (SaC) got here in. Cisco Providers as Code permits organizations to outline their community infrastructure state and deal with all parts as software program that may be versioned and managed at scale. Automation and DevSecOps methodologies expedite the provisioning, configuration, testing, and deployment processes to allow them to seamlessly function and optimize their community, backed by 24×7 technical help.
One-click Community Administration: Behind the Structure
For the subsequent couple of weeks we have been targeted on resolution setup, validation, and information switch. We advisable Cisco Catalyst Middle because the centralized controller with Providers as Code (SaC) on high, which ensured compatibility with their pre-existing model management and workflow orchestration atmosphere. An present Catalyst Middle cluster was leveraged to onboard all of the community units that wanted to adjust to the regulatory necessities. Subsequent, we personalized a sequence of intent-based workflows adopting all of the instruments and processes included in Providers as Code (SaC).
From the leap, our group (Cisco Skilled Providers) was there to help Intesa with the technical experience solely Cisco can provide:
- Validation: We applied superior customized validation guidelines to eradicate operator error throughout configuration.
- Terraform finest practices: We established sturdy requirements to handle hundreds of units, together with safe, cloud-based storage for terraform state recordsdata.
- Customized ‘one-click’ workflows: We developed intent-based workflows to automate gadget onboarding in Cisco Catalyst Middle, streamlining safety coverage enforcement and RMA procedures.
- Customized testing automation: We personalized the Robotic Framework to confirm configuration modifications and guarantee ongoing compliance. Intesa Sanpaolo now runs these automated assessments periodically as unbiased compliance studies to validate modifications, reminiscent of profitable 802.1X enablement.
By leveraging Providers as Code (SaC) and Cisco Catalyst Middle, we have been capable of automate deployment, improve assurance and acquire unmatched visibility.
Past Compliance: The Advantages of the ‘Programmable Infrastructure’
Whereas the set off for this community transformation was the DORA regulation, the advantages prolong far past compliance.
Intesa Sanpaolo now has a ‘programmable infrastructure’. No extra handbook, error-prone GUI implementation, messy change administration, and painful rollbacks! In only a few seconds, they will begin an end-to-end complete workflow – from code-based configuration for automated provisioning to validated testing and deployments.
The challenge continues to be ongoing, however the impression is already measurable. With Cisco Providers as Code(SaC), Intesa Sanpaolo has:
- Achieved seamless DORA compliance with auditable, constant community configurations by means of automation.
- Improved community velocity, reliability, and scalability by adopting CI/CD pipelines and automatic deployment
- Lowered time to implementation by 70%, liberating up IT groups from handbook duties and permitting them to give attention to strategic innovation and enterprise development.
- Strengthened operational agility and confidence with repeatable, code-defined processes for community administration.
Collectively, as long-time companions, we are going to proceed to advance Intesa Sanpaolo’s journey to AIOps.
