Similar to Italian espresso, the connection between Cisco and Intesa Sanpaolo is powerful and intense. That’s what 20 years of shut collaboration will get you: a accomplice you can belief that will help you with probably the most pressing, vital, and complicated enterprise challenges.
Guaranteeing DORA compliance was one among these problem for Intesa Sanpaolo. The Digital Operational Resilience Act (DORA) is a European Union regulation requiring monetary entities to reinforce their digital operational resilience, together with the safety of their ICT programs and third-party suppliers. DORA compliance got here with a set deadline, and no grace interval. To conform, Intesa Sanpaolo wanted to make sure their distributed community gadgets met safety compliance requirements throughout their community of two,500 financial institution branches. They have been an improve of round 8,000 switches.
Working Infrastructure as Code to Guarantee DORA Compliance
From our first in-person assembly in Milan, it was clear that the brand new necessities demanded a brand new infrastructure administration and configuration strategy.
Historically, the configuration and provisioning of community providers and infrastructure are executed manually. These guide workflows lack the mandatory change validation, monitoring and automatic testing – making them error-prone, time-consuming, and troublesome to breed persistently. Factoring within the scale and urgency of their venture, the old-school manner of doing issues wasn’t going to work for Intesa Sanpaolo.
Equally essential, the entire train needed to occur whereas sustaining uninterrupted entry and the best requirements of service for the financial institution’s 7.6 million prospects. Our workforce knew the answer was the transition to a classy, “as-code” strategy which might guarantee each community change is routinely validated, repeatable, and totally compliant. That’s the place Cisco Providers as Code (SaC) got here in. Cisco Providers as Code permits organizations to outline their community infrastructure state and deal with all parts as software program that may be versioned and managed at scale. Automation and DevSecOps methodologies expedite the provisioning, configuration, testing, and deployment processes to allow them to seamlessly function and optimize their community, backed by 24×7 technical assist.
One-click Community Administration: Behind the Structure
For the following couple of weeks we have been centered on answer setup, validation, and information switch. We really useful Cisco Catalyst Middle because the centralized controller with Providers as Code (SaC) on high, which ensured compatibility with their pre-existing model management and workflow orchestration surroundings. An current Catalyst Middle cluster was leveraged to onboard all of the community gadgets that wanted to adjust to the regulatory necessities. Subsequent, we personalized a collection of intent-based workflows adopting all of the instruments and processes included in Providers as Code (SaC).
From the bounce, our workforce (Cisco Skilled Providers) was there to assist Intesa with the technical experience solely Cisco can provide:
- Validation: We carried out superior customized validation guidelines to eradicate operator error throughout configuration.
- Terraform greatest practices: We established sturdy requirements to handle hundreds of gadgets, together with safe, cloud-based storage for terraform state recordsdata.
- Customized ‘one-click’ workflows: We developed intent-based workflows to automate machine onboarding in Cisco Catalyst Middle, streamlining safety coverage enforcement and RMA procedures.
- Customized testing automation: We personalized the Robotic Framework to confirm configuration modifications and guarantee ongoing compliance. Intesa Sanpaolo now runs these automated checks periodically as impartial compliance reviews to validate modifications, resembling profitable 802.1X enablement.
By leveraging Providers as Code (SaC) and Cisco Catalyst Middle, we have been capable of automate deployment, enhance assurance and achieve unmatched visibility.
Past Compliance: The Advantages of the ‘Programmable Infrastructure’
Whereas the set off for this community transformation was the DORA regulation, the advantages prolong far past compliance.
Intesa Sanpaolo now has a ‘programmable infrastructure’. No extra guide, error-prone GUI implementation, messy change administration, and painful rollbacks! In only a few seconds, they’ll begin an end-to-end complete workflow – from code-based configuration for automated provisioning to validated testing and deployments.
The venture remains to be ongoing, however the affect is already measurable. With Cisco Providers as Code(SaC), Intesa Sanpaolo has:
- Achieved seamless DORA compliance with auditable, constant community configurations by way of automation.
- Improved community pace, reliability, and scalability by adopting CI/CD pipelines and automatic deployment
- Decreased time to implementation by 70%, releasing up IT groups from guide duties and permitting them to concentrate on strategic innovation and enterprise progress.
- Strengthened operational agility and confidence with repeatable, code-defined processes for community administration.
Collectively, as long-time companions, we’ll proceed to advance Intesa Sanpaolo’s journey to AIOps.
