Jamjoom Pharma Jeddah, Saudi Arabia, Asia
Leading Saudi Pharma Company Turns to Cyberoam UTM for Internet Security
About the Jamjoom Pharma, Pharmaceutical

Jamjoom Pharma, a world class manufacturing & marketing company in pharmaceuticals, started its commercial operations in 2001, coinciding with the beginning of the 21st century. Since then, it has made remarkable progress in Saudi Arabia and other export markets in the MENA region. The company‘s head office and manufacturing facilities are located in the port city of Jeddah in Saudi Arabia.

Right since its inception, Jamjoom Pharma has been rated among the fastest growing pharmaceutical companies in Saudi Arabia, also figuring among the Top 10 companies in the country. It attained No.1 and No.2 ranks in Dermatology and Ophthalmic segments respectively. Jam Joom Pharma‘s foundation of quality was laid out from the original design and procurement stage. Lockwood Greene Inc. USA, the world‘s most renowned engineering consultant to the Pharma industry, has provided engineering and design inputs for its manufacturing facility, based on cGMP and US FDA standards.

Being a Pharma company it is very important for us to secure our Internal Database. Without a firm IT network boundary in place, we were concerned that our organization was vulnerable to attacks from hackers and intruders, who could gain visibility of our private resources such as LAN residing data, and web/mail servers deployed in the DMZ.

Mr. Khurram Zahoor
Network Administrator
Jamjoom Pharma

As a modern pharmaceutical company, Jamjoom Pharma has implemented Oracle ERP that reaches all areas of its business and value chain. Apart from this, it also has to protect sensitive information such as customer records, mailing lists, contractual agreements, tenders etc., since most of this data is housed on the organizational LAN and regularly exchanged over Emails and Web.

According to Khurram Zahoor, Network Administrator of Jamjoom Pharma, the primary security needs of the organization were identified as follows:

Shielding Internal Networks from the Outside World

Jamjoom Parma‘s infrastructure consists of the Corporate Office and the manufacturing facility with future branches to be added. These networks, so far, were kept under the minimal protection range offered by ISPs and anti-virus solutions.

Mr. Zahoor says, “Our security solutions were purchased on a need basis, and were not as effective in the present-day threat scenario. Without a firm IT network boundary in place, we were concerned that our organization was vulnerable to attacks from hackers and intruders, who could gain visibility of our private resources such as LAN residing data, and web/mail servers deployed in the DMZ.”

Mr. Zahoor also sensed a perceived risk of data leakage due to unrestricted use by employees of instant messaging (IM) and P2P applications.

Securing Web and Mail Traffic

The company‘s IT team soon attended a security roadshow event where they learnt about virus replication methods through the web, and email attachments. They also came face to face with the fact they were getting thousands of spam items everyday, with spam filters proving ineffective, because email harvesters would find ingenious ways around them to gain access to the private email addresses, and “zap” them to spammers, leading to an interminable attack of unwanted emails, with phishing attacks adding to the worry

Boosting Workplace Productivity

According to Mr. Zahoor, one of the most annoying aspects of having the Internet in the workplace is its unhampered use as a tool for non-business related activities - casual surfing, torrents, chatting, gaming, watching videos and uploading/downloading high bandwidth files. The organization initially ignored the problem, but things came to a head when they audited the results of Internet usage.

“We found that placing no controls on employee surfing activities was adding to our ISP bills because of the huge volumes of data transferred and bandwidth wasted in non-productive work. Moreover, we were losing plenty of man-hours that could have been channelized for business efforts”, Mr. Zahoor mentions on the topic of Internet use.

The Cyberoam Solution

After seeing a demo of Cyberoam Unified Threat Management appliances, Jamjoom Pharma purchased a Cyberoam CR250i unit for its Corporate office, and a CR100i unit at the factory. Both appliances were deployed in gateway mode. The benefits were almost immediate and the organization was able to effectively solve their security issues.

Identity-based Security Leveraged

One of the unique features of Cyberoam UTM is its identity-aware architecture which renders full visibility of user activities in the network. After integrating Cyberoam into the Jamjoom Pharma infrastructure, Mr.Zahoor used its Active Directory Services (ADS) to include all Internet users in the database so their activities could be further traced. Cyberoam‘s user-friendly Web GUI makes it easy to ensure centralized management across a comprehensive set of solution features.

Internal Networks Secured

Compared to earlier situation where there were no clear-cut boundaries between the internal networks and external world, Cyberoam UTM cocooned the entire Jamjoom Pharma network from outside threat sources. This was mainly achieved through the ICSA and Checkmark - dual certified stateful inspection firewall which segregated the LAN, and internal servers from unauthorized outside access.

In addition, Mr. Zahoor also subscribed to Cyberoam‘s Intrusion Prevention System feature which delivers a second line of defense through 3000+ updated signatures against hackers, remote exploits, backdoor activity and other zero-hour attacks. Acting as an application firewall, it also supplements organizational efforts to curb data leakage through open proxies, instant messengers and P2P.

Clean Mail Traffic

Cyberoam UTM drastically brought down the high incidence of virus attacks, infected emails and spam incidence at Jamjoom Pharma. Mr. Zahoor had subscribed to the solution‘s Gateway Anti-Virus & Anti-Spyware as well as Gateway Anti-Spam modules.

Cyberoam‘s Gateway Anti-Virus & Anti-Spyware solution secures the Jamjoom Pharma network by responding in real-time to viruses, worms, Trojans, keyloggers, spyware and more. According to Mr. Zahoor, since viruses are stopped from replicating at the gateway itself, the IT team is relieved that their network and critical information systems are much less likely to be held hostage to any stray virus attacks.

Cyberoam Gateway Anti-Spam, with a spam catch rate of 98%, checks all inbound and outbound mails for email spam, drastically reducing the earlier time employees would waste cleaning their inboxes of junk emails. With its language-independent and content-agnostic property, the solution makes it very difficult for spammers to get around its spam filter through “drive-by” tactics such as putting unsubscribe links, or faking URLs of legitimate sites to send unwanted mails.

Productivity Enforced

Bandwidth Optimized: The IT team at Jamjoom Pharma were pleased with Cyberoam‘s ability to reverse the surfing patterns across the organization, and saving on its associated productivity costs. It‘s Web filtering module works operates through an exhaustive filtering database of websites into 82+ categories including entertainment, proxies, torrents and more.

Mr. Zahoor says, “The best deal with Cyberoam is since it runs on an identity-based security platform, we are able to view which employee visited what site. It acts as a deterrent for unwanted surfing because employees get a warning message which immediately makes them drop the idea. Also, the Cyberoam dashboard allows us to restrict bandwidth use for employees by implementing bandwidth policies based on parameters such as maximum data transfer policy, time of the day etc.”

In Conclusion

Since Cyberoam helped Jamjoom Pharma meet its security with productivity goals, most of its business challenges were resolved and network operations became smoother and more efficient.