SIAT Group of Companies Belgium, Europe
SIAT, an Agro-Industrial Group of Companies Trusted Cyberoam for its Security
About Nv Siat sa (SIAT Group of companies), Agriculture

Siat is an agro-industrial group of companies specialized in the establishment and management of industrial as well as smallholders' plantations and allied processing and downstream industries. The main focus rests on oil palm and rubber, while cattle ranching is gaining importance in the group.

Siat seeks majority equity participation in the capital of private agro-industrial companies and provides management and engineering services. The head office is located in Brussels.

The network covered sensitive information which was under constant threat from spyware and DoS attacks. So they needed a strong Firewall and IPS solution.

Mr. Kamlesh Gurbani
Group IT Head
SIAT Group of Companies

Internet is used to provide the administrative back-bone to the organization. Thus Internet is an important business tool which has to be used prudently.

The company was facing the following security and connectivity challenges related to its business activities.

Securing the Network Periphery

The first step to perimeter defense is a firewall. The organization needed a robust solution that provides access control over its Internet traffic. The firewall should protect Siat’s network against any attacks launched from within or without the organization. DoS attacks were also on the rise. These types of attacks by Botnets and other sophisticated attacks bombard the organization’s network with bogus requests and overwhelmed the network. This stopped all genuine activity thus hampering employee productivity. Therefore, they needed a strong Firewall and IPS solution which would be capable in retorting these threats.

Controlling Malware & Spam Numbers

In the absence of gateway anti virus, users surfing the Web (HTTP), transferring the file (FTP) and exchanging mail (SMTP, POP3, IMAP) were constantly exposed to the danger of malware infestation. These malware attacks which often took a blended form through email attachments, PDF, design documents etc had the potential to alter constructive files and demolish significant data. Simple day-to-day activities were often hampered when such malware did infiltrate the system. As a result the productivity suffered as the IT department had to interfere to rectify the situation.

A perimeter level anti-virus solution was required that would protect the network, scan and clean any malware or spyware over Web mail and scan all Web traffic to ensure the contents’ sanctity.

Uncontrolled Surfing

In absence of a Content Filtering solution, the users could surf the Internet unbridled. This laid the organization’s network bare to Internet based blended threats. It also hit the company’s productivity, as the employees spent productive time, in unproductive surfing.

Business Continuity Concerns

Siat Group has evolved into an organization with independent networks at remote sites supporting many users. The primary challenges for Siat Group were to provide access to sensitive data across a more secure and stable VPN. Internet is relied on profoundly to allow remote sites VPN access back to the main office.

The Cyberoam Solution

Formerly, SIAT gateway had demos of Cisco Router but they matched the minimum communication expectations. The hunt was on for a new appliance which would meet all their requirements with high performance and that too at the same price.

After going through a trial demo of Cyberoam by IPMC, they felt that Cyberoam was the apparent choice. Siat Group then deployed Cyberoam UTM at their Head office, Belgium in Gateway mode.

The deployment details are:

Appliance Details Location
CR200i Ghana – One (1), Belgium, Zaventem – One (1)
CR50ia Ghana, Kwae – One (1), Nigeria, Obaretin – One (1)
CR35ia Gabon, Libreville – One (1)
CR25wi Ghana, Accra – One (1), Ghana, Tema – One (1), Belgium - Uccle (HO) – One (1), Ivory Coast, Cavally – One (1), Ivory Coast, Abidjan – One (1), Ivory Coast, SanPedro – One (1), Gabon, Bitam – One (1), Gabon, Kango – One (1), Gabon, Lambarene – One (1), Gabon, Makouke – One (1), Gabon, Mitzic – One (1), Gabon, Nyanga – One (1), Spare – One (1)

The business benefits were as follows:

  • Firewall & Stopping Intrusions

    Siat Group operates Cyberoam’s ICSA and Checkmark Certified Perimeter Firewall between the Internet and the organization’s network to establish a secure environment for the organisation’s computer and network resources. The Perimeter Firewall is a key component of the Siat’s network security architecture. This Perimeter Firewall policy governs how the Perimeter firewall will filter Internet traffic to mitigate the risks and losses associated with security threats to the Siat Group network.

    This policy is designed to protect employee computers from hacking and virus attacks by restricting access to computers on the Siat’s Group’s network and provides granular access controls over Internet traffic and the network resources. After implementation of Firewall rules, Mr. Gurbani was able to reduce more than 50% of the Internet Traffic in SIAT, which consisted of purely unsolicited traffic. Coupled with Intrusion Prevention module, Cyberoam UTM can counter any Denial of Service attack. Mr. Kamlesh Gurbani, Group IT Head at Siat now felt the network is secure.

  • Malware and Spam Free Internet

    Cyberoam’s gateway anti virus and anti spyware features guard all the web and mail protocols and ensure that no malware or spyware sneaks through the perimeter. Daily, around 1,500 spam emails are being filtered. Recurrent Pattern Detection (RPD) powered signature-less anti spam technology works instantly on deployment, with the least human intervention and is language independent. It blocks spam in any language regardless of the content, e.g. image, audio, video or zip-based spam. The anti spam feature is also equipped with Virus Outbreak Detection. This protects the organization against any zero day attack.

  • Premium Filtering

    With a database powered with 82 categories and more than 44 million sites, Mr. Gurbani has matchless flexibility to configure security policies. The Content filtering features makes sure that all P2P and Instant Messengers are blocked and that there is no breach of data.

  • VPN Connectivity

    Cyberoam UTM’s SSL VPN and IPSec VPN solution bridged the geographical distances between the branch and head offices. This now ensures that the user can connect securely from any location and use the resources. Highly encrypted traffic enforced security over the Internet and ensures that no malware sneaks through.

    Also, Cyberoam ensures transparent VPN failover for branches in order to provide uninterrupted connectivity for branch users. When an Internet connection fails, this feature dynamically switches traffic over to the active connection, maintaining uninterrupted VPN service.

  • Reporting

    Cyberoam also came with the added bonus - its inbuilt reporting functionally. The user’s internet activity could be closely monitored, with any compromising activity being stopped and an alert being sent to both the user and the administrator.

    Real-time reports were available to SIAT on actual capacity utilization, which helped them to better manage their Internet bandwidth. And using these statistics, it became very easy for Mr. Gurbani to generate reports for allocation of Bandwidth Costs across the various subsidiaries, something that was very difficult to achieve in the past without Cyberoam.

    In short, “Together with the other components, Cyberoam has delivered everything that was envisaged, and probably a litte more too”, Mr. Gurbani said.