Similar to Italian espresso, the connection between Cisco and Intesa Sanpaolo is robust and intense. That’s what 20 years of shut collaboration will get you: a accomplice which you can belief that will help you with probably the most pressing, crucial, and complicated enterprise challenges.
Making certain DORA compliance was one in every of these problem for Intesa Sanpaolo. The Digital Operational Resilience Act (DORA) is a European Union regulation requiring monetary entities to reinforce their digital operational resilience, together with the safety of their ICT methods and third-party suppliers. DORA compliance got here with a set deadline, and no grace interval. To conform, Intesa Sanpaolo wanted to make sure their distributed community units met safety compliance requirements throughout their community of two,500 financial institution branches. They have been an improve of round 8,000 switches.
Operating Infrastructure as Code to Guarantee DORA Compliance
From our first in-person assembly in Milan, it was clear that the brand new necessities demanded a brand new infrastructure administration and configuration strategy.
Historically, the configuration and provisioning of community companies and infrastructure are executed manually. These guide workflows lack the mandatory change validation, monitoring and automatic testing – making them error-prone, time-consuming, and troublesome to breed persistently. Factoring within the scale and urgency of their undertaking, the old-school manner of doing issues wasn’t going to work for Intesa Sanpaolo.
Equally essential, the entire train needed to occur whereas sustaining uninterrupted entry and the very best requirements of service for the financial institution’s 7.6 million prospects. Our group knew the answer was the transition to a complicated, “as-code” strategy which might guarantee each community change is mechanically validated, repeatable, and absolutely compliant. That’s the place Cisco Companies as Code (SaC) got here in. Cisco Companies as Code permits organizations to outline their community infrastructure state and deal with all components as software program that may be versioned and managed at scale. Automation and DevSecOps methodologies expedite the provisioning, configuration, testing, and deployment processes to allow them to seamlessly function and optimize their community, backed by 24×7 technical assist.
One-click Community Administration: Behind the Structure
For the subsequent couple of weeks we have been targeted on answer setup, validation, and information switch. We really helpful Cisco Catalyst Middle because the centralized controller with Companies as Code (SaC) on prime, which ensured compatibility with their pre-existing model management and workflow orchestration setting. An present Catalyst Middle cluster was leveraged to onboard all of the community units that wanted to adjust to the regulatory necessities. Subsequent, we custom-made a collection of intent-based workflows adopting all of the instruments and processes included in Companies as Code (SaC).
From the leap, our group (Cisco Skilled Companies) was there to assist Intesa with the technical experience solely Cisco can provide:
- Validation: We applied superior customized validation guidelines to remove operator error throughout configuration.
- Terraform finest practices: We established strong requirements to handle 1000’s of units, together with safe, cloud-based storage for terraform state recordsdata.
- Customized ‘one-click’ workflows: We developed intent-based workflows to automate machine onboarding in Cisco Catalyst Middle, streamlining safety coverage enforcement and RMA procedures.
- Customized testing automation: We custom-made the Robotic Framework to confirm configuration modifications and guarantee ongoing compliance. Intesa Sanpaolo now runs these automated assessments periodically as unbiased compliance stories to validate modifications, reminiscent of profitable 802.1X enablement.
By leveraging Companies as Code (SaC) and Cisco Catalyst Middle, we have been capable of automate deployment, enhance assurance and acquire unmatched visibility.
Past Compliance: The Advantages of the ‘Programmable Infrastructure’
Whereas the set off for this community transformation was the DORA regulation, the advantages prolong far past compliance.
Intesa Sanpaolo now has a ‘programmable infrastructure’. No extra guide, error-prone GUI implementation, messy change administration, and painful rollbacks! In just some seconds, they’ll begin an end-to-end complete workflow – from code-based configuration for automated provisioning to validated testing and deployments.
The undertaking remains to be ongoing, however the influence is already measurable. With Cisco Companies as Code(SaC), Intesa Sanpaolo has:
- Achieved seamless DORA compliance with auditable, constant community configurations by means of automation.
- Improved community pace, reliability, and scalability by adopting CI/CD pipelines and automatic deployment
- Decreased time to implementation by 70%, liberating up IT groups from guide duties and permitting them to deal with strategic innovation and enterprise development.
- Strengthened operational agility and confidence with repeatable, code-defined processes for community administration.
Collectively, as long-time companions, we’ll proceed to advance Intesa Sanpaolo’s journey to AIOps.