Quadra - Leading Pharma Services Provider leveraging AWS WAF for Comprehensive Web Application Protection

Pharmaceuticals

Leading Pharma Services Provider leveraging AWS WAF for Comprehensive Web Application Protection

Customer Overview

Customer is a Global Capability Centre designed to provide diverse capabilities across functions and expand with SMEs, prioritizing customer centricity and delivering excellence. It is a customer-centric company designed as a Centre of excellence for specialized services to support numerous business needs. A comprehensive, customer-first company and the right fit for all pharma-related services, including technical services. They’re offering services like Life Science Capabilities, Digital Innovation and Capabilities, and Business Services.

Business Need

In Customer environment, workloads consist of COTS application like Pharma Co-vigilance and other custom applications like Timesheet, Partner Portal, Document Management System, Medical Affairs Tool and HRTA application. Recently Customer modernized their custom applications on AWS. This modernized architecture leverages AWS services like AWS Lambda, Amazon API Gateway, Amazon RDS, Amazon S3 and Amazon CloudFront.

Users ultimately access these applications via Amazon CloudFront, necessitating a firewall associated with Amazon CloudFront. Although Customer had an existing 3rd party firewall on AWS, they were unable to effectively monitor and control the web traffic reaching their serverless applications. They sought a security service that could integrate with Amazon CloudFront to meet their stringent security requirements.

Quadra at Work and solution design

Understanding Customer’s business needs, Quadra as an AWS Partner took it up, framed a solution with AWS Cloud native Security services;

Addressing their need for application layer security, we recommended AWS WAF (Web Application Firewall) since they are already utilizing AWS native services.
As, Customer already utilized AWS native services for hosting applications, it was easy for business to deploy AWS Web Application Firewall (AWS WAF) and provide its applications with an additional layer of security.
To block requests from services that allow obfuscation of viewer identity, we suggested and implemented AWS Managed Rules Anonymous IP List.
To block requests that are originating from China, region block rule has been employed.
Prevention of malicious SQL code injection was achieved using AWS Managed SQLi rule group.
Seamless integration of AWS WAF into our existing AWS environment simplified deployment and centralized security management
Detailed incoming logs recorded by AWS WAF are stored in Amazon CloudWatch Log Group, which helped Customer to fine tune, optimize the rule sets and further log analysis.

Quantifiable Improvements

Benefited outcomes of Customer on AWS WAF journey:

50% reduction in the time and effort required to monitor security incidents and logs. This efficiency gain allows their IT and security teams to focus on more strategic tasks.
AWS WAF has enabled Customer to block approximately 300 malicious requests per day. This proactive defense significantly reduces the risk of cyber threats reaching their application.
Customer has experienced an 85% reduction in incident response time. This rapid response capability minimizes potential damage and ensures quicker recovery from security incidents.
By using AWS WAF, Customer has reduced application layer attacks by 90%. This substantial decrease in attacks has greatly enhanced their overall security posture and business reliability.
Customer has achieved a remarkable 30% reduction in operational costs related to security management. This significant cost saving is primarily due to AWS WAF’s ability to automate the monitoring and blocking of malicious requests.

More Happy Customers

IT-Enabled Services

Customer experience specialist handling billions of customer interactions per day secures mission critical data using SaaS

eLearning

eLearning solution provider scales delivery to global audiences, increases security and reduces costs by moving to public cloud

Apparel

Desktop virtualization enables apparel major to adopt ERP cost effectively

Go back

Get in touch

Nothing excites us more than a customer conversation

We would love to work with you. Please fill up this short form and we will be in touch with you.

If you are a job seeker, then please head over to our careers page and submit your resume via our career portal.

Thank you! Your submission has been received!

Oops! Something went wrong.